News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Jim Bird:
How to Cheat at Application Security
September 13, 2012 @ 10:42:22

Jim Bird has a new post with links to a few different resources helping you "cheat" at application security - links to cheat sheets with highlights of key points to keep an eye out for.

Developers need to know a lot in order to build secure applications. Some of this is good software engineering and defensive design and programming - using (safe) APIs properly, carefully checking for errors and exceptions, adding diagnostics and logging, and never trusting anything from outside of your code (including data and other people's code). But there are also lots of technical details about security weaknesses and vulnerabilities in different architectures and platforms and technology-specific risks that you have to understand and that you have to make sure that you deal with properly. Even appsec specialists have trouble keeping up with all of it.

He links to several of the OWASP cheat sheets for things like:

0 comments voice your opinion now!
cheatsheet application security owasp list


blog comments powered by Disqus

Similar Posts

FrSIRT: Vivvo Article Management CMS SQL Injection and PHP File Inclusion Vulnerabilities

SitePoint PHP Blog: Data Fixtures in Symfony2

Jorge Garifuna\'s Blog: Build a Complete PHP Application in 3 Clicks

Tomas Petricek's Blog: Writing Silverlight applications in PHP

Riff Blog: Multiple entries with Zend_Config_XML


Community Events





Don't see your event here?
Let us know!


symfony series voicesoftheelephpant list opinion podcast api install language library release framework interview bugfix package laravel deployment introduction community tips

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework