Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

Web application security report available

Research And Markets : 14 December, 2009  (New Product)
A report from Research and Markets is available on using the OWASP risk model for improving web application security
Research and Markets has announced the addition of Javelin Strategy & Research's new report 'Improving Web Application Security Using New 2010 OWASP Top 10 Risk Model: Best Practices for Mitigating Online Vulnerabilities and Threats' to their offering.

This report will help information technology security staff convince management that is important to introduce a risk -based priority model that can be customized for the institution. The idea that risk outweighs prevalence is gaining acceptance within the security community. Instead of being reactive, simply responding to attacks, the security community is starting to focus on the underlying causes of these attacks. The risk-weighted model presented in this report draws from that proposed by Online Web Application Security Project (OWASP) and uses the data from the proposed 2010 OWASP Top 10 list to identify the risks most organizations face today, and demonstrates how to weight vulnerabilities under the new system and offers mitigations. Additionally, this report contains the latest attack data from the Web Hacking Incident Database and also compares what's happening with vulnerabilities data from the Web Application Consortium's October 2009 annual report. Finally, Javelin looks at secure software development lifecycle (SSDL), a way of coding in the best security practices to make the software secure from the outset.

Primary Questions Answered:

* How should an institution prioritise its risks?
* How do you construct a risk-based model?
* What criteria should be considered within each risk factor?
* What are the biggest web application risks for financial services going into 2010?
* What are the mitigations for these risks?
* What is the prevalence of these risks in the real world?
* How do I implement a secure software development lifecycle at my organization?


Javelin obtained information from the Online Web Application Security Project (OWASP), Breach Security's Web Hacking Incidents Database 2009, and the Web Application Consortium's October 2009 annual report on Web Application Security Statistics for 2008, the PCI Data Security Standards, and the Department of Homeland Security.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo