WEB APPLICATION SECURITY

Don Ankney June 2009

1

DISCLAIMER

•

This presentation is my own work, done on my own time, and isnot sanctioned or vetted by Microsoft.

•

Blame me if it sucks. I’m sure you can ﬁnd something else toblame Microsoft for if you really want to.

2

AGENDA

•

General Web Application Security Principals:

•Trust•Data handling•Principal of least privilege•Defense in depth•Challenge your assumptions•“Think Evil”•Threat Modeling

•

OWASP Top 10

3

Web Application Security 2009

Download this Document for Free Print Mobile Collections Report Document

This is a private document.

Info and Rating

Share & Embed

Related Documents

More from this user

51 p.
50 p.

Add a Comment