ISSA-LA InfoSec Summit XI

Software developers are the foundation of any application. In order to achieve secure software, developers must be supported and helped by the organization they author code for. As software developers author code that makes up a web application, they need to embrace and practice a wide variety of secure coding techniques. The OWASP Top Ten Proactive Controls (2018) is an OWASP documentation project that lists critical security techniques that should be included in every software development project. This document was written by developers for developers to assist those new to secure development.

1) Define Security Requirements
2) Leverage Security Frameworks and Libraries
3) Secure Database Access
4) Encode and Escape Data
5) Validate All Inputs
6) Implement Digital Identity
7) Enforce Access Controls
8) Protect Data Everywhere
10) Handle All Errors and Exceptions