This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Category:OWASP Enterprise Security API"
m |
m |
||
| Line 79: | Line 79: | ||
This document provides information about the Java Edition of OWASP ESAPI. The topics below cover system requirements, additional product information, and application notes. For information about the new features of this release, known issues, resolved issues, and limitations, refer to the Release notes. | This document provides information about the Java Edition of OWASP ESAPI. The topics below cover system requirements, additional product information, and application notes. For information about the new features of this release, known issues, resolved issues, and limitations, refer to the Release notes. | ||
| − | + | '''Current Releases''' | |
| − | * ESAPI 1.4 - [http://owasp-esapi-java.googlecode.com/files/owasp-esapi-java-src-1.4.zip | + | * Download ESAPI 1.4 - [ [http://owasp-esapi-java.googlecode.com/files/owasp-esapi-full-java-1.4.jar jar] | [http://owasp-esapi-java.googlecode.com/files/owasp-esapi-java-src-1.4.zip src] | [http://owasp-esapi-java.googlecode.com/svn/trunk_doc/1.4/index.html | javadoc] ] |
| − | * ESAPI 2.0rc3 - [http://owasp-esapi-java.googlecode.com/files/ESAPI-2.0-rc3.zip | + | * Download ESAPI 2.0rc3 - [http://owasp-esapi-java.googlecode.com/files/ESAPI-2.0-rc3.zip zip] [http://owasp-esapi-java.googlecode.com/svn/trunk_doc/2.0-rc3/index.html javadoc] |
For all downloads and project files, please click [http://code.google.com/p/owasp-esapi-java/downloads/list here] | For all downloads and project files, please click [http://code.google.com/p/owasp-esapi-java/downloads/list here] | ||
Revision as of 07:11, 11 November 2009
About
|
OWASP Tools Project Enterprise Security API (ESAPI) OWASP Enterprise Security API Toolkits help software developers guard against security-related design and implementation flaws. Just as web applications and web services can be Public Key Infrastructure (PKI) enabled (PK-enabled) to perform for example certificate-based authentication, applications and services can be OWASP ESAPI-enabled (ES-enabled) to enable applications and services to protect themselves from attackers. Further development of ESAPI occurs through mailing list discussions and occasional workshops, and suggestions for improvement are welcome. For more information, please contact us. ESAPI Toolkits Java EE
ESAPI Toolkits are designed to automatically take care of many aspects of application security, making these issues invisible to the developers.
|
Sample Application - ESAPI Swingset
|
FAQ
More About OWASP ESAPI
- ESAPI interface documentation (JavaDocs)
- Project presentation (PowerPoint)
- Video presentation (YouTube)
- One Page Datasheet (PDF, Word)
- One page technical explanation of how ESAPI works (PDF)
- LAMP should be spelled LAMPE (PDF)
- Getting started designing for a level of assurance (PDF)
- ESAPI documentation plan (Word)
Related projects
- OWASP Top Ten
- OWASP Application Security Verification Standard
- XSS (Cross Site Scripting) Prevention Cheat Sheet
ESAPI documentation project status
Java EE
Java Edition of the OWASP ESAPI Toolkit - Release Quality
- The Java EE version of ESAPI is being lead by Jeff Williams. Feel free to contact him for further details.
We are seeking organizations willing to pilot ESAPI and work with us to make this library better. Please contact [email protected] for more information. If you're interested in application security, please join the OWASP ESAPI mailing list and help make ESAPI better!
Welcome to the ESAPI Java Edition
This document provides information about the Java Edition of OWASP ESAPI. The topics below cover system requirements, additional product information, and application notes. For information about the new features of this release, known issues, resolved issues, and limitations, refer to the Release notes.
Current Releases
- Download ESAPI 1.4 - [ jar
News
Project News
- ESAPI Python version project possibly starting up. Please contact [email protected] for more information.
- ESAPI Java 2.0rc1 is nearing completion. Release in a few weeks. Please check SVN and send any last minute requests to the ESAPI list.
- We've had a request for an ESAPI ColdFusion edition. If there are any interested developers, please contact [email protected] to volunteer.
- ESAPI has been through a line-by-line review by a major systems integrator. We will post all the findings soon but they are pretty minor.
- OWASP ESAPI has been integrated into the OWASP Secure Software Contract Annex in the OWASP Legal Project.
- OWASP ESAPI is presented by Jeff Williams at OWASP Software Assurance Day DC 2009 in conjunction with the Software Assurance Forum sponsored by the US Department of Homeland Security, Department of Defense and National Institute of Standards and Technology.
Project Mail List
Subscribe here
Use here
Contributors/Users
|
Project Leader The ESAPI project is sponsored by:
|
Users and Adopters The following organizations are a few of the many organizations that are starting to adopt ESAPI to secure their web applications:
Please let us know how your organization is using OWASP ESAPI. Include your name, organization's name, and brief description of how you are using it. The project lead can be reached here. |
Pages in category "OWASP Enterprise Security API"
The following 27 pages are in this category, out of 27 total.
C
E
- EASPI
- ESAPI Swingset
- ESAPI
- ESAPI Access Control
- ESAPI ClassicASP Readme
- ESAPI ColdFusion CFML Readme
- ESAPI Contributions
- ESAPI DotNET Readme
- ESAPI Javadocs
- ESAPI JavaScript Readme
- ESAPI Mapping
- ESAPI Plan
- ESAPI Python Readme
- ESAPI Secure Coding Guideline
- ESAPI Specification
- ESAPI Summit
- ESAPI-Building
- ESAPI-BuildingWithEclipse
