This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Projects/OWASP Framework Security Project/Secure LDAP API Standard
From OWASP
Revision as of 01:59, 19 January 2016 by TimMorgan (talk | contribs) (Created page with "This standard is designed to describe the specific properties secure LDAP APIs have. APIs with these properties help developers, regardless of their skill or experience with...")
This standard is designed to describe the specific properties secure LDAP APIs have. APIs with these properties help developers, regardless of their skill or experience with LDAP, avoid the most common and serious vulnerabilities associated with developing LDAP client software.
- 1 Properties of Safe LDAP APIs
- 1.1 Documents the Security Risks of LDAP Filter Injection
- 1.2 Provides an LDAP Filter Escape Function
- 1.3 Provides LDAP Filter Syntax Templates
- 1.4 Provides an Abstract API for LDAP Filter Queries
- 1.5 Supports LDAPS
- 1.6 Supports LDAP with StartTLS
- 1.7 Enables SSL/TLS Certificate Validation by Default
- 1.8 Documents the Customization of Trusted Certificate Authorities
- 2 Grading Scale
- 3 TODO
Properties of Safe LDAP APIs
Documents the Security Risks of LDAP Filter Injection
TODO
Provides an LDAP Filter Escape Function
TODO
Provides LDAP Filter Syntax Templates
TODO
Provides an Abstract API for LDAP Filter Queries
TODO
Supports LDAPS
TODO
Supports LDAP with StartTLS
TODO
Enables SSL/TLS Certificate Validation by Default
TODO
Documents the Customization of Trusted Certificate Authorities
TODO
Grading Scale
TODO
TODO
- What other forms of encryption should we encourage? SASL and/or proprietary mechanisms?
