This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Cornucopia - Ecommerce Website - C 7
From OWASP
Revision as of 15:25, 21 January 2016 by Dariodf (talk | contribs) (Created page with "{{DISPLAYTITLE:<span style="padding:2px 5px 0px 5px;color:white;background:#17365d;">Cornucopia - Ecommerce Website - C 7</span>}} File:Cornucopia_-_Ecommerce_Website_C_7.pn...")
Suit: Cornucopia
Card/Value: 7
Description:
Mwengu's actions cannot be investigated because there is not an adequate accurately time-stamped record of security events, or there is not a full audit trail, or these can be altered or deleted by Mwengu, or there is no centralized logging service.
Technical Note:
Consider all application logging best practices.
References:
OWASP SCP | OWASP ASVS | OWASP AppSensor | CAPEC | SAFECODE |
---|---|---|---|---|
113 | 2.12 | - | 93 | 4 |
114 | 5.7 | |||
115 | 8.3 | |||
117 | 8.5 | |||
118 | 8.6 | |||
121 | 8.8 | |||
122 | 8.9 | |||
123 | 8.15 | |||
124 | 10.4 | |||
125 | ||||
126 | ||||
127 | ||||
128 | ||||
129 | ||||
130 |