This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Category:OWASP AppSensor Project"

From OWASP
Jump to: navigation, search
(Replaced content with '#REDIRECT OWASP AppSensor Project')
 
(29 intermediate revisions by 3 users not shown)
Line 1: Line 1:
{{OWASP Book|5984542}}
+
#REDIRECT [[OWASP AppSensor Project]]
 
 
 
 
{{:Project Information:template AppSensor Project}}
 
[[Category:OWASP Project|AppSensor Project]]
 
[[Category:OWASP Document]]
 
[[Category:OWASP Download]]
 
[[Category:OWASP Beta Quality Document]]
 
 
 
'''Summer of Code 2008 Project!'''
 
 
 
==Overview==
 
 
 
If you walk into a bank and try opening random doors, you will be identified, led out of the building and possibly arrested.  However, if you log into an online banking application and start looking for vulnerabilities no one will say anything.  This needs to change!
 
 
 
As critical applications continue to become more accessible and inter-connected, it is paramount that critical information is sufficiently protected. We must also realize that our defenses may not be perfect. Given enough time, attackers can identify security flaws in the design or implementation of an application.
 
 
 
In addition to implementing layers of defense within an application, we must identify malicious individuals before they are able to identify any gaps in our defenses. The best place to identify malicious activity against the application is within the application itself. Network based intrusion detection systems are not appropriate to handle the custom and intricate workings of an enterprise application and are ill-suited to detect attacks focusing on application logic such as authentication, access control, etc. This project will create the framework which can be used to build a robust system of attack detection, analysis, and response within an enterprise application
 
 
 
==Project Lead==
 
Michael Coates (michael.coates [at] aspectsecurity [dot] com)
 
 
 
==Project Roadmap==
 
 
 
'''Current:''' v1.2 in the works, demo application in development
 
 
 
'''May, 2009''' - AppSec EU Poland - Presentation  ([http://www.owasp.org/images/b/b7/AppsecEU09_MichaelCoates.pptx PPT]) ([http://blip.tv/file/2198771 Video]) (first half only)
 
 
 
'''January, 2009''' - v1.1 Released - Beta Status
 
 
 
'''November, 2008''' - AppSensor Talk at OWASP Portugal
 
 
 
'''November, 2008''' - v1.0 Released - Beta Status
 
 
 
'''April 16, 2008''' - Project Begins
 

Latest revision as of 16:35, 6 October 2010

Pages in category "OWASP AppSensor Project"

The following 4 pages are in this category, out of 4 total.