This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Category:OWASP Backend Security Project

Revision as of 19:46, 23 January 2014 by Kait Disney-Leugers (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

OWASP Inactive Banner.jpg
OWASP Books logo.png This project has produced a book that can be downloaded or purchased.
Feel free to browse the full catalog of available OWASP books.

Project Name OWASP Backend Security Project
Short Project Description This project aims to improve and to collect the existent information about the backend security. The project is composed by three sections (security development, security hardening and security testing). The aim is to define the guidelines for the companies and IT professionals working in the security field into processes development and back-end components management/testing in the enterprise architecture.
Project key Information Project Leader
Carlo Pelliccioni
Project Contributors
See here
Mailing List
Subscribe here
Use here
Creative Commons Attribution Share Alike 3.0
Project Type
Release Status Main Links Related Projects

Beta Quality
Please see here for complete information.

  • (If appropriate, add links)

Welcome to the OWASP Backend Security Project

OWASP Backend Security Project is the first OWASP project entirely dedicated to the core of the Web Applications.

OWASP Backend Security Project wiki v1.0 beta

Now Available PDF version: OWASP Backend Security Project 1.0 beta.pdf

Now Available DOC version: OWASP Backend Security Project 1.0 beta.doc


The aim of this OWASP project is to create a new guide that could allow developers, administrators and testers to comprehend any parts of the security process about back-end components that directly communicate with the web applications as well as databases, ldaps, payment gateway, and much more.

Join the project

To reach this purpose our community needs more Information Technology security professionals as possible to create a new point of reference for the entire OWASP community. Although these information are briefly discussed in the others OWASP projects the community would like to collect those already existing information and creating new sections related to the not mentioned back-end components.

OWASP Backend Security Project is composed of three sections: security development, security hardening, security testing.

Below are described the main professional skills requested:

    - Web Developers
    - System Administrators
    - DB Administrators
    - Penetration Testers

Below are described the main technology skills requested:

* Programming Languages

         - JAVA
         - PHP
         - .NET

* Database Server

         - ORACLE
         - SQL Server
         - DB2
         - MySQL
         - PostgreSQL

* LDAP Server

         - OpenLDAP
         - iPlanet LDAP
         - Active Directory

* Other back-end components

OWASP Backend Security Project needs of the OWASP community and new volunteers to become a new point of reference about the Web Application Security and a new OWASP success.

Mailing List

[email protected]


11/21/2008 - New wiki page to add new proposals about the project.

11/03/2008 - OWASP Backend Security Project available in PDF (183 pages).

06/19/2008 - 1st OWASP Summer of Code 2008 deadline: 29th June 2008.

04/18/2008 - OWASP Backend Security Project will participate to the next OWASP Summer of Code 2008.

01/31/2008 - OWASP Backend Security Project will be presented at OWASP Day 2 organized by OWASP-Italy (Rome, University "La Sapienza" Via Salaria, 113).

01/31/2008 - 1st dead line: (03/31/2008) - We need to collect the existing information in other areas of the OWASP wiki for the similar categories.


carlo.pelliccioni <at>

Pages in category "OWASP Backend Security Project"

This category contains only the following page.