This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Cornucopia - Ecommerce Website - CR 6

From OWASP
Revision as of 16:27, 21 January 2016 by Dariodf (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
Cornucopia - Ecommerce Website CR 6.png

Suit: Cryptography

Card/Value: 6

Description:

Romain can read and modify data in memory or in transit (e.g. cryptographic secrets, credentials, session identifiers, personal and commercially-sensitive data), in use or in communications within the application, or between the application and users, or between the application and external systems.

Technical Note:

NB: The key concept for this card is lack of encryption of data in transit and/or in memory.

References:

OWASP SCP OWASP ASVS OWASP AppSensor CAPEC SAFECODE
36 9.2 - 31 29
37 10.2 57
143 10.3 102
146 10.7 158
147 384
466


« Previous Card | Cryptography | Next Card »
Retrieved from "https://wiki.owasp.org/index.php?title=Cornucopia_-_Ecommerce_Website_-_CR_6&oldid=207210"