This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
File:Durkee OWASP 2015 09 AppSec.pdf
Presentation: Introduction to OWASP Application Security – Building and Breaking Applications
Ralph Durkee, CISSP, C|EH, GSEC, GCIH, GSNA, GCIA, GPEN Principal Security Consultant
Application Security continues to be the most challenging and demanding area for securing our information. Even large organizations like Google and Microsoft that are well funded and have a strong commitment to security, have difficulty developing secure software. Too often, when a vulnerability is found and a software patch is provided, the initial patch is soon found to be lacking and is still vulnerable. The initial patch for the recent Android StageFright vulnerability is a prime example. So yes, writing secure software is a serious challenge, but it can be done. Knowing how to build secure software and how to break insecure software can be both fun and profitable. There is and will continue to be a growing demand for developers and application penetration testers that “get it”. We'll discuss specific examples from the OWASP Top 10 and the OWASP secure coding principles about how things can go very wrong, and what we can do to keep the bad guys out.
File history
Click on a date/time to view the file as it appeared at that time.
Date/Time | Dimensions | User | Comment | |
---|---|---|---|---|
current | 18:11, 24 September 2015 | (3.66 MB) | Rdurkee (talk | contribs) | Presentation: Introduction to OWASP Application Security – Building and Breaking Applications Ralph Durkee, CISSP, C|EH, GSEC, GCIH, GSNA, GCIA, GPEN Principal Security Consultant Application Security continues to be the most challenging and demand... |
- You cannot overwrite this file.
File usage
There are no pages that link to this file.