[OWASP-cheat-sheets] Transaction Authorization Cheat Sheet

Jim Manico jim.manico at owasp.org
Sun Jan 10 00:47:49 UTC 2016


Wojciech,

This is very solid work. I definitely advise folks to take a look at it.

https://www.owasp.org/index.php/Transaction_Authorization_Cheat_Sheet

Aloha,
Jim

On 1/8/16 1:29 AM, Wojciech Dworakowski wrote:
> Updated version of Transaction Authorization Cheat Sheet:
> https://www.owasp.org/index.php/Transaction_Authorization_Cheat_Sheet
>
> The Purpose of this cheat sheet is to provide guidelines on how to 
> securely implement transaction authorization in electronic banking 
> apps, to protect it from being bypassed. These guidelines can be used by:
>
> * Banks - to define functional and non-functional requirements for 
> transaction authorization.
> * Developers – to design and implement transaction authorization 
> without vulnerabilities.
> * Pentesters – to test for transaction authorization security.
>
>
> Many thanks for all contributors who provided valuable feedback to 
> this version!
>
> -- 
> Wojciech Dworakowski
> OWASP Poland Chapter Leader
>
>
> _______________________________________________
> OWASP-cheat-sheets mailing list
> OWASP-cheat-sheets at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-cheat-sheets

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-cheat-sheets/attachments/20160109/584a0c8b/attachment.html>


More information about the OWASP-cheat-sheets mailing list