[OWASP-cheat-sheets] Transaction Authorization Cheat Sheet
jim.manico at owasp.org
Sun Jan 10 00:47:49 UTC 2016
This is very solid work. I definitely advise folks to take a look at it.
On 1/8/16 1:29 AM, Wojciech Dworakowski wrote:
> Updated version of Transaction Authorization Cheat Sheet:
> The Purpose of this cheat sheet is to provide guidelines on how to
> securely implement transaction authorization in electronic banking
> apps, to protect it from being bypassed. These guidelines can be used by:
> * Banks - to define functional and non-functional requirements for
> transaction authorization.
> * Developers – to design and implement transaction authorization
> without vulnerabilities.
> * Pentesters – to test for transaction authorization security.
> Many thanks for all contributors who provided valuable feedback to
> this version!
> Wojciech Dworakowski
> OWASP Poland Chapter Leader
> OWASP-cheat-sheets mailing list
> OWASP-cheat-sheets at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-cheat-sheets