[Owasp-leaders] OWASP Top 10 2012

Erwin Geirnaert erwin.geirnaert at zionsecurity.com
Fri Oct 7 10:17:22 EDT 2011


Hi list,

During some discussions this week with Java developers while giving a security training I got the following remark: "why are there so many ASP.NET/PHP issues in the OWASP Top 10, is Java more secure"?

So what I propose is to create a specific OWASP Top 10 for different technologies: Microsoft, Java, PHP and we can still have one global Top 10.
Ofcourse based on the CVE database but it will be more clear for the developers and I think that the OWASP Top 10 for Java will be very different than OWASP Top 10 for PHP.

Best regards,

Erwin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-leaders/attachments/20111007/079c6e5b/attachment-0001.html 


More information about the OWASP-Leaders mailing list