[Owasp-leaders] Transaction Authorization Cheat Sheet

Matt Tesauro matt.tesauro at owasp.org
Fri Jan 8 16:13:06 UTC 2016


Nicely done.

Congrats on a strong update to an already good cheat sheet!

--
-- Matt Tesauro
OWASP AppSec Pipeline Lead
https://www.owasp.org/index.php/OWASP_AppSec_Pipeline
OWASP WTE Project Lead
http://www.owasp.org/index.php/Category:OWASP_Live_CD_Project
http://AppSecLive.org - Community and Download site

On Fri, Jan 8, 2016 at 5:29 AM, Wojciech Dworakowski <
wojciech.dworakowski at owasp.org> wrote:

> Updated version of Transaction Authorization Cheat Sheet:
> https://www.owasp.org/index.php/Transaction_Authorization_Cheat_Sheet
>
> The Purpose of this cheat sheet is to provide guidelines on how to
> securely implement transaction authorization in electronic banking apps, to
> protect it from being bypassed. These guidelines can be used by:
>
> * Banks - to define functional and non-functional requirements for
> transaction authorization.
> * Developers – to design and implement transaction authorization without
> vulnerabilities.
> * Pentesters – to test for transaction authorization security.
>
>
> Many thanks for all contributors who provided valuable feedback to this
> version!
>
> --
> Wojciech Dworakowski
> OWASP Poland Chapter Leader
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20160108/7cc094ea/attachment-0001.html>


More information about the OWASP-Leaders mailing list