[Owasp-topten] Comment (addition) to A9 - INSECURE COMMUNICATIONS
Calderon, Juan Carlos (GE, Corporate, consultant)
juan.calderon at ge.com
Mon Feb 26 09:56:50 EST 2007
One more suggestion, talking about securing backend, I would recommend
you mention IPSec and Kerberos since it is more common having them at
that end than SSL.
For example in Windows environments setting up a IPSec connection is
piece of cake. The same is true for Kerberos and Linux (as far as I
know) or IPSec for both Linux and Windows is doable.
Those are my two cents
Juan Carlos Calderon
More information about the Owasp-topten