[Owasp-topten] Comment (addition) to A9 - INSECURE COMMUNICATIONS

Calderon, Juan Carlos (GE, Corporate, consultant) juan.calderon at ge.com
Mon Feb 26 09:56:50 EST 2007


Hello guys

One more suggestion, talking about securing backend, I would recommend
you mention IPSec and Kerberos since it is more common having them at
that end than SSL.

For example in Windows environments setting up a IPSec connection is
piece of cake. The same is true for Kerberos and Linux (as far as I
know) or IPSec for both Linux and Windows is doable.

Those are my two cents

Regards,
Juan Carlos Calderon


More information about the Owasp-topten mailing list