If you do any kind of application programming, particular network oriented applications or web applications (who isn’t?), you should definitely be aware of OWASP. They keep a list of the Top Ten security concerns when developing software and I have found the reference to be excellent.
- Site Link: http://www.owasp.org/index.php/Category:OWASPTopTen_Project
- PDF Link: http://owasptop10.googlecode.com/files/OWASP%20Top%2010%20-%202010.pdf
I think a printed version of the updated Top Ten is going to become a part of my standard reference kit to look over from time to time. The guide is organized and color coded in such away that just about anyone could understand why you should be concerned and what the remedies for each of the top ten issues. It provides additional links off to further information and even a standard reference library that provides an implementation reference for best practices.
Cheers.
