PW Forum / Software Security In Mashups

You are not logged in.


#1 2008-06-27 08:53:23

Hart
New member
Registered: 2007-01-11
Posts: 1

Software Security In Mashups

I'm curious to know if Mashup Developers, be it professional or hobbyist, feel that is is important to learn about software security from a programmers' perspective when implementing their mashups?

Do you take time while developing your mashups to reference publicly available web application security guidance like OWASP?

Thanks!

Offline

 

#2 2008-06-30 13:37:49

jvoss
Administrator
Registered: 2007-03-26
Posts: 19
Website

Re: Software Security In Mashups

Hello Hart,

Thanks for the excellent question. As a software developer I take great care in ensuring use of best practices when it comes to security. Input validation is one of the most important pieces of web security these days. Often developers forget that both SQL injection and XSS are easily fixed and are possible show stoppers for any project. XSS is especially rampant in websites and web services.

The OWASP is a good idea for developers who are not familiar with security best practices. The OWASP Top 10 http://www.owasp.org/index.php/Top_10_2007 is an especially good document.

If you or anyone else would like to give more information on how to secure web services and websites, feel free to add on and we'll add it to the ProgrammableWeb How-To's.

Regards,
Joel R. Voss
https://www.AltSci.com/

Offline

 

#3 2008-07-29 02:05:20

yayahoo
New member
Registered: 2008-07-29
Posts: 2
Website

Re: Software Security In Mashups

looking...

Offline

 

Board footer

Powered by PunBB
© Copyright 2002–2005 Rickard Andersson

Follow the PW team on Twitter

ProgrammableWeb
APIs, mashups and code. Because the world's your programmable oyster.

John Musser
Founder, ProgrammableWeb

Adam DuVander
Executive Editor, ProgrammableWeb. Author, Map Scripting 101. Lover, APIs.