Re: Software Security In Mashups
Thanks for the excellent question. As a software developer I take great care in ensuring use of best practices when it comes to security. Input validation is one of the most important pieces of web security these days. Often developers forget that both SQL injection and XSS are easily fixed and are possible show stoppers for any project. XSS is especially rampant in websites and web services.
The OWASP is a good idea for developers who are not familiar with security best practices. The OWASP Top 10 http://www.owasp.org/index.php/Top_10_2007 is an especially good document.
If you or anyone else would like to give more information on how to secure web services and websites, feel free to add on and we'll add it to the ProgrammableWeb How-To's.
Joel R. Voss