PW Forum / Software Security In Mashups

Hart · 2008-06-27 08:53:23

I'm curious to know if Mashup Developers, be it professional or hobbyist, feel that is is important to learn about software security from a programmers' perspective when implementing their mashups?

Do you take time while developing your mashups to reference publicly available web application security guidance like OWASP?

Thanks!

jvoss · 2008-06-30 13:37:49

Hello Hart,

Thanks for the excellent question. As a software developer I take great care in ensuring use of best practices when it comes to security. Input validation is one of the most important pieces of web security these days. Often developers forget that both SQL injection and XSS are easily fixed and are possible show stoppers for any project. XSS is especially rampant in websites and web services.

The OWASP is a good idea for developers who are not familiar with security best practices. The OWASP Top 10 http://www.owasp.org/index.php/Top_10_2007 is an especially good document.

If you or anyone else would like to give more information on how to secure web services and websites, feel free to add on and we'll add it to the ProgrammableWeb How-To's.

Regards,
Joel R. Voss
https://www.AltSci.com/

yayahoo · 2008-07-29 02:05:20

looking...

PW Forum / Software Security In Mashups

#1 2008-06-27 08:53:23

Software Security In Mashups

#2 2008-06-30 13:37:49

Re: Software Security In Mashups

#3 2008-07-29 02:05:20

Re: Software Security In Mashups

Board footer

Follow the PW team on Twitter

PW Forum / Software Security In Mashups

#1 2008-06-27 08:53:23

Software Security In Mashups

#2 2008-06-30 13:37:49

Re: Software Security In Mashups

#3 2008-07-29 02:05:20

Re: Software Security In Mashups

Board footer

Follow the PW team on Twitter

Popular Recent