Saturday, November 14, 2009
OWASP Top 10 - 2010
The Ten Most Critical Web Application Security Risks
This release of the OWASPTop 10 marks this project’s eighth year of raising awareness of the importance of application security risks. This release has been significantly revised to clarify the focus on risk. To do this, we’ve detailed the threats, attacks, weaknesses, security controls, technical impacts, and business impacts associated with each risk. By adopting this approach, we hope to provide a model for how organizations can think beyond the ten risks here and figure out the most important risks that their applications create for their business.
Following the final publication of the OWASPTop 10 -2010, the collaborative work of the OWASP community will continue with updates to supporting documents including the OWASP wiki, OWASP Developer’s Guide, OWASP TestingGuide, OWASP Code Review Guide, and the OWASP Prevention Cheat Sheet Series.