informa
Announcements
Event
How to Launch a Threat Hunting Program | Webinar <REGISTER>
Event
How to Accelerate XDR Outcomes: Bridging the Gap Between Network and Endpoint | Webinar <REGISTER>
Report
Black Hat USA 2022 Attendee Report | Supply Chain & Cloud Security Risks Are Top of Mind | <READ IT NOW>
PreviousNext
Risk
1 MIN READ
Commentary

IAM: The Reason Why OWASP Top 10 Doesn't Change

OWASP's AppSec conference is easily one of the best in the infosec industry. Where will it be held this year? Why not Punxsutawney?
Gunnar Peterson
CISO, Forter
November 30, 2012
OWASP's AppSec conference is easily one of the best in the infosec industry. Where will it be held this year? Why not Punxsutawney?

Some years ago, Chris Hoff asked why the OWASP Top 10 doesn't change. Yes, Appsec feels like Groundhog Day, but it's not because the people at OWASP are sitting on their hands. The OWASP Top 10 catalogs the top Web vulnerabilities that all applications face, and it's reviewed and updated on a regular basis. But Hoff is right: It mostly does not change.

To refresh your memory, here is the OWASP Top 10 for 2010:

    More Insights
    White Papers
    More White Papers
    Webinars
    More Webinars
    Reports
    More Reports
    Editors' Choice
    Top macOS Malware Threats: Here Are 6 to Watch
    Jai Vijayan, Contributing Writer, Dark Reading
    Dark Reading Launches Inaugural CISO Advisory Board
    Kelly Jackson Higgins 2, Editor-in-Chief, Dark Reading
    Meet Charlotte, CrowdStrike's New Generative AI Assistant
    Dark Reading Staff, Dark Reading
    'Volt Typhoon' China-Backed APT Infiltrates US Critical Infrastructure Orgs
    Tara Seals, Managing Editor, News, Dark Reading
    Webinars
    More Webinars
    Reports
    More Reports
    White Papers
    More White Papers
    Events
    More Events
    More Insights
    White Papers
    More White Papers
    Webinars
    More Webinars
    Reports
    More Reports