The OWASP Top 10 for 2017 is construct basically with respect to 11 huge datasets from firms that have specialize in application security, including 8consulting companies and 3 product vendors.
- They have combined (A4)Insecure Direct Object References and (A7) Missing Function Level Access Control into 2017(A4) Broken Access Control.
- 2013-A10: Unvalidated Redirects and Forwards was the dropped as it’s prevalence in a very small ratio.
- A(7) Insufficient attack protection added with 2017.
- Underprotected APIs was added with 2017 considering growth of Modern applications.
No comments:
Post a Comment