Skip to Main Content
Secure and Resilient Software Development
book

Secure and Resilient Software Development

by Mark S. Merkow, Lakshmikanth Raghavan
June 2010
Intermediate to advanced content levelIntermediate to advanced
392 pages
8h 31m
English
Auerbach Publications
Content preview from Secure and Resilient Software Development

Appendix B

Enterprise Security API

Overview

The OWASP Enterprise Security API (ESAPI) Toolkit helps software developers guard against security-related design and implementation flaws. You learned about the OWASP ESAPI project in Chapter 6, which described ESAPI methods for preventing many of the OWASP Top 10 Vulnerabilities. In this appendix, you’ll find details on many of these methods and how they are used in Java code development.

Allowing for language specific differences, all OWASP ESAPI versions use the same basic design:

  • There is a set of security control interfaces. They define, for example, types of parameters that are passed to types of security controls. There is no proprietary information or logic contained in these interfaces.
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Secure, Resilient, and Agile Software Development

Secure, Resilient, and Agile Software Development

Mark Merkow
Secure and Resilient Software

Secure and Resilient Software

Mark S. Merkow, Lakshmikanth Raghavan
Agile Application Security

Agile Application Security

Laura Bell, Michael Brunton-Spall, Rich Smith, Jim Bird

Publisher Resources

ISBN: 9781439826973