How to Manage Security on Applications Written by Third Parties
Many web site owners use third-party software for their web applications and the underlying web application environment. The actual web applications may be off the shelf or developed by a third party on behalf of a web site owner. The web server, the server operating system, and the back-end database are a few common examples.
All the liability that may result from security breaches on web applications is the responsibility of site owners even though all the control for the security posture of all the third-party vendor code is with the third-party software vendors. Therefore, ...