WebApp Sec mailing list archives

security standards

From: Svejk It <svejkit () gmail com>
Date: Mon, 5 Nov 2012 10:22:27 +0000

Hi,
If an organisation is looking to purchase or subscribe to a web
application service, are there any security standards it can request
the supplier to conform to? For example, it may like to have some
assurance that SQL injection is not possible. If so, are these
standards widely adopted?
Or, if there is not a widely adopted standard, is it reasonable to
request that the supplier state that it follows the Best Practice and
Guidelines of OWASP?
Thanks,
Svejk



This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now! 
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------

Current thread:

security standards Svejk It (Nov 05)
- Re: security standards bl4de (Nov 05)
  - RE: security standards Ofer Shezaf (Nov 05)
- RE: security standards Dave Wichers (Nov 05)
- <Possible follow-ups>
- RE: security standards Martin O'Neal (Nov 05)