All,
Much has been said offline on this thread and so I'm going to say only things
included herein to hopefully conclude my involvement in the SC-L topic. I hope
I've provided useful direction for considering ESAPI adoption in this forum.
For those interested, I'll be continuing the
Hi all,
Many of us have argued that the features of underlying web
applications frameworks will make a major impact on the security of
the individual applications built on top of them.
To that end, a few of my colleagues and myself have put together a
“Secure Web Application Framework
I wrote a blog in the state of software security using the analogy of skiers
versus snowboarder in the early 90's.
Please let me know your thoughts and comments by replying to this list or my
blog.
http://parsonsisconsulting.blogspot.com/
Thanks,
Matt
Matt Parsons, MSM, CISSP