I would be curious to know if the implementers of the various OpenID libraries have used tools such as Ounce Labs (www.ouncelabs.com), Coverity (www.coverity.com) and others to ensure that the OWASP Top Ten (www.owasp.org) doesn't occur?
************************************************************************* This communication, including attachments, is for the exclusive use of addressee and may contain proprietary, confidential and/or privileged information. If you are not the intended recipient, any use, copying, disclosure, dissemination or distribution is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail, delete this communication and destroy all copies. ************************************************************************* _______________________________________________ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs
