Define and Apply Secure Coding Guidelines and Standards
In this section of this tutorial, we’ll take a look at defining and applying secure coding guidelines and standards to help you understand the different aspects of secure coding. Organizations that develop software, need to develop policies and standards regarding the development of source code to reduce the number of vulnerabilities that could lead to errors, incidents, and security breaches.
Security of Application Programming Interfaces
An Application Programming Interface (API) allows an application to communicate with another application, or an operating system, database, network, etc.
The Open Web Application Security Project (OWASP) Enterprise Security API Toolkits project includes these critical API controls:
- Access control
- Input validation
- Output encoding/escaping
- Error handling and logging
- Communication security
- HTTP security
- Security configuration
Read more detail about OWASP at www.owasp.org.