Improving Web Application Security: Threats and Countermeasures

Each checklist in the building series covers the following application categories: input validation, authentication, authorization, configuration management, sensitive data, session management, cryptography, parameter manipulation, exception management, and auditing and logging. These checklists are:

• Checklist: Securing ASP.NET

• Checklist: Securing Web Services

• Checklist: Securing Enterprise Services

• Checklist: Securing Remoting

• Checklist: Securing Data Access