• About Security Compass

  Security Compass is an industry-leading information security consulting firm, specializing in secure software development and training.

  To request additional information about Security Compass and get started on your strategic security solutions:

  Learn more Contact us

• About SD Elements

  SD Elements makes securing software easier while building compliance into your application.

  To learn more, visit our website.

• Categories

  • Android
  • Apple
  • Application Security
  • Compliance
  • Conferences
  • Events
  • Featured
  • Guest Post
  • Management
  • Mobile Security
  • podcast
  • SD Elements
  • Security Frameworks
  • Training
  • Tutorials
  • Uncategorized
  • Videos
  • Whitepapers
  • Wireless Security

• Tags

  android hacking, iOS hacking, mobile training, pci, requirements, agile, course, free, isc2, linkedin, pci-dss, compliance, pci compliance, whitepaper, mobile hacking, mobile security, pci training, owasp training, regulatory, tailored training, quality, rsa, apple, safety, exploit-me, sector, toorcon, phishing, video, malware, jsf, banking, mobile, research, case study, culture, xss, sd elements, android, sdlc, training, tutorial, mobilesec, owasp, appsec

• @SecurityCompass

  • How Security Compass 'stole' $14 million from a bank. CNN Money: http://t.co/K926OvwcZ6 - posted 5 days ago
  • Hey developers - we're hiring! Why you should work with us: http://t.co/XlPFNiViMi Job postings: http://t.co/Cj0t7dRMem - posted 6 days ago
  • Your Guide to Evaluating Security CBT Programs (Part 1) | SC Blog. http://t.co/6E4um5GnW9 - posted 2 weeks ago
  • Why Are We Failing at Software Security? http://t.co/MdM60WNayO - posted 3 weeks ago

Tag · research

Closing the Secure Web Application Framework Manifesto Project

posted on Mar 11, 2011 by Rohit Sethi 0

Last year we released a paper called the “The Secure Web Application Framework Manifesto” in the hopes of influencing web application framework developers to include more security features natively, or at least optionally, out-of-the box. Subsequently we made the paper into an OWASP project. Recently, Mark Curphey posted a blog entrycriticizing the state of OWASP and…

Tweet

Next Release of Secure Web Application Framework Manifesto

posted on May 5, 2010 by Rohit Sethi 0

A few months ago we released the first version of the Secure Web Application Framework Manifesto: a set of requirements intended to guide web application framework developers in making more secure web application frameworks from the start. Today we’re pleased to announce our next draft of the manifesto. We’ve reformatted the requirements according to much of the…

Tweet