Conference Proceedings

Is the OWASP Top 10 List Comprehensive Enough for Writing Secure Code?

ACM International Conference Proceeding Series (2020) 58-61
DOI: 10.1145/3437075.3437089
2Citations
Citations of this article
37Readers
Mendeley users who have this article in their library.
Get full text

Abstract

The OWASP Top 10 is a list that is published by the Open Web Application Security Project (OWASP). The general purpose is to serve as a watchlist for bugs to avoid while writing code. This paper compares how many of those weakness as described in the top ten list are actually reported in vulnerabilities listed in the National Vulnerability Database (NVD). That way it makes it possible to empirically show whether the OWASP Top 10 list is comprehensive enough or not, for code weaknesses that have been found in the past decade.

Author supplied keywords

Cite

CITATION STYLE

APA

Sane, P. (2020). Is the OWASP Top 10 List Comprehensive Enough for Writing Secure Code? In ACM International Conference Proceeding Series (pp. 58–61). Association for Computing Machinery. https://doi.org/10.1145/3437075.3437089

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free