OWASP Enterprise Security API
I was privileged to make it to the March OWASP DC meeting up in Columbia Maryland, to see Jeff Williams give a talk about the OWASP Enterprise Security API, or ESAPI. This is a project that Jeff has been working on for a while, with a variety of collaborators in the web application security field. The public last saw a preview of this at last years “Live O” conference, and it has shaped up nicely since then. I often comment on how the real answer to most web app security questions is in prevention, and preventative measures are usually “non-sexy” …
OWASP Meeting Reminder
Just a bump to the readers out there who may care, the monthly OWASP DC meeting is tomorrow in Columbia MD at Aspect Security. The topic this month (Jeff Williams speaking on the OWASP Enterprise Security API) is going to be a very important one to developers, and I urge folks to make the trek.