Jeremiah Grossman (spole?nost WhiteHat Security) rozebírá následujících dest bod?:
- Cloud Computing Has Abstracted Network and Perimeter Defenses
- Over 80% of All Websites Have Serious Security Vulnerabilities
- Faulty Input Validation is the Leading Cause of Website Vulnerabilities
- Defense-in-Depth Protection is Necessary
- Many Vulnerabilities in Production Sites Originate in Areas Other Than Development Code
- Black Box and White Box Assessment are Complementary
- Attackers Win When Security Controls Refuse to Focus on the Threat
- Despite the Most Regimented SDL, All Software Is Flawed
- Resolving Website Security Issues Requires Updates to Custom Code
- Website Security Is More Than Counting Vulnerabilities