Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Leveraging OWASP in Open Source Projects

OWASP Foundation via YouTube

Start learning Write review
Coursera Ad

Get Coursera Plus for 40% off

Learn More → Udacity Ad

Get 50% Off Udacity Nanodegrees — Code CC50

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore how the CAS AppSec Working Group leverages OWASP resources to enhance security in open source projects during this 45-minute conference talk. Learn about improving security, providing security artifacts for potential adopters, and implementing policies for vulnerability analysis and notification in the context of Jasig CAS, an open source WebSSO project. Gain insights into addressing OWASP A9 "Using components with Known Vulnerabilities / Secure Coding" and discover a model that other open source projects can adopt. Delve into topics such as CAVS security, threat libraries, information disclosure attacks, data flow diagrams, and the STRIDE methodology for security analysis.

Syllabus

Introduction
Who is this for
Open Source is Secure
CAVS
CAVS Security
COS Apps Tech
Apps Tech Goals
Working Apps
Security
Open Source
Base of Security
Moodle
Top 10
Top 9
Our Experience
Threat Libraries
Information Disclosure Attack
Remediation
Results
Challenges
Volunteering
Data Flow Diagrams
Why Stride
Strike Character Categorization

Taught by

OWASP Foundation

Reviews

Start your review of Leveraging OWASP in Open Source Projects

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.