Ensuring Web Security with OWASP Methodology

Abstract

Currently, more and more companies, organizations, individuals (entities) operate online in the global virtual cyberspace, storing and processing enormous amounts of sensitive personal data. There are various ways to improve the security of web applications, many of which are proprietary, poorly accessible and difficult to implement. A thorough analysis suggests that the development of secure web applications using the OWASP methodology (The Open Worldwide Application Security Project) allows for the effective control and reduction of the values of all types of vulnerabilities. This paper is a review, synthesis that brings its small contribution to the specialized literature on awareness and promotion of the culture of web application protection with the OWASP methodology. The paper briefly describes the OWASP project, the approach to web application security based on the OWASP Top Ten vulnerabilities, which allows organizations not only to protect their data, but also their reputation and customer trust. OWASP provides a good understanding of how attackers can compromise an entity's web applications and sensitive user data. It also emphasizes the need to implement preventive, proactive measures to prevent web applications from compromising users and the host entity. CZU: 004.056.53:004.77; JEL: L86, O33, I29