Control and control categories that every developer should absolutely, 100% include in every project
Ok, apologies for the click-bait title. The OWASP Top Ten Proactive Controls describes the most important control and control categories that every developer should absolutely, 100% include in every project. It’s a great checklist to start off with.
In order of importance, they are:
C1: Define Security Requirements
C2: Leverage Security Frameworks and Libraries
C3: Secure Database Access
C4: Encode and Escape Data
C5: Validate All Inputs
C6: Implement Digital Identity
C7: Enforce Access Controls
C8: Protect Data Everywhere
C9: Implement Security Logging and Monitoring
C10: Handle All Errors and Exceptions