From the OWASP Top Ten to the OWASP ASVS

Explore a comprehensive overview of application security standards in this conference talk from GOTO Berlin 2018. Delve into the limitations of relying solely on the OWASP Top Ten for securing applications. Compare the OWASP Top Ten 2017 and OWASP Top Ten Proactive Controls 2018 with the more extensive OWASP Application Security Verification Standard (ASVS) v3.1. Gain insights into over 150 requirements that form the basis for testing web application technical security controls and provide developers with detailed guidelines for secure development. Learn why a more nuanced and detailed approach to application security is crucial for creating truly secure applications. Discover how the ASVS can elevate your security practices beyond the bare minimum offered by top ten lists.

From the OWASP Top Ten(s) to the OWASP ASVS • Philippe De Ryck • GOTO 2018