filmov
tv
A08 Software & Data Integrity Failures: OWASP Top 10: Drupal Focus
Показать описание
A08 - Software and data integrity failures
Trainer: Janez Urevc
This is a new category for 2021, which includes the previous #8 category, Insecure Deserialization. This category covers assumptions made while updating software, data, or your CI/CD pipelines.
Software and data integrity covers a range of code and infrastructure issues which may not be properly hardened against integrity violations. This may include libraries or other code from untrusted sources, a compromised CI/CD pipeline, or auto-updating software that does not go through sufficient review before deployment. Serializing and deserializing functions also fall into this category.
#OWASPTop10 #Drupal #security
Trainer: Janez Urevc
This is a new category for 2021, which includes the previous #8 category, Insecure Deserialization. This category covers assumptions made while updating software, data, or your CI/CD pipelines.
Software and data integrity covers a range of code and infrastructure issues which may not be properly hardened against integrity violations. This may include libraries or other code from untrusted sources, a compromised CI/CD pipeline, or auto-updating software that does not go through sufficient review before deployment. Serializing and deserializing functions also fall into this category.
#OWASPTop10 #Drupal #security