The New OWASP ISVS – What, Why and Who?

by Andrea VanSeveren | Mar 19, 2021 | IoT Security

Reading Time: 2 minutes If you’re involved with cybersecurity, you’re probably aware of the OWASP Foundation, a leading authority globally on application security. OWASP is famous for its Top 10 and Application Security Verification Standard (ASVS)...

What is OWASP and Why Should You (as Someone Securing IoT) Care?

by Andrea VanSeveren | Mar 17, 2021 | IoT Security

Reading Time: 2 minutes If you’re charged with testing Internet of Things (IoT) devices or systems, we feel your pain. As the IoT explodes in diversity and complexity, IoT solutions often evolve into multi-component ecosystems with webs of potential...

How Automated Testing and Code Review Fit into the OWASP ASVS

by Jeremy Sporn | Dec 8, 2020 | Application Security

Reading Time: 3 minutes   The Application Security Verification Standard (ASVS) from the Open Web Application Security Project (OWASP) seeks to elevate the maturity of web application security testing across our industry. The ASVS defines three...

Testing Against the OWASP ASVS—It’s Easier Than You Think

by Jeremy Sporn | Dec 2, 2020 | Application Security

Reading Time: 2 minutes Many security professionals and software developers around the world have heard of the Open Web Application Security Project (OWASP) through its widely used “Top Ten Web Application Security Risks” document. OWASP intends its famous...

OWASP Top 10 Versus the OWASP ASVS—When to Use Which?

by Jeremy Sporn | Oct 1, 2020 | Application Security

Reading Time: 3 minutes   Developers and security professionals worldwide know and love the Open Web Application Security Project (OWASP) “Top Ten Web Application Security Risks” document. In fact, its creators at OWASP feel that the famous “Top 10” is...