Control and control categories that every developer should absolutely, 100% include in every project

Written July 20, 2019 • Steve Perry

Ok, apologies for the click-bait title. The OWASP Top Ten Proactive Controls describes the most important control and control categories that every developer should absolutely, 100% include in every project. It’s a great checklist to start off with.

In order of importance, they are:

C1: Define Security Requirements
C2: Leverage Security Frameworks and Libraries
C3: Secure Database Access
C4: Encode and Escape Data
C5: Validate All Inputs
C6: Implement Digital Identity
C7: Enforce Access Controls
C8: Protect Data Everywhere
C9: Implement Security Logging and Monitoring
C10: Handle All Errors and Exceptions

Source: Top 10 Proactive Controls 2018 PDF