Description: Discussions about how to protect personal data are lively, but still there was no specific and independent description of privacy risks for web applications available. Thus, companies lack guidance to apply during systems development and users cannot easily check whether they take privacy risks. Therefore the OWASP Top 10 Privacy Risks project was founded 2014 to develop a top 10 list for privacy risks in web applications. The project covers technological and organizational aspects like missing encryption or insufficient transparency and results and practical countermeasures are presented in this session.
Quelle: APPSEC EU15