The objective of this cheat sheet is to provide an explanation of about what an Abuse Case is, why abuse cases are important when considering the security of an application, and further finally, to provide a proposal for a pragmatic approach to builing a list of abuse cases and tracking them for every feature planned for implementation as part of an application. OWASP Cheat Sheet Series. This is a summary of notes taken from the OWASP Cheat Sheet Series. Cryptographic Requirements. The recommended minimal key lengths. OWASP Cheat Sheets Project Homepage. OWASP Cheat Sheet Series; V - T - E Cheat Sheets: Developer / Builder: 3rd Party Javascript Management; Access Control.
Here are some random popular articles:
- - Hash-Based Signatures Part I: One-Time Signatures (OTS)
- - The Strobe Protocol Framework
- - Problems that UDP and only UDP has
- - KangarooTwelve
- - Maybe you shouldn't skip SHA-3
- - Common x509 certificate validation/creation pitfalls
- - Schnorr's Signature and non-interactive Protocols
Here are some random recent articles:
- - Cryptographic Signatures, Surprising Pitfalls, and LetsEncrypt
- - The book is finished, well sort of...
- - Hardware Solutions To Highly-Adversarial Environments Part 1: Whitebox Crypto vs Smart Cards vs Secure Elements vs Host-Card Emulation (HCE)
- - I'm on the Cyber Security Interviews podcast!
- - The missing explanation of zk-SNARKs: Part 2
- - A history of end-to-end encryption and the death of PGP
- - Hardware Solutions To Highly-Adversarial Environments Part 3: Trusted Execution Environment (TEE), SGX, TrustZone and Hardware Security Tokens
If you don't know where to start, you might want to check these popular articles:
- - Hash-Based Signatures Part I: One-Time Signatures (OTS)
- - The Strobe Protocol Framework
- - Problems that UDP and only UDP has
- - KangarooTwelve
- - Maybe you shouldn't skip SHA-3
- - Common x509 certificate validation/creation pitfalls
- - Schnorr's Signature and non-interactive Protocols
Here are the latest links posted:
- 25 Apr Draft Rfc: The Memory-Hard Argon2 Password Hash And Proof-Of-Work Function
- 24 Apr Mining Bitcoin With Pencil And Paper: 0.67 Hashes Per Day
- 23 Apr The Secure Messaging App Conundrum: Signal Vs. Telegram (A Comparison For Non Experts)
- 22 Apr What Is A Merkle Tree?
- 21 Apr Rust And Cryptographic Code
You can also suggest a link.
Owasp Prevention Cheat Sheet
I'm writing a book!
You can already start reading it in early-access, and the first chapters are for free!
Here are some random popular articles:
Owasp Session Management Cheat Sheet
- - TLS, Pre-Master Secrets and Master Secrets
- - Maybe you shouldn't skip SHA-3
- - A New Public-Key Cryptosystem via Mersenne Numbers
- - What is the BLS signature scheme?
- - Key Compromise Impersonation attacks (KCI)
- - Database Encryption
- - How did length extension attacks made it into SHA-2?
Here are some random recent articles:
- - WTF are these security chips?
- - A flamegraph of Real-World Cryptography
- - I'm on the develomentor podcast to talk about what applied cryptography is!
- - I'm on the Cyber Security Interviews podcast!
- - The Let's Encrypt duplicate signature key selection attack
- - Alternatives to PGP
- - The missing explanation of ZK-SNARKs: Part 1
If you don't know where to start, you might want to check these popular articles:
- - TLS, Pre-Master Secrets and Master Secrets
- - Maybe you shouldn't skip SHA-3
- - A New Public-Key Cryptosystem via Mersenne Numbers
- - What is the BLS signature scheme?
- - Key Compromise Impersonation attacks (KCI)
- - Database Encryption
- - How did length extension attacks made it into SHA-2?
Here are the latest links posted:
- 25 Apr Draft Rfc: The Memory-Hard Argon2 Password Hash And Proof-Of-Work Function
- 24 Apr Mining Bitcoin With Pencil And Paper: 0.67 Hashes Per Day
- 23 Apr The Secure Messaging App Conundrum: Signal Vs. Telegram (A Comparison For Non Experts)
- 22 Apr What Is A Merkle Tree?
- 21 Apr Rust And Cryptographic Code
You can also suggest a link.
Owasp Cheat Sheet Pdf
I'm writing a book!
You can already start reading it in early-access, and the first chapters are for free!