The nonprofit foundation called OWASP (Open Web Application Security Project) that works to improve the security of software, conducting technology security surveys and documenting the top 10 webs Application Security Risk. Have released the top 10 web Application Security Risks for the year 2021 which include:
- Broken access control
- Cryptographic failures
- Insecure design
- Security misconfiguration
- Vulnerable and outdated components
- Identification and authentication failures
- Software and data inegrity failures
- Security and logging and monitoring failures
- Server-side request forgery
And in contrary to top ten for the year 2017 there are three new categories, four categories with naming and scoping changes, and some consolidation in the Top 10 for 2021.
The foundation mentions that The OWASP Top 10 is a standard awareness document for developers and web application security and it represents a broad consensus about the most critical security risks to web applications.
Taking precautions and minimize the web application security risks in industries, OWASP has called for Companies to adopt their top ten documentations.
“Companies should adopt this document and start the process of ensuring that their web applications minimize these risks. Using the OWASP Top 10 is perhaps the most effective first step towards changing the software development culture within your organization into one that produces more secure code.”