Web application are very enticing to corporations. they provide quick access to corporate resources. For the very same reasons web applications can be a serious security risk to the corporation. Unauthorized users can find the same benefits.
The content provides a description of the security challenges introduced by externally facing web applications. it provides the knowledge necessary to articulate to developers the security requirements for a specific web application, to make contractual the obligation of the developer to build an application that is secure, and to assure that appropriate testing is completed prior to moving to a production environment.