Web Application security has become the biggest concern for almost all organizations who wish to bring their business to the Internet.
There are various reasons behind why we are still unable to fix issues like SQL Injection, Cross-Site Scripting etc. These range from developer complacency, lack of knowledge about the security issues, lack of management commitment, etc. At the same time, organizations invest in initiatives such as secure coding trainings, source code reviews, web application firewalls, etc. Which initiative should be adopted in what suggested fashion and order so that the maximum benefit can be achieved, especially in situations where budget constraints exist. Also, what are the ground realities that inhibit organizations from implementing ideal answers to these questions. This survey, is one part of our larger research project that aims at understanding these reasons by gaining insight from Developers and the Management by asking some specific questions depending upon their experience in the Industry.
A detailed analysis of the survey results will be done here at NII and the result of the same (in the form of reports) shall be delivered to you on the email address provided by you. We will not be using your email address to send you an unsolicited commercial email, unless you explicitly authorize us to do so.