{"height":"190","provider_name":"Hatena Blog","blog_title":"Fox on Security","author_name":"foxcafelate","published":"2017-11-26 09:00:00","image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/f/foxcafelate/20171126/20171126064801.jpg","categories":["\u8abf\u3079\u3066\u307f\u305f\u3002","PCI DSS"],"html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Ffoxsecurity.hatenablog.com%2Fentry%2F2017%2F11%2F26%2F090000\" title=\"OWASP TOP10 2017\u304c\u30ea\u30ea\u30fc\u30b9\u3055\u308c\u3066\u3044\u307e\u3057\u305f\u3002 - Fox on Security\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","provider_url":"https://hatena.blog","url":"https://foxsecurity.hatenablog.com/entry/2017/11/26/090000","width":"100%","version":"1.0","author_url":"https://blog.hatena.ne.jp/foxcafelate/","blog_url":"https://foxsecurity.hatenablog.com/","title":"OWASP TOP10 2017\u304c\u30ea\u30ea\u30fc\u30b9\u3055\u308c\u3066\u3044\u307e\u3057\u305f\u3002","description":"\u3069\u3046\u3084\u30891\u9031\u9593\u524d\u306bOWASP TOP10 2017\u304c\u30ea\u30ea\u30fc\u30b9\u3055\u308c\u305f\u3088\u3046\u3067\u3059\u3002\u65e2\u306b\u3054\u5b58\u77e5\u306e\u65b9\u3082\u591a\u3044\u304b\u3068\u601d\u3044\u307e\u3059\u304c\u3001PCI DSS\u306b\u3082\u95a2\u4fc2\u6027\u304c\u6df1\u3044\u306e\u3067\u3001\u4e2d\u8eab\u3092\u898b\u3066\u307f\u305f\u3044\u3068\u601d\u3044\u307e\u3059\u3002 \u25c6\u30ea\u30ea\u30fc\u30b9\u30d5\u30a1\u30a4\u30eb\u306fGithub\u306b\u3042\u308a\u307e\u3057\u305f\u3002 OWASP Top 10 - 2017 A1\uff1a Injection(\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3)A2\uff1a Broken Authentication (\u8a8d\u8a3c\u306e\u4e0d\u5099)A3\uff1a Sensitive Data Exposure(\u6a5f\u5bc6\u30c7\u30fc\u30bf\u306e\u9732\u51fa)A4\uff1a XML External Entities (XML\u5916\u90e8\u653b\u6483)A5\uff1a Broken Access Control(\u30a2\u30af\u30bb\u30b9\u5236\u5fa1\u306e\u4e0d\u5099)A6\uff1a\u2026","type":"rich"}