CertNexus Certified Cyber Secure Coder (CSC) — Question 37

Which of the following security best practices should a web developer reference when developing a new web-based application?

Answer options

• A. Control Objectives for Information and Related Technology (COBIT)
• B. Risk Management Framework (RMF)
• C. World Wide Web Consortium (W3C)
• D. Open Web Application Security Project (OWASP)

Correct answer: D

Explanation

The Open Web Application Security Project (OWASP) provides critical guidelines and resources specifically aimed at improving the security of web applications, making it the most relevant choice. In contrast, COBIT and RMF focus on broader governance and risk management frameworks, while W3C primarily addresses web standards rather than security practices.