OWASP Sensitive Data Exposure

September 10th, 2022

Sensitive Data Exposure

All the valuable things people can steal from you or use against you.

eg. credit cards, medical records, insurance files, purchasing data, emails

no description for image available


pattern: applications request data encryption keys, which are encrypted themselves

anti-pattern: don't leave decryption keys laying around where and attacker could retrieve them (eg. in memory)

AWS Cloud: use AWS Key Management Service (KMS)

On Premise: HashiCorp Vault

anti-pattern: half-heartedly using an encryption tool you picked




This post was referenced in: