Confidentiality, Integrity, Availability

A technique to cryptographically bind tokens (like cookies) to a specific TLS session or client key.

A formal program to detect, prevent, and respond to malicious or negligent insiders.

Open Web Application Security Project