====== Standard di Riferimento ======

**Versione:** 2.0\\
**Ambito:** Standard esterni e riferimenti autorevoli per le checklist.

^ Standard ^ Descrizione ^ Link ^
| **OWASP ASVS** | Application Security Verification Standard | [[https://owasp.org/www-project-application-security-verification-standard/]] |
| **OWASP Top 10** | Web Application Security Risks | [[https://owasp.org/www-project-top-ten/]] |
| **CWE** | Common Weakness Enumeration | [[https://cwe.mitre.org/]] |
| **NIS2** | EU Cybersecurity Directive | [[https://eur-lex.europa.eu/eli/dir/2022/2555/oj]] |
| **ISO 27001** | Information Security Management | [[https://www.iso.org/isoiec-27001-information-security.html]] |
| **BSI IT-Grundschutz** | German IT Security Standard | [[https://www.bsi.bund.de/grundschutz]] |
| **BSI TR-03116-4** | Cryptographic Requirements | [[https://www.bsi.bund.de/TR03116]] |
| **NIST FIPS 140-3** | Cryptographic Module Validation | [[https://csrc.nist.gov/pubs/fips/140-3/final]] |
| **DokuWiki Security** | Plugin Security Guidelines | [[https://www.dokuwiki.org/devel:security]] |

----

//Versione: 2.0//\\
//Autore: Wolfgang van der Stille//

~~DISCUSSION:off~~