Develop and Enforce Application Security

An important step in creating a MarkLogic Server application is to ensure that it is properly secure. Network security mostly ignores the contents of HTTP traffic, therefore you can’t use network layer protection (firewall, SSL, IDS, hardening) to stop or detect application layer attacks. The Open Web Application Security Project is an open group focused on understanding and improving the security of web applications and web services. You can visit their site at https://owasp.org/. The OWASP Top Ten Project is one starting point for understanding how you can build good security into your application.