SOA Information security policy
Step 1 in building a secure web application is to develop a security policy.. Given the differing requirements of different applications and different organizations, this security section only deal with more general security issues, and primarily from the aspect of application vulnerabilities that can be exploited by attackers. Other elements such as data classification, authentication, etc. need to be described in the organization's / project's security policy.