Documentation to support internal security audits?
![]() We are conducting an internal security review of our local CLM 6.0.6 installation. The auditor is asking for documentation which indicates the application developer tests the application for common vulnerabilities like cross-site scripting, SQL injection, overflow, XML-oriented attacks, etc...
Would someone please point me to where I might find such a document?
|