Data behind Owasp Top 10 2017

Due to its wide use, acceptance, and need for trusted results, it is essential that the data supporting the OWASP Top 10 2017 is understood and accepted by the community.


The OWASP Top 10 2017 did a ‘request for data’ which might not have reached as wide an audience as it should have reached.

The Summit, and this Working Session, provide a perfect opportunity to allow the current data set to be understood and for new data sets/analysis to be submitted/analysed (these will validate the current Top 10 items, or provide evident for changes).


  • Deep dive into published/original data set
  • Allow new data set and analysis to be submitted (data to be normalised before the Summit)
  • Review data provided and compare with existing Top 10 items
  • (If relevant) create evidence for changes


  • Majority of participants to agree on the data set supporting the final Top 10 2017 mappings


The target audience for this Working Session is:


Back to list of all Working Sessions and Tracks

Edit this page here