What provides a standard for Web application security and summarizes primary Web application security vulnerabilities based on input from security experts?
The British Standards Institute (BSI) 7799
ISO 27002
The Open Web Application Security Project (OWASP) Top Ten Project
TSP-Secure