Business Logic Flaws
Background
Principles (if any)
Positive controls
Control
How to build a secure
Control
How to build a secure
Secure processes
Fraud
Aggregate data disclosure
Unit or Integration Test Cases
Abuse Cases
Negative patterns
Control that should never ever appear under pain of infinite nyan cat
e.g. shared knowledge questions or answers, or dynamic SQL queries