C. J. Serrão et al.,  2nd. OWASP Ibero-American Web Application Security Conf., 1 ed., Lisboa, OWASP, 2010