(1. Preface 2. The distinction between trust relationships is the basis of security design 3. Access control is the core of security design 4. The idea of ??separating data and code is the principle of security design 5. Best practice 1: SecureByDefault6. Best practice 2 :Unpredictable7.Summary8.References
Design thinking for web usage security.pdf)