V2.  Authentication
V3.  Session Management
V4.  Access Control
V5.  Input Validation
V6.  Output Encoding/Escaping
V7.  Cryptography at rest
V8.  Error Handling & logging
V9.  Data Protection
V11. HTTP Security
V16. Files and Recourses