The Open Web Application Security project (OWASP) Top Ten provides a powerful awareness document for web application security. The OWASP Top Ten represents a broad consensus about what the most critical web application security flaws are as identified by a variety of security experts from around the world who have shared their expertise to produce this list. The U.S. Federal Trade Commission strongly recommends that all companies use the OWASP Top Ten and ensure that their partners do the same. In addition, the U.S. Defense Information Systems Agency has listed the OWASP Top Ten as key for best practices. In the commercial market, the Payment Card Industry (PCI) standard has adopted the OWASP Top Ten and lists it as a key requirement as part of section 6, "Develop and maintain secure systems and applications", mandating that all web applications be developed according to security guidelines to protect against the OWASP Top 10.