I recently had a great discussion with Wendy Nather from the 451 Analyst Group. She had found one of my previous posts on using a service gateway to protect against the OWASP Top 10 and had some follow up questions. I wanted to share some of the discussion as well as her questions because it really got me thinking more about Enterprise application architecture and security.