The Open Web Application Security Project (OWASP) has provided us with another great resource to help secure our web applications. A guide to creating secure applications on the Facebook platform has been released.
This guide, written by Justine Osborne (www.isecpartners.com) and Ryan McGeehan (Facebook), "provides a basic outline/best practice for developing secure applications on the Facebook platform. Facebook applications are web, desktop, or mobile applications that make use of the Facebook API to integrate tightly with the social network experience."
I am not a Facebook developer, but I know many of my readers and friends are. So I hope you can get some use out of this. Should I ever decide to develop Facebook apps, I can assure you that I would use this guide.
The document is available at http://www.owasp.org/index.php/Facebook