[Owasp-cmm] SAMM: Case Studies

Pravir Chandra chandra at list.org
Tue Nov 4 19:19:38 EST 2008 

We're talking about SAMM quite a bit this week at the OWASP Summit in
Portugal.

The major goal I have for this week is to take a lot of the great feedback
I've gotten on the SAMM Beta (from yourself and many members of the list
included) and hammer out changes to the Beta that make sense. For the most
part, we're still working at a pretty high-level on framework feedback and
aren't going to get into the nitty gritty of every level, but we'll probably
at least discuss the levels with the assigned activity names. I'll be sure
to report back any major conclusions here.

Also, for anyone interested in helping with case studies (and data
collection) based on your organizations (or if you know of people that might
fit that mold) please send me a note off-list and I'll get back with you
about next steps. That way folks can stay private until we've confirmed
they're ok about being talked about publicly (or perhaps we can even change
names to protect the innocent, etc.).

Thanks.

p.

On Wed, Oct 8, 2008 at 4:49 AM, Andy Steingruebl <steingra at gmail.com> wrote:

> I know several folks that would be happy to participate, folks that speak
> openly.  I think my employer is one of them.
>
> Pravir - you want names privately so you can approach people?
>
> - Andy
>
> On Wed, Oct 8, 2008 at 5:02 AM, <james at architectbook.com> wrote:
>
>> Pravir mentioned that he has already received lots of suggestions for
>> making it better and the thing that he needs to take it to the next level is
>> to start working on case studies. So, how do we go about finding Fortune
>> enterprises that would be willing to participate? Would folks here be
>> willing to share the link with employees of large enterprises to encourage
>> them to participate?
>>
>> Of course, I am employed by a large enterprise and will make sure that we
>> are one of the case studies but we of course need more than me...
>>
>> _______________________________________________
>> Owasp-cmm mailing list
>> Owasp-cmm at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-cmm
>>
>>
>
>
> --
> Andy Steingruebl
> steingra at gmail.com
>
> _______________________________________________
> Owasp-cmm mailing list
> Owasp-cmm at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-cmm
>
>


-- 
~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~ ~~~~~~~~ ~~~~~ ~~~ ~~ ~
Pravir Chandra                      chandra<at>list<dot>org
PGP:    CE60 0E10 9207 7290 06EB   5107 4032 63FC 338E 16E4
~ ~~ ~~~ ~~~~~ ~~~~~~~~ ~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-cmm/attachments/20081104/d6ced61e/attachment.html

More information about the Owasp-cmm mailing list