[Owasp-topten] Outsider's View of Top Ten
edtracy at gmail.com
Thu Oct 13 15:28:52 EDT 2005
Ouch! I wanted to relay these comments from a BAH employee (with permission)
who is not affiliated with OWASP as all of us are. This came from an
internal discussion on getting a corporate membership at OWASP. It really
validates the perspective that has caused me to want the top ten to change
(or its role to change):
"How much visibility does OWASP really have in the community? I'm always
surprised at the various SW Assurance working groups and conferences I
attend to discover how little name recognition they have. And among those
who DO recognise the name, there seems to be more resentment of the OWASP
Top 10 than respect for the organisation - mainly because the Top 10 have
been misused by too many organisations. Not OWASP's fault, but unfortunately
they get the blame.
In summary - will having our name affiliated with OWASP help or hurt us
among our customers and potential customers?"
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-topten