[GPC] Project on threat modeling

Paulo Coimbra paulo.coimbra at owasp.org
Tue Mar 15 13:21:21 EDT 2011

Thank you, Anurag. If the GPC doesn’t opposes I will set the project up.



- Paulo



Paulo Coimbra,

 <http://www.owasp.org/index.php/User:Paulo_Coimbra> OWASP Project Manager


From: Anurag Agarwal (OWASP) [mailto:anurag.agarwal at owasp.org] 
Sent: segunda-feira, 14 de Março de 2011 22:06
To: 'Paulo Coimbra'
Cc: 'Global Projects Committee'
Subject: RE: [GPC] Project on threat modeling


Hi Paulo – For some reason, the previous mail bounced back. (I guess I sent
it through wrong account).


Please see below high level roadmap for threat modeling project


1. Create a wiki on threat modeling.

2. Update the wiki with discussions from threat modeling sessions at the

3. Call for project leadership committee members.

4. High level project roadmap with milestones.

5. Call for participants

6. Review existing resources within OWASP to align with threat modeling

7. Come up with a threat modeling methodology 

8. Publish the first draft


I want to get through from Step 1 – 5 by mid april and based on the
participation, decide on future dates.


Please let me know if you have any questions.



From: global-projects-committee-bounces at lists.owasp.org
[mailto:global-projects-committee-bounces at lists.owasp.org] On Behalf Of
Paulo Coimbra
Sent: Monday, March 07, 2011 1:12 PM
To: 'Anurag Agarwal'
Cc: 'Global Projects Committee'
Subject: Re: [GPC] Project on threat modeling




Hope you are well and, first of all, thank you for volunteering to lead an
OWASP Project.  It is with volunteers like yourself that OWASP continues to
succeed in making application security visible.

Second, regarding your new leadership of this project, as I understand that
you would like to have the initial project’s page set up as soon as
possible, I won’t burden with data requests and solely ask if you could send
a roadmap off, basically the high level details of where you'd like to take
the project, so that the OWASP Global Projects Committee (GPC) will look at
it and provide feedback.


I take the opportunity to ask you whether you have the cycles to update us
relatively to progresses made on the AJAX Security Project.

Many thanks, best regards,



- Paulo



Paulo Coimbra,

 <http://www.owasp.org/index.php/User:Paulo_Coimbra> OWASP Project Manager


From: Anurag Agarwal [mailto:anurag at myappsecurity.com] 
Sent: quinta-feira, 24 de Fevereiro de 2011 02:25
To: 'Paulo Coimbra'
Subject: Project on threat modeling


Paulo - I want to setup a project on threat modeling. Can you please setup a
wiki and mailing list and give me access so I can start updating the results
from the summit and announce it to the leaders mailing list.




Anurag Agarwal

MyAppSecurity Inc

Cell - 919-244-0803

Email - anurag at myappsecurity.com

Website - http://www.myappsecurity.com

Blog - http://myappsecurity.blogspot.com LinkedIn -



-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/mailman/private/global-projects-committee/attachments/20110315/efe8ee4e/attachment.html 

More information about the Global-projects-committee mailing list