[Global_industry_committee] IBWAS 2009: Cataluñia Government OWASP Case Study

dinis cruz dinis.cruz at owasp.org
Tue Dec 15 00:46:09 EST 2009


(CCing the rest of the IBWAS gang, the OWASP board and the OWASP Industry
Committee)

David, I just
CCed you on the email regarding those ideas we talked about on the
panel in the last day

Others, please read this thread, check out the attached MindMap and
join the conversation :)

Dinis

2009/12/14 David Ryan <dave.ryan at gmail.com>

> Hey Dinis,
>
> No problem.
>
> Regarding my other "ideas" in relation the talk (btw, if you have the
> remainder of those questions and notes, could I get a copy?) I've put
> together a mindmap (freemind 9.x format), which I've attached to this
> email. Just some initial rough ideas. It's by no means complete, but
> it's certainly something I would find very interesting to work on
> further.
>
> I think Daniele Catteddu (EINSA) would also be a good person to have a
> chat with. EINSA might be willing to support (personnel and funding)
> projects like this, at least within the eurozone. Shame he was not
> there on Friday afternoon.
>
> Happy to discuss this further if you think there's some merit to it.
>
> Cheers,
> Dave.
>
> 2009/12/14 dinis cruz <dinis.cruz at owasp.org>:
> > Thx David for following this up
> > For the others CCed on this email, please read the english translation
> below
> > of David's idea. This is following a great nugget of information we
> > discovered by accident during the panel which was the case that
> apparently
> > the local government of Cataluna (part of Spain) has successfully used
> OWASP
> > on their web application outsourcing requirements and the bidding
> companies
> > have committed to delivering websites under those requirements.
> > This could be quite interesting
> > since this could be the start of a government referencing OWASP just like
> > PCI does
> > Dinis
> >
> > 2009/12/14 David Ryan <dave.ryan at gmail.com>
> >>
> >> Hola Vicente y Dinis,
> >>
> >> Soy David, el chico de Irlanda, que estaba hablando contigo sobre la
> >> posibilidad de hacer un investigación sobre como el gobierno local de
> >> Cataluña esta utilizando OWASP en sus proyectos públicos. Como quieres
> >> empezar? Si tienes algunas referencias (URLs, PDFs, etc) que puedes
> >> mandarme, empezare formando una estructura del proyecto y el plan para
> >> el reportaje.
> >>
> >> He tenido otros ideas sobre el concepto de analices de los gobiernos y
> >> como OWASP puede trabajar con ellos - solo o con otros grupos. Voy a
> >> escribir otro correo sobre los ideas durante la semana.
> >>
> >> Muchas gracias de nuevo por organizar una conferencia muy interesante,
> >> ha sido muy interesante para mi. Espero que estamos en contacto y por
> >> supuesto que nos vemos en la próxima OWASP Chapter mitin en Barcelona.
> >>
> >> Gracias y un saludo,
> >> David.
> >>
> >> ...
> >>
> >> Translation for Dinis :-)
> >>
> >> ...
> >>
> >> I am David, the guy from Ireland, who spoke about working on the case
> >> study regarding the local government of Cataluñas use of OWASP in
> >> their public projects. How would you like to start? If you have any
> >> references (URLs, PDFs, etc) that you can send me, I can start forming
> >> a structure/outline of the project and the proposal for the report.
> >>
> >> I have had some further ideas about the concept of analysing
> >> governments (in relation to the "effort" they make on security) and
> >> how OWASP could work with them better - either alone or with other
> >> similar-interest groups. I will write another email on this topic
> >> later this week.
> >>
> >> Thanks again for organising such an interesting conference. I hope we
> >> keep in contact and I'm looking forward to attending the next OWASP
> >> chapter meeting in Barcelona.
> >>
> >> Cheers,
> >> David.
> >>
> >> PS: What OWASP groups, if any, should I be signed up to regarding
> >> chatter surrounding the government stuff? Is there already a "working
> >> group" established on this? If not, should there be and are you
> >> looking for volunteers?
> >
> >
> >
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/global_industry_committee/attachments/20091215/f9031e58/attachment.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OWASP working with Governent.mm
Type: application/octet-stream
Size: 9504 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/global_industry_committee/attachments/20091215/f9031e58/attachment.obj 


More information about the Global_industry_committee mailing list