[Global_industry_committee] owasp policies
tobias.gondrom at owasp.org
Thu Nov 8 00:27:55 UTC 2012
great initiative, Ofer!
First, I do not see a reason standing against it refering to OWASP. We
should indeed have someone review the doc first of course to make sure
it is in line with our password recommendations - thanks to Eoin for
And as Tom mentioned, we might actually suggest to use the global OWASP
logo (instead of the OWASP Israel logo) if you and they want.
@Ofer: you can ask Kate for the logo image in case you don't have it -
or grab it from the web site.
@Eoin: yes, would be cool if you could run point on this and do a quick
review the doc and if you need more reviewers or other help just let us
know and am sure we can find one or two more people to review.
Best regards, Tobias
Ps.: and maybe an idea: as they are working on this maybe we can merge
some ideas even back into the password cheat sheet? Or if you like
someone from the Israel chapter wants to take part in the password
cheatsheet project and/or they want us to adopt their document under the
OWASP document series like we did with Boeing's "OWASP Secure Coding
Practices - Quick Reference Guide"?
(in which case they would have to give up IP to OWASP)
Chair of the Global Industry Committee
email: tobias.gondrom at owasp.org
mobile: +44 7521003005
mobile: +852 56002975
On 07/11/12 13:14, Tom Brennan - OWASP wrote:
> Great opportunity to help Ofer, I might suggest we raise visibility
> with the OWASP Global Logo not a just the local chapter logo.
> On Nov 7, 2012, at 12:58 PM, Eoin <eoin.keary at owasp.org
> <mailto:eoin.keary at owasp.org>> wrote:
>> Ill review if you wish?
>> Eoin Keary
>> Owasp Global Board
>> +353 87 977 2988
>> On 7 Nov 2012, at 17:00, Kate Hartmann <kate.hartmann at owasp.org
>> <mailto:kate.hartmann at owasp.org>> wrote:
>>> Tobias, and committee,
>>> Would the group like to participate with Ofer and the endorsement of
>>> this document?
>>> Kate Hartmann
>>> +1 301-275-9403
>>> Skype: kate.hartmann1
>>> From: Ofer Maor <ofer at seekersec.com <mailto:ofer at seekersec.com>>
>>> Date: Wednesday, November 7, 2012 11:10 AM
>>> To: Kate Hartmann <kate.hartmann at owasp.org
>>> <mailto:kate.hartmann at owasp.org>>
>>> Subject: owasp policies
>>> The Israeli Internet Association (ISOC-IL) has created a document
>>> regarding password security in websites.
>>> They are not a security organization, but they are worried about
>>> security, and wanted to promote an initiate guaranteeing password
>>> hashing, so if one site gets hacked, the password can't be used on
>>> other sites.
>>> They want OWASP Israel to endorse it by placing OWASP Israel logo
>>> and having us publish it on our website.
>>> They are, of course, a non profit organization.
>>> Is there anything preventing me from cooperating with them on this?
>>> *Ofer Maor*
>>> www.seekersec.com <http://www.seekersec.com/>
>>> *Global Membership Committee, OWASP***
>>> *Chairman, OWASP Israel*
>>> Mobile: +972 (54) 6545406
>>> Office: +972 (9) 9565840
>>> US: +1 (646) 7700646
>>> LinkedIn: linkedin.com/in/ofermaor
>>> Global_industry_committee mailing list
>>> Global_industry_committee at lists.owasp.org
>>> <mailto:Global_industry_committee at lists.owasp.org>
>> Global_industry_committee mailing list
>> Global_industry_committee at lists.owasp.org
>> <mailto:Global_industry_committee at lists.owasp.org>
> Global_industry_committee mailing list
> Global_industry_committee at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Global_industry_committee