[OWASP-Bangalore] Help on defining security spec
k_s_satish at yahoo.com
Mon Jul 21 05:27:54 UTC 2014
You also might want to look at OWASP ASVS(Application Security verification specifications) that provides a list of security requirements that need to be part of an application/product based on which the maturity level of that application/prd can be quantified.
However, this is more for a web application security, please check if it also helps on network related product.
On Saturday, July 19, 2014 8:39 PM, Swaroop Sandeep Shastri <shastriswaroop at gmail.com> wrote:
Will have a look and once I am done I will share it with you.
On 19/07/2014, Akash Mahajan <akash.mahajan at owasp.org> wrote:
> HI Swaroop,
> I am not sure if OWASP will answers for creating a security spec document.
> I googled for "creating a security specification document", which gave me
> some interesting results. Maybe you want to try that?
> Maybe you also want to try the null mailing list as this goes beyond
> Application Security and researchers there might have more to add.
> Do share what you find with us here on this list as well.
> Thank you.
> On 18 July 2014 08:07, Swaroop Shastri <shastriswaroop at gmail.com> wrote:
>> Hello ,
>> I am working on defining security specifications for our network related
>> I want to know if there is any document or guideline available with owasp
>> community that I can refer to?
>> OWASP-Bangalore mailing list
>> OWASP-Bangalore at lists.owasp.org
>> Twitter : @owaspbangalore
> Warm regards,
> Akash Mahajan
> *That Web Application Security Guy* | +91 99 805 271 82
> akashm.com | *@makash* on twitter | linkd.in/webappsecguy
> *OWASP Bangalore Chapter Lead | null Community Manager*
OWASP-Bangalore mailing list
OWASP-Bangalore at lists.owasp.org
Twitter : @owaspbangalore
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Bangalore