[Owasp-board] FW: OWASP and Microsoft partnership presentation

Dave Wichers dave.wichers at owasp.org
Thu Jan 24 22:02:05 UTC 2008

Regarding other corporate members, eBay and DTCC are OWASP members already.
The board of advisors can't include all corporate members as it would be too
big. I think getting 2-3 powerful companies in each of the three categories
Jeff has listed would be great for OWASP in terms of support to OWASP, as
well as representing OWASP's constituency as well.


-----Original Message-----
From: owasp-board-bounces at lists.owasp.org
[mailto:owasp-board-bounces at lists.owasp.org] On Behalf Of Sebastien
Sent: Thursday, January 24, 2008 4:42 PM
To: jeff.williams at owasp.org; OWASP Foundation Board List
Subject: Re: [Owasp-board] FW: OWASP and Microsoft partnership presentation


I spoke with Mark yesterday, he was in Belgium.
Disclosure of vulnerabilities is something they really do not want to be
affiliated with - which is exactly in line with the OWASP filosophy.

Nice work, I like the new template!

The last slide feels a little to pushy on putting Microsoft as the
AppSec saviour of the world.

How about the other corporate members: should they not also be part of
the advisory board, or do they get another way of getting a voice on how
their money is spend?



-----Original Message-----
From: owasp-board-bounces at lists.owasp.org
[mailto:owasp-board-bounces at lists.owasp.org] On Behalf Of Jeff Williams
Sent: 24 January 2008 22:30
To: 'OWASP Foundation Board List'
Subject: [Owasp-board] FW: OWASP and Microsoft partnership presentation


Dave and I met with Mark and Katie recently to discuss how OWASP and
Microsoft can work together. They're considering significant
contribution of
resources (MSDN documentation, etc...) to OWASP that we would make
and build consensus around. Mark is going to try to get this going.

You'll see in the presentation a mention of a 'Board of Advisors' which
something I think we should put together ASAP, independent of this
relationship with Microsoft.  I'm imagining a ~10 person board with
representatives from:

* Vendors (Microsoft, Adobe, Sun)
* End Users (DTCC, Financial X, Utility Y)
* Major Internet (EBay, Google, ?)

The board responsibilities would be to provide guidance on direction and
project funding, introduction/encouragement with major members/users,
support and advertising, advocacy, etc... quarterly meetings?


-----Original Message-----
From: Jeff Williams [mailto:jeff.williams at owasp.org] 
Sent: Thursday, January 24, 2008 4:18 PM
To: 'Mark Curphey'; 'Katie Moussouris'
Cc: 'dave.wichers at owasp.org'

Mark and Katie,

Dave and I put together the attached deck to capture the conversation we
here at OWASP HQ. We're looking forward to putting the plan into effect.
Please let me know if there is anything we can do to help get this idea
approved at Microsoft.

Thanks for your support of OWASP!


Jeff Williams, Chair
The OWASP Foundation
work: 410-707-1487
main: 301-604-4882

Owasp-board mailing list
Owasp-board at lists.owasp.org

More information about the Owasp-board mailing list