[Owasp-board] OWASP project for SAMM

Paulo Coimbra paulo.coimbra at owasp.org
Wed Mar 11 02:57:36 UTC 2009


Pravir,

 

As requested, I have set up the OWASP Software Assurance Maturity Model’s (SAMM) project <http://www.owasp.org/index.php/Category:OWASP_Software_Assurance_Maturity_Model_Project>  page. 

 

Please feel free to change it as you find best but, please, always have into account the OWASP assessment <https://www.owasp.org/index.php/Category:OWASP_Project_Assessment>  criteria.

 

I’ve also created a mailing list and, by now, the admin password must have been sent automatically to you. 

 

I take the opportunity to ask whether you wish an OWASP email address.

 

Should you have any further questions, please do not hesitate and get back to me.

 

I wish you good work.

 

Many thanks, best regards,

 

Paulo Coimbra,

OWASP Project Manager <https://www.owasp.org/index.php/Main_Page> 

 

 

From: Pravir Chandra [mailto:pravir.chandra at gmail.com] 
Sent: terça-feira, 10 de Março de 2009 14:55
To: paulo.coimbra at owasp.org
Subject: Re: OWASP project for SAMM

 

No problem Paulo. I can always add more redirects from other wiki page names that I would like to point at the project.

 

Thanks!

 

p.

 

~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~ ~~~~~~~~ ~~~~~ ~~~ ~~ ~

Pravir Chandra                      chandra<at>list<dot>org

PGP:    CE60 0E10 9207 7290 06EB   5107 4032 63FC 338E 16E4

~ ~~ ~~~ ~~~~~ ~~~~~~~~ ~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~

 

-----Original Message-----

From: "Paulo Coimbra" <paulo.coimbra at owasp.org>

 

Date: Tue, 10 Mar 2009 14:14:34 

To: 'Pravir Chandra'<pravir.chandra at gmail.com>

Subject: RE: OWASP project for SAMM

 

 

Pravir

 

I was thinking in creating the following page

http://www.owasp.org/index.php/Category:OWASP_Software_Assurance_Maturity_Mo

del_Project.

 

If you are not happy with this link, please send me off ASAP the one that I

should use.

 

Thanks,

 

Paulo Coimbra,

OWASP Project Manager

 

 

> >-----Original Message-----

> >From: Pravir Chandra [mailto:pravir.chandra at gmail.com]

> >Sent: terça-feira, 10 de Março de 2009 02:35

> >To: paulo.coimbra at owasp.org

> >Subject: Re: OWASP project for SAMM

> >

> >Now that I thought about it, can we make the project name simply

> >"SAMM" instead? That way, there's less inconsistency with the existing

> >project name. Otherwise, I'm afraid people that already know about

> >SAMM might think it's a separate project or something.

> >

> >Also, I'd like the email address for the mailing list to be

> >samm at lists.owasp.org, if possible.

> >

> >Thanks, Paulo!

> >

> >p.

> >

> >On Mon, Mar 9, 2009 at 12:51 PM, Pravir Chandra

> ><pravir.chandra at gmail.com> wrote:

> >> Hey Paulo.

> >>

> >> I'm just about ready to make a new Software Assurance Maturity Model

> >> (SAMM) release, and wanted to do so under the OWASP banner. Here's

> >the

> >> details for setting up the project:

> >>

> >> 1.       Project Name,

> >>

> >> OWASP SAMM

> >>

> >> 2.       Short Project Description,

> >>

> >> The Software Assurance Maturity Model (SAMM) project is committed to

> >> building a usable framework to help organizations formulate and

> >> implement a strategy for application security that's tailored to the

> >> specific business risks facing the organization. The goal is to

> >create

> >> well-defined and measurable goals that can be used by small, medium,

> >> and large sized organizations in any line of business that involves

> >> software development.

> >>

> >> 3.       Project Leader

> >>

> >> Pravir Chandra

> >>

> >> 4.       Project Contributors - if any,

> >>

> >> Lots, to be listed on the project page.

> >>

> >> 5.       Detailed roadmap for future developments,

> >>

> >> The next release will be a non-Beta that locks in the top-level

> >> framework (business functions and security practices). Future

> >> development includes additional roadmaps, case studies, empirical

> >data

> >> collection, and mappings to existing standards and frameworks.

> >>

> >>

> >> 6.       Chosen License – see here,

> >>

> >> Creative Commons 3.0 Attribution, Share-alike

> >>

> >> 7.       Sponsor(s) – if any

> >>

> >> Fortify, Cognosticus

> >>

> >> 8.       Main Links – if any

> >>

> >> http://www.opensamm.org

> >>

> >> 9.       Related Projects – if any

> >>

> >> OWASP CLASP project

> >>

> >> 10.   First Reviewer *,

> >>

> >> TBD

> >>

> >> 11.   Second Reviewer*.

> >>

> >> TBD

> >>

> >> Let me know if there's anything else you need from me to get the

> >> mailing list and project page established. I want to push hard to

> >move

> >> this to Release status, so any advice would be appreciated!

> >>

> >> Thanks

> >>

> >> p.

> >>

> >> --

> >> ~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~ ~~~~~~~~ ~~~~~ ~~~ ~~ ~

> >> Pravir Chandra                      chandra<at>list<dot>org

> >> PGP:    CE60 0E10 9207 7290 06EB   5107 4032 63FC 338E 16E4

> >> ~ ~~ ~~~ ~~~~~ ~~~~~~~~ ~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~

> >>

> >

> >

> >

> >--

> >~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~ ~~~~~~~~ ~~~~~ ~~~ ~~ ~

> >Pravir Chandra                      chandra<at>list<dot>org

> >PGP:    CE60 0E10 9207 7290 06EB   5107 4032 63FC 338E 16E4

> >~ ~~ ~~~ ~~~~~ ~~~~~~~~ ~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20090311/a4bbda57/attachment-0002.html>


More information about the Owasp-board mailing list