[Owasp-board] Additional Brand Abuse

Jim Manico jim.manico at owasp.org
Sat Nov 15 02:13:12 UTC 2014


Folks,

When we do a google search for "OWASP" I see that Acunetix is 
advertising that they are scanning for the OWASP Top Ten. The ad links 
to 
http://www.acunetix.com/vulnerability-scanner/scan-website-owasp-top-10-risks/

I think this ad violates the following brand usage guidelines: 
https://www.owasp.org/index.php/Marketing/Resources#The_Brand_Usage_Rules

5) The OWASP Brand must not be used in a manner that suggests that The 
OWASP Foundation supports, advocates, or recommends any particular 
product or technology.

7) The OWASP Brand must not be used in a manner that suggests that a 
product or technology can enable compliance with any OWASP Materials 
other than an OWASP Published Standard.

and

8) The OWASP Brand must not be used in any materials that could mislead 
readers by narrowly interpreting a broad application security category. 
For example, a vendor product that can find or protect against forced 
browsing must not claim that they address all of the access control 
category.


I would like to file this with our compliance officer, but I think he is 
over-burdened right now. Do you think this is a clear violation and if 
so, should we approach them in a gentle way with suggestions to correct 
this?

Aloha,
Jim



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20141115/6847e545/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Screen Shot 2014-11-15 at 10.05.36 AM.jpg
Type: image/jpeg
Size: 102087 bytes
Desc: not available
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20141115/6847e545/attachment-0001.jpg>


More information about the Owasp-board mailing list