[Owasp-board] Brand Usage Guidelines

Josh Sokol josh.sokol at owasp.org
Thu Mar 24 19:31:52 UTC 2016

Your response confuses me.  I'm not so much concerned about this one
specific incident, but rather, the bigger issue of Brand Usage Guidelines.
We went through this topic just a few months ago when discussing the
Benchmark Project and some of the brand usage around it.  We talked about
what we wanted to see out of these guidelines.  We pointed at companies
like Mozilla as an example.  We provided contacts to hopefully get some
assistance from their lawyers.  My thoughts on this is that we need to
re-write our brand usage guidelines and, if I remember correctly, that had
Board support and a directive to Paul to make it happen.  My expectation
was that the staff would come back to the Board with a new guideline in
hand ready to go.  Not sure if others had that same expectation as well.
It sounds like we've made a couple sentence changes rather than an
overhaul.  If the staff needs more support on this, then we should form a
working group, but I feel like we need to make major progress on this
sooner rather than later.


On Thu, Mar 24, 2016 at 8:40 AM, Noreen Whysel <noreen.whysel at owasp.org>

> Josh,
> We received critical comment from Dirk Wetter, suggesting that allowing
> members (individual, corporate and sponsors) to display our logo somehow
> constitutes a "sale" of the logo and should not be permitted. He used as an
> example a local sponsor of OWASP Germany that included an OWASP logo on
> their training flyer. The logo included text indicating the are a supporter
> of OWASP which in my mind makes a clear indication that they support us,
> not that we endorse the training. However, Dirk feels that our endorsement
> is implicit in any display of our logo. He goes as far as saying our logo
> should not be used on partner events and events we are cohosting either,
> which to me goes too far.
> We need a balance between getting our image and links to our resources out
> their and protecting it. We could include a rule that says under no
> circumstances may the OWASP logo be used in advertising, unless it is for a
> cohosted event or partnership where a signed agreement exists.
> Love to hear your thoughts.
> Noreen Whysel
> Community Manager
> OWASP Foundation
> On Mar 23, 2016, at 4:57 PM, Paul Ritchie <paul.ritchie at owasp.org> wrote:
> Hi josh.  The short answer is we have made 2 update to the wiki guideline
> language, and Norden has a third update change pending.
> The red line of that recommended update is on the branding page
> 'discussion page'.
> @Noreen,  please take lead to expand on this short answer, AND take
> proactive steps to get community feedback then approval of this next set of
> changes.
> Thanks Paul
> On Mar 23, 2016 9:04 AM, "Josh Sokol" <josh.sokol at owasp.org> wrote:
>> Paul,
>> It seems that the question of OWASP branding has come up yet again.  I
>> know that we set you and Noreen off to redefine our guidelines, possibly
>> with the help of the Mozilla lawyers, but I haven't heard anything for
>> several months on that.  Would you mind giving us an update of your
>> progress thus far?  Thank you!
>> ~josh
> _______________________________________________
> Owasp-board mailing list
> Owasp-board at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-board
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20160324/3eac393f/attachment.html>

More information about the Owasp-board mailing list