<html>
  <head>
    <meta content="text/html; charset=windows-1252"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <div class="moz-cite-prefix">Hi Johanna and the whole team, <br>
      <br>
      yes! I heard a lot of great feedback! <br>
      This was a great success for our projects attending and I heard
      from several projects that we made great progress. So in my view
      money well spend and I would definitely support to do it again for
      AppSecUS. <br>
      <br>
      And let me say a big THANK YOU to you and the whole team for
      organising!<br>
      <br>
      Thanks a lot! <br>
      <br>
      All the best, Tobias<br>
      <br>
      <div class="moz-text-html" lang="x-western"> <br>
        Tobias Gondrom<br>
        Chairman OWASP Global Board<br>
        email: <a href="mailto:tobias.gondrom@owasp.org">tobias.gondrom@owasp.org</a><br>
        skype: tgondrom<br>
        twitter: @tgondrom<br>
      </div>
      <br>
      <br>
      <br>
      On 29/05/15 15:48, Fabio Cerullo wrote:<br>
    </div>
    <blockquote
      cite="mid:EED6186C-68A9-4A9D-BCD0-7EB29FC3B11F@owasp.org"
      type="cite">
      <meta http-equiv="Content-Type" content="text/html;
        charset=windows-1252">
      Based on the feedback and interactions generated I would certainly
      support another Summit in USA.
      <div class=""><br class="">
      </div>
      <div class="">Thanks Johanna and all other project leaders who
        have organised this activity.</div>
      <div class=""><br class="">
      </div>
      <div class="">Regards,<br class="">
        <div class=""><br class="">
        </div>
        <div class="">
          <div apple-content-edited="true" class="">
            <div style="color: rgb(0, 0, 0); letter-spacing: normal;
              orphans: auto; text-align: start; text-indent: 0px;
              text-transform: none; white-space: normal; widows: auto;
              word-spacing: 0px; -webkit-text-stroke-width: 0px;
              word-wrap: break-word; -webkit-nbsp-mode: space;
              -webkit-line-break: after-white-space;" class="">
              <div class="">Fabio Cerullo</div>
              <div class="">Global Board Member</div>
              OWASP Foundation
              <div class=""><a moz-do-not-send="true"
                  href="https://www.owasp.org" class="">https://www.owasp.org</a></div>
            </div>
          </div>
          <br class="">
          <div>
            <blockquote type="cite" class="">
              <div class="">On 29 May 2015, at 14:17, psiinon <<a
                  moz-do-not-send="true" href="mailto:psiinon@gmail.com"
                  class="">psiinon@gmail.com</a>> wrote:</div>
              <br class="Apple-interchange-newline">
              <div class="">
                <div dir="ltr" class="">
                  <div class="">
                    <div class="">
                      <div class="">I absolutely agree with Timo's
                        comments about the Summit and Johanna's
                        outstanding contributions. <br class="">
                        Thanks Johanna!<br class="">
                        <br class="">
                      </div>
                      I plan to do a write up of the ZAP Summit asap ..
                      but dont hold your collective breaths ;)<br
                        class="">
                      <br class="">
                    </div>
                    Cheers,<br class="">
                    <br class="">
                  </div>
                  Simon<br class="">
                </div>
                <div class="gmail_extra"><br class="">
                  <div class="gmail_quote">On Fri, May 29, 2015 at 2:12
                    PM, Timo Goosen <span dir="ltr" class=""><<a
                        moz-do-not-send="true"
                        href="mailto:timo.goosen@owasp.org"
                        target="_blank" class="">timo.goosen@owasp.org</a>></span>
                    wrote:<br class="">
                    <blockquote class="gmail_quote" style="margin:0 0 0
                      .8ex;border-left:1px #ccc solid;padding-left:1ex">
                      <div dir="ltr" class="">Project Summit was great.
                        Thanks for organising everything and making
                        everything possible Johanna. 
                        <div class=""><br class="">
                        </div>
                        <div class="">I think what many people don't
                          realise is that Johanna is OWASP volunteer and
                          that she has a full time job too, but stil
                          finds time to make things happen.</div>
                        <div class="">Thanks Johanna.<br class="">
                          <div class=""><br class="">
                          </div>
                          <div class="">I think for future project
                            summits we should consider reviewing all of
                            the OWASP books that go out for print and
                            updating them with the latest info. For
                            example the OWASP Testing Guide is used
                            quite extensively around the world. We could
                            use the enthusiasm and wit of the ASVS team
                            and all those who worked on the ASVS
                            projects new document at the project summit
                            for all future documentation efforts.</div>
                        </div>
                        <div class=""><br class="">
                        </div>
                        <div class="">Was nice to meet everyone in
                          person.</div>
                        <div class=""><br class="">
                        </div>
                        <div class="">Regards.</div>
                        <div class="">Timo</div>
                      </div>
                      <div class="gmail_extra"><br class="">
                        <div class="gmail_quote">
                          <div class="">
                            <div class="h5">On Fri, May 29, 2015 at 1:24
                              PM, johanna curiel curiel <span dir="ltr"
                                class=""><<a moz-do-not-send="true"
                                  href="mailto:johanna.curiel@owasp.org"
                                  target="_blank" class="">johanna.curiel@owasp.org</a>></span>
                              wrote:<br class="">
                            </div>
                          </div>
                          <blockquote class="gmail_quote"
                            style="margin:0 0 0 .8ex;border-left:1px
                            #ccc solid;padding-left:1ex">
                            <div class="">
                              <div class="h5">
                                <div dir="ltr" class="">Board members
                                  <div class=""><br class="">
                                  </div>
                                  <div class="">The past Appsec Summit
                                    in Amsterdam was a great event where
                                    more than 10 projects had the
                                    opportunity to share ideas and get
                                    some work done</div>
                                  <div class=""><br class="">
                                  </div>
                                  <div class="">I want to thank Martin
                                    for the excellent support. Martin is
                                    was an awesome conference :)</div>
                                  <div class=""><br class="">
                                  </div>
                                  <div class="">We had groups teaming up
                                    to work on specific improvements:</div>
                                  <div class="">
                                    <ul class="">
                                      <li class="">ASVS (Jim/Andrew)
                                        Made a complete review together
                                        with some external participants
                                        and other project leaders from
                                        companies such as SAP among
                                        others on a new ASVS version</li>
                                      <li class="">OWTF worked on a new
                                        architecture with the help of
                                        Python Security project leader
                                        Enrico Branca</li>
                                      <li class="">Enrico(Python
                                        Security Project) and Achim
                                        (EnDe project) discussed serious
                                        issues in SSL certificates. I'm
                                        also helping out with an
                                        algorithm to crunch data,
                                        awesome research.<br class="">
                                      </li>
                                      <li class="">Security Sheperd
                                        worked on major improvements in
                                        their wiki page after a quick
                                        project review.Check out their
                                        wiki.</li>
                                      <li class="">ZAP Simon met for the
                                        first time with some major
                                        contributors and worked with
                                        external collaborators from
                                        Yahoo to plan upcoming
                                        improvements for ZaaS and ZAP
                                        desktop app</li>
                                      <li class="">Colin
                                        Watson(Appsensor/Cournicopia/Snake
                                        & Ladders) did some serious
                                        work, attached in details:</li>
                                      <ul class="">
                                        <li class=""><a
                                            moz-do-not-send="true"
href="https://docs.google.com/spreadsheets/d/1Ez7JBp7xEueFgMtOhEvAeVFcKR4jcgil-PxT6Rxieps/edit?usp=sharing"
                                            target="_blank" class="">https://docs.google.com/spreadsheets/d/1Ez7JBp7xEueFgMtOhEvAeVFcKR4jcgil-PxT6Rxieps/edit?usp=sharing</a></li>
                                      </ul>
                                      <li class="">Project Review team
                                        worked with leaders to create
                                        videos and work on documentation
                                        for Cournicopia, OWTF also
                                        participated on this</li>
                                      <li class="">Hackademics received
                                        a major review and tips on how
                                        to work on their project. Their
                                        leaders worked on a new plan for
                                        improvements</li>
                                      <li class="">KBA project leaders
                                        also teamed up with ASVS to
                                        understand better the technical
                                        issues sorrowing Knowledge Based
                                        authentication</li>
                                      <li class="">Code Review
                                        leader(Gary Robinson) also
                                        teamed up with ASVS to see how
                                        to make some major improvements
                                        for the final release. Also
                                        discussed with the Project
                                        review team issues surrounding
                                        the final release</li>
                                      <li class="">Top Ten Privacy Risk
                                        leader Stephan was also there to
                                        share the latest updates</li>
                                    </ul>
                                    <div class="">In general was  great
                                      energy among leaders and I'm
                                      really satisfied what we were able
                                      to achieve in these couple of days</div>
                                    <div class=""><br class="">
                                    </div>
                                    <div class="">Some major lessons
                                      compared to other summits</div>
                                    <div class="">
                                      <ul class="">
                                        <li class="">Leaders cannot
                                          expect many external
                                          contributors coming but mostly
                                          we need to target architects
                                          in companies doing the same
                                          and trying to solve the same
                                          issues like SAP and Yahoo<br
                                            class="">
                                        </li>
                                        <li class="">Team up experts
                                          based on their knowledge like
                                          OWTF and Python security
                                          projects because they are
                                          programming on the same
                                          language</li>
                                        <li class="">Team up with
                                          leaders working on similar
                                          issues and get some
                                          collaboration and exchange
                                          sessions</li>
                                        <li class="">Other leaders
                                          prefer to focus on their
                                          project, then is important to
                                          have enough and private space
                                          so they can work on it</li>
                                      </ul>
                                      <div class="">My question to the
                                        board is: Do we want to organise
                                        a similar summit in APPSEC US?
                                        If you approve and I'll put this
                                        together again ;-)</div>
                                      <div class=""><br class="">
                                      </div>
                                      <div class="">Regards</div>
                                      <span class=""><font class=""
                                          color="#888888">
                                          <div class=""><br class="">
                                          </div>
                                          <div class="">Johanna</div>
                                          <div class=""><br class="">
                                          </div>
                                        </font></span></div>
                                    <div class=""><br class="">
                                    </div>
                                  </div>
                                  <div class=""><br class="">
                                  </div>
                                </div>
                                <br class="">
                              </div>
                            </div>
_______________________________________________<br class="">
                            Owasp-board mailing list<br class="">
                            <a moz-do-not-send="true"
                              href="mailto:Owasp-board@lists.owasp.org"
                              target="_blank" class="">Owasp-board@lists.owasp.org</a><br
                              class="">
                            <a moz-do-not-send="true"
                              href="https://lists.owasp.org/mailman/listinfo/owasp-board"
                              target="_blank" class="">https://lists.owasp.org/mailman/listinfo/owasp-board</a><br
                              class="">
                            <br class="">
                          </blockquote>
                        </div>
                        <br class="">
                      </div>
                      <br class="">
                      _______________________________________________<br
                        class="">
                      Owasp-board mailing list<br class="">
                      <a moz-do-not-send="true"
                        href="mailto:Owasp-board@lists.owasp.org"
                        class="">Owasp-board@lists.owasp.org</a><br
                        class="">
                      <a moz-do-not-send="true"
                        href="https://lists.owasp.org/mailman/listinfo/owasp-board"
                        target="_blank" class="">https://lists.owasp.org/mailman/listinfo/owasp-board</a><br
                        class="">
                      <br class="">
                    </blockquote>
                  </div>
                  <br class="">
                  <br class="" clear="all">
                  <br class="">
                  -- <br class="">
                  <div class="gmail_signature"><a moz-do-not-send="true"
                      href="https://www.owasp.org/index.php/ZAP"
                      target="_blank" class="">OWASP ZAP</a> Project
                    leader<br class="">
                  </div>
                </div>
                _______________________________________________<br
                  class="">
                Owasp-board mailing list<br class="">
                <a moz-do-not-send="true"
                  href="mailto:Owasp-board@lists.owasp.org" class="">Owasp-board@lists.owasp.org</a><br
                  class="">
                <a class="moz-txt-link-freetext" href="https://lists.owasp.org/mailman/listinfo/owasp-board">https://lists.owasp.org/mailman/listinfo/owasp-board</a><br
                  class="">
              </div>
            </blockquote>
          </div>
          <br class="">
        </div>
      </div>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
Owasp-board mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Owasp-board@lists.owasp.org">Owasp-board@lists.owasp.org</a>
<a class="moz-txt-link-freetext" href="https://lists.owasp.org/mailman/listinfo/owasp-board">https://lists.owasp.org/mailman/listinfo/owasp-board</a>
</pre>
    </blockquote>
    <br>
  </body>
</html>