[OCC] OWASP and governments

Mark Bristow mark.bristow at owasp.org
Wed Aug 11 14:44:16 EDT 2010


Not yet,

Still a work in progress.  Doug Wilson has a draft agenda however.

-Mark

On Wed, Aug 11, 2010 at 2:39 PM, Lucas Ferreira <lucas.ferreira at owasp.org>wrote:

> Hello Mark,
>
> do you have detailed information on the products that fit best the .gov
> space?
>
> Regards,
>
> Lucas
>
>
> On Wed, Aug 11, 2010 at 15:19, Mark Bristow <mark.bristow at owasp.org>wrote:
>
>> Lucas,
>>
>> AppSec DC is going to be held in conjuction with elements from The
>> Department of Homeland Security, Department of Defense, National Security
>> Agency and the National Institute for Standards and Technology.
>> Additionally OWASP will be presenting a full day of material at US
>> Government Software Assurance Forum in September.
>>
>> Our goals have been to help identify OWASP products that the .gov space
>> can use both strategically and tactically with immediate implementation.
>> Our participation has also help shaped the standards that the government has
>> in development.
>>
>> -Mark
>>
>> On Wed, Aug 11, 2010 at 2:13 PM, Robert Hansen <robert at sectheory.com>wrote:
>>
>>>
>>>        Hey, Lucas - not to speak for OWASP as a whole, but we have spent
>>> quite a bit of time talking about Brazil in particular.  Most importantl,
>>> like Dinis said, Brazilian government had a very strong showing and we'd
>>> like to leverage that interest into better action on behalf of OWASP.  To be
>>> blunt and honest, we don't have a formal best practice built for dealing
>>> with governments, but I'd like to think that Brazil could be our foray into
>>> exactly that.
>>>
>>>        A few ideas that we talked about were working with your government
>>> to define a set of best practices around quality assurance (including OWASP
>>> training for professional QA testers), and defining laws around how to build
>>> and test secure applications.  We could also use support for building better
>>> tools, methodologies and so on through appropriate funding.  There's really
>>> a lot here that we could do, so it all comes down to the appetite of
>>> volunteers on OWASP's side and what you think the government's appetite is
>>> to help as well.  I think we're certainly open to ideas.
>>>
>>>        Again, I don't speak for all of OWASP, but I think this could be a
>>> great thing both for Brazil and OWASP.
>>>
>>> Robert Hansen, CISSP
>>> CEO -- SecTheory Ltd
>>> Cell: (530) 521-2542
>>> FAX: (512) 628-6299
>>>
>>>
>>> -----Original Message-----
>>> From: owasp-connections-committee-bounces at lists.owasp.org [mailto:
>>> owasp-connections-committee-bounces at lists.owasp.org] On Behalf Of dinis
>>> cruz
>>> Sent: Wednesday, August 11, 2010 1:06 PM
>>> To: Lucas Ferreira; global_industry_committee at lists.owasp.org;
>>> owasp-connections-committee; OWASP Foundation Board List
>>> Subject: Re: [OCC] OWASP and governments
>>>
>>> Hey guys (board, industry and connections) can you help with Lucas
>>> request below?
>>>
>>> The Brazilian goverment had a great present at the last OWASP conference
>>> and we really need to leverage that
>>>
>>> Dinis Cruz
>>>
>>> Blog: http://diniscruz.blogspot.com
>>> Twitter: http://twitter.com/DinisCruz
>>> Web: http://www.owasp.org/index.php/O2
>>>
>>>
>>>
>>> On 11 August 2010 02:00, Lucas Ferreira <lucas.ferreira at owasp.org>
>>> wrote:
>>>
>>>
>>>        Hello Dinis,
>>>
>>>        I have an appointment tomorrow with some people from the Brazilian
>>> Presidency (actually people from the Department of Information and
>>> Communication Security). They have several actions regarding Information
>>> Security and I am trying to get them closer to the OWASP Brazilian Chapter.
>>> I'd also like to involve OWASP as a whole in this potential cooperation.
>>>
>>>        Do we have any active government-related activities going on? Do
>>> we have a baseline on what we can achieve or goals on OWASP-government
>>> collaborations?
>>>
>>>        Thanks,
>>>
>>>        Lucas
>>>
>>>
>>>        --
>>>        Homo sapiens non urinat in ventum.
>>>
>>>
>>>
>>> _______________________________________________
>>> Owasp-connections-committee mailing list
>>> Owasp-connections-committee at lists.owasp.org
>>> https://lists.owasp.org/mailman/listinfo/owasp-connections-committee
>>>
>>
>>
>>
>> --
>> Mark Bristow
>>
>> OWASP Global Conferences Committee Chair - http://is.gd/5MTvF
>> AppSec DC 2010 Organizer - https://www.appsecdc.org
>> OWASP DC Chapter Co-Chair - http://is.gd/5MTwu
>>
>
>
>
> --
> Homo sapiens non urinat in ventum.
>



-- 
Mark Bristow

OWASP Global Conferences Committee Chair - http://is.gd/5MTvF
AppSec DC 2010 Organizer - https://www.appsecdc.org
OWASP DC Chapter Co-Chair - http://is.gd/5MTwu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/mailman/private/owasp-connections-committee/attachments/20100811/81fdde9b/attachment-0001.html 


More information about the Owasp-connections-committee mailing list