[Owasp-leaders] SAMM 1.0 released (and an OWASP project is born)

Pravir Chandra chandra at owasp.org
Wed Mar 25 15:10:54 EDT 2009

Hey Everyone.

I've mentioned it before, but today I'm proud to announce that the
Software Assurance Maturity Model (SAMM) version 1.0 has been released
and is freely available for download from http://www.opensamm.org

SAMM is an open framework to help organizations formulate and
implement a strategy for software security that is tailored to the
specific risks facing the organization. The resources provided by SAMM
will aid in:

* Evaluating an organization’s existing software security practices
* Building a balanced software security program in well-defined iterations
* Demonstrating concrete improvements to a security assurance program
* Defining and measuring security-related activities within an organization

SAMM was defined with flexibility in mind such that it can be utilized
by small, medium, and large organizations using any style of
development. Additionally, this model can be applied
organization-wide, for a single line-of-business, or even for an
individual project.

As an open project, SAMM content shall always remain vendor-neutral
and freely available for all to use. The project has received a huge
amount of attention and is keeping me busy, but I'm always open to
more feedback and supporters.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-leaders/attachments/20090325/9fc08b5f/attachment.html 

More information about the OWASP-Leaders mailing list