[Owasp-leaders] Reaching developers = cooperative hackathons

Dave Wichers dave.wichers at owasp.org
Fri Sep 10 10:37:03 EDT 2010


Yes. This has been a failure on my part on not having enough time/energy to
review it in detail and provide my comments/suggestions to Gunnar.

I will see what I can do to invest some energy in this now that the current
Top 10 is out and has been updated.

-Dave

-----Original Message-----
From: owasp-leaders-bounces at lists.owasp.org
[mailto:owasp-leaders-bounces at lists.owasp.org] On Behalf Of Gunnar Peterson
Sent: Wednesday, September 08, 2010 10:41 AM
To: owasp-leaders at lists.owasp.org
Subject: Re: [Owasp-leaders] Reaching developers = cooperative hackathons

Dave,

I sent out the most last version of Top Ten for Web Services to this list
last winter, if anyone has comments let me know and I can complete the
draft.

-Gunnar

On Sep 8, 2010, at 9:38 AM, Dave Wichers wrote:

> I would like to see more top ten lists and I think this is a reasonable
list to shoot for.  And I hope it would echo similar sentiments that are
presented by the OWASP Guide. And if not, they should be synced up.
>  
> I still want to get a real Top Ten for Web Services done. We took a shot
back in 2008 but I haven't had the energy to really get it completed.
>  
> -Dave
>  
> Dave Wichers
> OWASP Top 10 Project Lead
>  
> From: owasp-leaders-bounces at lists.owasp.org
[mailto:owasp-leaders-bounces at lists.owasp.org] On Behalf Of James McGovern
> Sent: Wednesday, September 08, 2010 8:41 AM
> To: owasp-leaders at lists.owasp.org
> Subject: Re: [Owasp-leaders] Reaching developers = cooperative hackathons
>  
> Does anyone else think starting a project to create a Top Ten list for
Software Architects has merit? Since my past project of starting a
certification resulted in a fail, I am game to try again and see if we can
create a win.
>  
> James McGovern
> Insurance SBU
> Virtusa Corporation
> 100 Northfield Drive, Suite 305 | Windsor, CT | 06095
> Phone:  860 688 9900 Ext:  1037 | Facsimile:  860 688 2890  
> <image001.jpg> <image002.gif> <image003.gif> <image004.gif> <image005.gif>
>  
> From: antonio.fontes at gmail.com [mailto:antonio.fontes at gmail.com] On Behalf
Of AF
> Sent: Tuesday, September 07, 2010 10:33 AM
> To: James McGovern
> Subject: Re: [Owasp-leaders] Reaching developers = cooperative hackathons
>  
>  
> 
> On Tue, Sep 7, 2010 at 3:48 PM, James McGovern <JMcGovern at virtusa.com>
wrote:
> We can also agree that many of the successful attacks aren't really caused
by coding mistakes of developers, but really can be attributed to suboptimal
architecture decisions made by some architect who threw a design over the
wall without understanding the ramifications of their choices. What if we
collectively thought of a Top Ten list for Architects to consider when
designing software.
>  
>  
> Definitely YES!
>  
> Virtusa was recently ranked and featured in 2010 Global Services 100,
IAOP's 2010 Global Outsourcing 100 sub-list, 2009 Deloitte Technology Fast
500 and 2009 Dataquest-IDC Best Employers Survey among others.
>  
>
----------------------------------------------------------------------------
-----------------
>  
> This message, including any attachments, contains confidential information
intended for a specific individual and purpose, and is intended for the
addressee only. Any unauthorized disclosure, use, dissemination, copying, or
distribution of this message or any of its attachments or the information
contained in this e-mail, or the taking of any action based on it, is
strictly prohibited. If you are not the intended recipient, please notify
the sender immediately by return e-mail and delete this message.
>  
>
----------------------------------------------------------------------------
-----------------
>  
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders

_______________________________________________
OWASP-Leaders mailing list
OWASP-Leaders at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-leaders



More information about the OWASP-Leaders mailing list