[Owasp-leaders] OWASP Top 10 2012

Jim Manico jim.manico at owasp.org
Fri Oct 7 10:21:49 EDT 2011


Yes, you are right on. It's a crucial way to influence developers more
- and influencing developers is the real mission of OWASP from days of
yore. Shall we get started? I'll lend a hand.

--
Jim Manico
(808) 652-3805

On Oct 7, 2011, at 9:18 AM, Erwin Geirnaert
<erwin.geirnaert at zionsecurity.com> wrote:

> Hi list,
>
> During some discussions this week with Java developers while giving a security training I got the following remark: "why are there so many ASP.NET/PHP issues in the OWASP Top 10, is Java more secure"?
>
> So what I propose is to create a specific OWASP Top 10 for different technologies: Microsoft, Java, PHP and we can still have one global Top 10.
> Ofcourse based on the CVE database but it will be more clear for the developers and I think that the OWASP Top 10 for Java will be very different than OWASP Top 10 for PHP.
>
> Best regards,
>
> Erwin
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders


More information about the OWASP-Leaders mailing list