[Owasp-leaders] OWASP Top 10 2012
jim.manico at owasp.org
Fri Oct 7 10:21:49 EDT 2011
Yes, you are right on. It's a crucial way to influence developers more
- and influencing developers is the real mission of OWASP from days of
yore. Shall we get started? I'll lend a hand.
On Oct 7, 2011, at 9:18 AM, Erwin Geirnaert
<erwin.geirnaert at zionsecurity.com> wrote:
> Hi list,
> During some discussions this week with Java developers while giving a security training I got the following remark: "why are there so many ASP.NET/PHP issues in the OWASP Top 10, is Java more secure"?
> So what I propose is to create a specific OWASP Top 10 for different technologies: Microsoft, Java, PHP and we can still have one global Top 10.
> Ofcourse based on the CVE database but it will be more clear for the developers and I think that the OWASP Top 10 for Java will be very different than OWASP Top 10 for PHP.
> Best regards,
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
More information about the OWASP-Leaders