[Owasp-leaders] WAFEC is now a joined WASC/OWASP project

Ofer Shezaf ofer at shezaf.com
Tue Dec 4 10:45:10 UTC 2012


Hi Leaders,

 

I am happy to announce that The Web Application Evaluation Criteria (WAFEC)
project is now a joined WASC (Web Application Security Consortium) and OWASP
project. 

 

WAFEC is a very successful community project aimed at defining what Web
Application Firewalls are and providing the application security community
with a tool to learn about WAFs and evaluate the suitability of different
WAFs for their needs. 

 

The evaluation criteria first version was release in 2006 by WASC and is
used in most WAF RFPs today. As a long time OWASP and WASC contributor, and
as we are gearing towards a second version, I thought that it would be great
for the project and the applications security community in general if we
join hands and make this a joined WASC and OWASP project. I believe this
will bring more contributors from more diverse backgrounds to the project
and enlarge the project's outreach. I have suggested that to the project's
team and I am happy that a vast majority agreed with me.

 

What's next: 

*         You can read more about the project on the OWASP project home page
here:
https://www.owasp.org/index.php/WASC_OWASP_Web_Application_Firewall_Evaluati
on_Criteria_Project

*         If you would like to contribute, review the version 2.0 outline:
http://projects.webappsec.org/w/page/60249779/WAFEC_2_Outline and join the
mailing list:
http://lists.webappsec.org/mailman/listinfo/wasc-wafec_lists.webappsec.org

*         Lastly, we can talk about WAFEC in your local events. We may have
a team member located near you, or we can do it remotely.

 

Don't hesitate to contact me for any question. 

 

~ Ofer

 

Ofer Shezaf

[+972-54-4431119; ofer at shezaf.com <mailto:ofer at shezaf.com> , www.shezaf.com]

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20121204/d92a376d/attachment.html>


More information about the OWASP-Leaders mailing list