[Owasp-leaders] 2013 ASVS Release

daniel cuthbert daniel.cuthbert at owasp.org
Fri Aug 23 06:54:47 UTC 2013


The OWASP ASVS Standard has the potential to become a very important
document for those serious about application security.To quote the preface:

'One of the major challenges of a standard such as this is that it needs to
satisfy two distinct, and very different, targets: individuals who are
involved in organizing or executing a software security program within
their organization, and software security professionals who conduct
verification of applications. While both targets seek an industry-accepted
standard for verification of applications, they operate under different
  The team helping Sahba and myself were Andrew van der Stock and Krishna
Raja, and between us we feel we've produced a document that appeals to all.
Sahba will be presenting this release at AppSecEU this afternoon and we
thought it would be great for you all to see a copy whilst this is

The beta release document can be found at the ASVS home:

There is still plenty to do, such as a feedback from the community,
use-case examples, mapping to the new Developer Guide and Testing Guide and
so on.

But for now, a massive thanks to those who have been supporters of this
project and the team for doing late nights in order to get this out.


Daniel Cuthbert
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20130823/5cee11a4/attachment.html>

More information about the OWASP-Leaders mailing list