[Owasp-leaders] Mozilla speaks up. Should OWASP?

Bev Corwin bev.corwin at owasp.org
Wed Feb 1 02:22:51 UTC 2017

+1 Haral, Completely agree!

+1 Andrew, However, OWASP members participating in industry committees,
discussions, working groups, would be a different case. Typically not much
of a problem there since not about endorsing or influencing political
parties or candidates.


On Tue, Jan 31, 2017 at 5:53 PM, Andrew van der Stock <vanderaj at owasp.org>

Tiffany is correct.
> As a Director, it's my understanding that we are allowed to have a
> position and agitate for a particular topic pertinent to our mission, such
> as Wassenaar and say regulations around data privacy or encryption, but as
> per the IRS guidance, it's best to steer clear of advocacy for or against
> candidates, parties, or entire policy platforms that are outside our remit.
> Additionally, we are a global organization. We have to look further afield
> than just US politics. Our mission is to advance application security, not
> be a political organization.
> No matter what, if we do decide to have a position on Wassenaar or data
> privacy or encryption that we present to politicians, I'd want us to engage
> lawyers to review our materials and our stance prior to public advocacy on
> that topic.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20170131/92789178/attachment.html>

More information about the OWASP-Leaders mailing list