[Owasp-topten] OT10 Risks?

Jim Manico jim.manico at owasp.org
Sun Sep 21 20:40:40 UTC 2014

Aloha Community and Leaders,

During the many hallway conversations had at AppSec USA in Denver,
AppSec nomenclature came up on a number of occasions. I heard several
folks claim that the "OWASP Top Ten •Risks•" was mis-named and that
the list is not really risks.

Is this a fair perspective? What should it be?

I am uncertain of this myself and am asking to trigger a intelligent
conversation; I in no way wish to harm the many volunteers who have
made the various OT10 lists happen.


Jim Manico
(808) 652-3805

More information about the Owasp-topten mailing list