[Owasp_framework_security_project] Framework project

johanna curiel curiel johanna.curiel at owasp.org
Fri Dec 18 11:09:28 UTC 2015


Hi Kevin et al,

The project is at the moment in 'idea stage'
https://www.owasp.org/index.php/OWASP_Framework_Security_Project#tab=Frameworks__26_Security_Controls

It is a documentation to evaluate which security controls are found or
missing on each framework.
Eventually by making developers aware of certain missing controls, we can
promote the creation of them among the developers of that framework.

Agree that a clear mission is essential
Also, a strategy on how to promote the project and make it easier for
contributors to participate.

I think, we definitely need to decide this in order to get the project
moving .
Some decisions we can take regarding the project are:

Project Type: Documentation
Collaboration platform:

   - GitBook
   - Google docs
   - Wiki:Not the most ideal one imo

Promotion:

   - Leaders
   - OWASP connector
   - ?


Strategy:
Look for contributors outside OWASP realm by being part of that Developer
community, example: Linkedin .NET group

Recommended doc:
http://www2.econ.iastate.edu/tesfatsi/ProducingOSS.KarlFogel2005.pdf

Regards

Johanna

On Friday, December 18, 2015, johanna curiel curiel <
johanna.curiel at owasp.org> wrote:
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp_framework_security_project/attachments/20151218/282f267e/attachment.html>


More information about the Owasp_framework_security_project mailing list