[Owasp_sdl] SDL

Anurag Agarwal anurag.agarwal at yahoo.com
Mon Mar 7 21:33:47 EST 2011

I think it's a good start. Just one thing though. There are so many
resources related to SDL outside of OWASP, which should be mentioned too.


Anurag Agarwal
MyAppSecurity Inc
Cell - 919-244-0803
Email - anurag at myappsecurity.com
Website - http://www.myappsecurity.com
Blog - http://myappsecurity.blogspot.com
LinkedIn - http://www.linkedin.com/in/myappsecurity 

-----Original Message-----
From: owasp_sdl-bounces at lists.owasp.org
[mailto:owasp_sdl-bounces at lists.owasp.org] On Behalf Of Jerry Hoff
Sent: Tuesday, March 08, 2011 4:19 AM
To: owasp_sdl at lists.owasp.org
Subject: [Owasp_sdl] SDL

Hello OWASP SDL members!

Time to get this list talking.  Sorry, I have been in flux over the last
few weeks - basically moving from Asia to North America.  But at last I
am on terra firma.

To get started, we should decide a few things:

1) Name of the project.  Is "the OWASP SDL project" acceptable, or does
anyone have any other suggestions?
2) Scope of the project.  My basic roadmap is the following:

    - Version 1: Go through the existing Simplified Implementation of
the SDL and map it to existing OWASP resources
    - Release Version 1, and collect feedback from the community
    - Version 2: Based on information collected, add/remove/alter SDL
Phases and/or practices
    - Release Version 2, and collect feedback from the community ....
(repeat indefinitely)

This is just to get the conversation started - suggestions? 

Thanks team,

Owasp_sdl mailing list
Owasp_sdl at lists.owasp.org

More information about the Owasp_sdl mailing list