OWASP's role in standardization

Rob van der Veer

unread,

Feb 16, 2025, 5:38:49 PM2/16/25

to Global-board, Andrew van der Stock

Dear board,

As you know we've been successful in contributing the OWASP AI Exchange security framework to ISO/IEC 27090 and for the EU AI Act security standard. The latter was approved by the working group and has gone in consultation phase by the European Commission and the EU countries on Feb 7! When the results come in on March 7th it would be a great moment for OWASP to shine and make some noise about it. I'll submit an OWASP blog post, I'll post on LinkedIN, OWASP can magnifiy, and OWASP can send out a press release. For the narrative we can tap into the current geopolitical discussion of AI regulation being important but also problematic because it stifles innovation. The narrative I envision is:

'OWASP leads the way in pragmatic AI standards and guidelines', where we explain that by involving OWASP practitioners, you can make sure that standards are practical and fair, and not made in an ivory tower. OWASP brings that to the table. And saves the world. The end.

Do you agree this is a timely and favourable narrative? Are you in on the plan for the press release etc. second week of March?

Best,

Rob van der Veer

OWASP AI Exchange

OpenCRE

SAMM

SIG

ISO/IEC 27090

CEN/CENELEC JTC21/WG5

Steve Springett

unread,

Feb 16, 2025, 6:10:23 PM2/16/25

to Global-board, Andrew van der Stock, Rob van der Veer

Thanks Rob. I think that’s a great idea. Besides the press release, does anyone know journalists we can contact as well? They typically can amplify the messaging while putting their own take and opinion in the piece.

--
You received this message because you are subscribed to the Google Groups "Global-board" group.
To unsubscribe from this group and stop receiving emails from it, send an email to global-board...@owasp.org.
To view this discussion visit https://groups.google.com/a/owasp.org/d/msgid/global-board/CAJH_1%3DqHxuYBPagfwjfrjrwkdk2t_Q46OEg8cpj-7Yd_901Hdg%40mail.gmail.com.

Louis Griffith

unread,

Feb 16, 2025, 7:37:05 PM2/16/25

to Rob van der Veer, Global-board, Andrew van der Stock

Hi Rob,

Fantastic! I agree!

Sent from my iPad

On Feb 16, 2025, at 6:38 PM, Rob van der Veer <rob.van...@owasp.org> wrote:

--

ashwini siddhi

unread,

Feb 16, 2025, 11:47:31 PM2/16/25

to Rob van der Veer, Global-board, Andrew van der Stock

Love the idea and in agreement with the plans.

Regards

Ashwini

--

Harold Blankenship

unread,

Feb 17, 2025, 6:32:56 AM2/17/25

to ashwini siddhi, Rob van der Veer, Global-board, Andrew van der Stock

Rob,

Thanks for the heads up. This is something I think the staff are capable of deciding and while I fully support the plan, I would leave the decision to them. They also contract with a marketing firm that may be able to help with copy (not that I think you'll need it) or the aforementioned journalist question.

Cheers and good work!

Harold

To view this discussion visit https://groups.google.com/a/owasp.org/d/msgid/global-board/CA%2Bdi%3DKf1%2B2o%2B%2BR3XobDCnoLXt%3Dq3n96_iZF0%2BsU_xA2MxDRmsw%40mail.gmail.com.

Reply all

Reply to author

Forward