Common structure and numbering for all guides - new WS is being proposed

0 views
Skip to first unread message

Paulo Coimbra

unread,
Feb 1, 2011, 2:30:08 PM2/1/11
to Turpin, Keith N, matteo...@owasp.org, Anurag Agarwal (OWASP), Vishal Garg, Eoin, Dave Wichers, Leonardo Cavallari Militelli, summit-2011-wo...@owasp.org, Global Projects Committee, OWASP Foundation Board List

All,

 

I have been asked by Keith Turpin, project leader for the OWASP Secure Coding Practices - Quick Reference Guide, about the rationale of discussing a common structure and numbering for all guides inside the WS we have set up to work on his project and consequently reached the conclusion that it would be better if we created a working session to deal with this issue separately.

 

I am proposing we create a separate WS named ‘Common structure and numbering for all guides’ for two main reasons as follows:

 

-        If my memory doesn’t fail me, apart from several other OWASP contributors, every single leader of each guide (Testing, Development, Code Review, ASVS, Top 10, ASDR) has already attributed importance and urgency to discussing this matter and so I conclude it has enough nobleness to be dealt with on its own.

 

-        This issue is currently being addressed in four different WS (Testing Guide + Development + Java + Secure Coding Practices) and so we face the danger of reaching different findings concerning the same issue.

 

I also propose we create this new WS under the Metrics Track.

 

Please let me know your thoughts as soon as possible.

Thanks,

- Paulo

 

 

Paulo Coimbra,

OWASP Project Manager

 

Turpin, Keith N

unread,
Feb 1, 2011, 3:51:08 PM2/1/11
to Paulo Coimbra, matteo...@owasp.org, Anurag Agarwal (OWASP), Vishal Garg, Eoin, Dave Wichers, Leonardo Cavallari Militelli, summit-2011-wo...@owasp.org, Global Projects Committee, OWASP Foundation Board List

I agree with this proposal.

 

This is a big enough issue that a separate session would be a good idea.

 

 

 

Keith Turpin CISSP, CSSLP
The Boeing Company
IT Technical Security Assessments 
(206) 683-9667

Email Notice: This communication may contain sensitive information. If you are not the intended recipient, or believe that you have received this communication in error, do not print, copy, retransmit, disseminate or otherwise use the information. Respond to the sender that you have received this e-mail in error, and delete the copy you received.

Paulo Coimbra

unread,
Feb 2, 2011, 11:43:28 AM2/2/11
to Turpin, Keith N, matteo...@owasp.org, Anurag Agarwal (OWASP), Vishal Garg, Eoin, Dave Wichers, Leonardo Cavallari Militelli, summit-2011-wo...@owasp.org, Global Projects Committee, OWASP Foundation Board List

Hi Keith, Matteo, Vishal, Jim, Lucas et al,

 

The ' Common structure and numbering for all guides' working session has been created and is ready for your input. Please add the information here:

http://www.owasp.org/index.php/Summit_2011_Working_Sessions/Session085.

 

If you could let me know once everything is done, that would be great! If you find the template difficult to edit please do not hesitate and send me the contents off and I will do it myself.

 

For your reference, the below are the elements that are being required:

- Clear Description of the WS;

- Chair of the WS  (please see if you all agree with my choice, otherwise please change it as you find best);

- Clear and detailed objectives;

- Working session additional details (note that you can use both the link on the WS wiki page and the 'Discussion' page for this purpose if you like);

- Concise and feasible Outcomes/Deliverables (these should be concrete proposals for action to be presented for approval to the Board in the Summit.

 

Thanks,

- Paulo

 

 

Paulo Coimbra,

OWASP Project Manager

 

Reply all
Reply to author
Forward
0 new messages