https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=Rdpatino OWASP - User contributions [en] 2026-04-25T04:33:55Z User contributions MediaWiki 1.27.2 https://wiki.owasp.org/index.php?title=OWASP_Security_Baseline_Project&diff=212699 OWASP Security Baseline Project 2016-04-07T23:51:52Z <p>Rdpatino: /* Project Goals */</p> <hr /> <div>{|<br /> |-<br /> ! width=&quot;700&quot; align=&quot;center&quot; | &lt;br&gt; <br /> ! width=&quot;500&quot; align=&quot;center&quot; | &lt;br&gt;<br /> |-<br /> | align=&quot;right&quot; | [[Image:OWASP Inactive Banner.jpg|800px| link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Inactive_Projects]] <br /> | align=&quot;right&quot; | <br /> <br /> |}<br /> <br /> ==== Main ====<br /> <br /> &lt;br&gt;<br /> == Project Description ==<br /> <br /> * Benchmark security of enterprise products/services against OWASP Top 10 (and other) Security Risks<br /> <br /> * Open and comprehensive security assessments of enterprise products/services<br /> <br /> * Guidance/support for vendor-independent security verification of enterprise products/services<br /> &lt;br&gt;<br /> <br /> == Project Goals ==<br /> <br /> * Establishing an OWASP community which actively identifies products/services and devises suitable security test plans<br /> <br /> * actively identify =&gt; use/work with/test/research it<br /> <br /> * Benchmarking security of tested solutions using OWASP security guidelines and tools (OWASP Web Testing Environment/OWASP Live CD, etc), open-source testing tools<br /> * Collaborating with software vendors on improving security of assessed frameworks/products/services<br /> * Increasing awareness on available OWASP resources (guidelines, tools,etc)<br /> <br /> == Project Roadmap == <br /> <br /> Alpha<br /> * devise testing methodology mapping to OWASP Top 10 Security Risks, including test plan, techniques, tools, etc<br /> * establish disclosure policy<br /> <br /> Beta<br /> * publish testing methodology<br /> * publish major case study<br /> * gather community support <br /> <br /> Stable<br /> * assess major products/services and publish the outcome<br /> * collaborate with vendors to improve security of assessed solutions<br /> * framework in pace for assessing other classes of products/services <br /> * coordinate and publish community-validated results <br /> <br /> <br /> == Work in Progress == <br /> <br /> * Benchmarking Enterprise E-mail Security Solutions (including Google Message Security SaaS)<br /> * Benchmarking Enterprise Social Networking Platforms <br /> * ...<br /> <br /> <br /> == Call for Participation == <br /> <br /> Anyone with an interest in improving application security<br /> * Security Engineers<br /> * Security Analysts<br /> * Penetration Testers<br /> * Security Researchers<br /> * Software Developers<br /> *…<br /> <br /> If you find an issue, don’t stop testing! There is a very good chance there are few more :) <br /> <br /> <br /> <br /> ==== Project About ====<br /> {{:Projects/OWASP Security Baseline Project | Project About}}<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt;<br /> <br /> [[Category:OWASP_Project|Security Baseline Project]] [[Category:OWASP_Document]][[Category:OWASP_Alpha_Quality_Document|OWASP Alpha Quality Document]]</div> Rdpatino