This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
OWASP Enterprise Security API Project - Assessment Frame - First Review - First Reviewer - B
Clik here to return to the previous page.
FINAL REVIEW | ||
---|---|---|
PART I | ||
Project Deliveries & Objectives |
OWASP Enterprise Security API Project's Deliveries & Objectives | |
QUESTIONS | ANSWERS | |
1. At what extent have the project deliveries & objectives been accomplished? Having in consideration the assumed ones (see here), please exemplify writing down those of them that haven't been realised. |
ESAPI accomplishes its objectives as it is not difficult to take the existing documentation, source and binaries and build ESAPI into an application. | |
2. At what extent have the project deliveries & objectives been accomplished? Having in consideration the assumed ones (see here), please quantify in terms of percentage. |
100% in terms of requirements being met, but improvement is always possible. | |
3. Please do use the right hand side column to provide advice and make work suggestions. |
The only thing I could ask for in terms of general requirements would be more documentation, specifically on strategies on how to implement within an existing web application or framework. This could be in the form of a "How to do a gap analysis" document or something similar. Also, a stabilization of the API is needed very soon to accomodate the folks working on ports. | |
PART II | ||
Assessment Criteria | ||
QUESTIONS | ANSWERS | |
1. Having into consideration the OWASP Project Assessment Methodology (see here), which criteria, if any, haven’t been fulfilled in terms of Alpha Quality status? |
None. | |
2. Having into consideration the OWASP Project Assessment Methodology (see here), which criteria, if any, haven’t been fulfilled in terms of Beta Quality status? |
None. | |
None.
3. Having into consideration the OWASP Project Assessment Methodology (see here), which criteria, if any, haven’t been fulfilled in terms of Release Quality status? |
None. | |
4. Please do use the right hand side column to provide advice and make work suggestions. |