This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Projects/Reports/2013-31-05"

From OWASP
Jump to: navigation, search
(Created page with "__TOC__ = OWASP Global Projects Report = *'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJucVE&usp=sharing Project Numbers]''' **Activ...")
 
 
(5 intermediate revisions by the same user not shown)
Line 12: Line 12:
 
**Simple Host Base Incidence Detection System  
 
**Simple Host Base Incidence Detection System  
 
**Chat Application
 
**Chat Application
 +
**Supporting Legacy Web Applications in the Current Environment
  
 
*'''Projects Under Review'''
 
*'''Projects Under Review'''
Line 21: Line 22:
 
==Currently Working On==     
 
==Currently Working On==     
  
*'''OWASP Projects at AppSec USA 2013'''
+
*'''OWASP Projects at AppSec Conferences 2013'''
 
**Planning continues for the project event modules for AppSec USA 2013.  
 
**Planning continues for the project event modules for AppSec USA 2013.  
**I am currently working out costs and logistics for the project summit.
+
**I continue to work with our project summit participating leaders to work out costs and logistics for their attendance.  
**I am in the process of outlining the project leader workshop.
+
**I am in the process of putting together our project leader workshop materials.  
 
**The workshop will be a 45 - 50 minute interactive presentation for current and potential OWASP Project Leaders.  
 
**The workshop will be a 45 - 50 minute interactive presentation for current and potential OWASP Project Leaders.  
 +
**It will take place at the AppSec USA 2013 conference in New York.
 +
**I will continue to provide support to the local event planning team for AppSec EU, as needed.
  
 
*'''Women in Security: AppSec USA 2013'''
 
*'''Women in Security: AppSec USA 2013'''
**The team is currently working on putting together copy for the Sponsorship document.
+
**The team has finished a first draft of the Sponsorship Document.  
 
**The plan is to reach out to different organizations for sponsorship.  
 
**The plan is to reach out to different organizations for sponsorship.  
 
**You can find more information on the [http://appsecusa.org/2013/activities/owasp-women-in-application-security-appsec-program/ AppSec USA website].  
 
**You can find more information on the [http://appsecusa.org/2013/activities/owasp-women-in-application-security-appsec-program/ AppSec USA website].  
Line 34: Line 37:
 
**We plan on having 2 winners for 2013.
 
**We plan on having 2 winners for 2013.
 
**The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.  
 
**The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.  
 +
**We are working hard to make this a possibility for our 2 potential winners.
  
*'''OWASP Projects at AppSec EU 2013'''
+
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdEdCYVJpdmZHaWJYZ055WHROa19qN3c&usp=sharing Determining Active Project Status]'''
**I have decided to take a secondary role in the planning of our project event modules for AppSec EU 2013.  
 
**I will not be able to attend this year, so I felt it best if the local events team take the initiative with the planning of each event module.  
 
**I will continue to provide support to the local event planning team as needed.
 
 
 
*'''Determining Active Project Status'''
 
 
**This is a status update on this initiative.
 
**This is a status update on this initiative.
 
**I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.  
 
**I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.  
 
**Flagship projects are completed.
 
**Flagship projects are completed.
 
**Labs are completed.  
 
**Labs are completed.  
**Incubator projects are in the 2nd of 4 phases.  
+
**Incubator projects are now in the 3rd phase of 4 phases.  
 +
 
 +
*'''Technical Project Advisory Roles'''
 +
**I am currently on the 1st stage of the interview process for each candidate.
 +
**I have created job descriptions for each role, and I have had those roles posted for over a month.
 +
**We have had a good amount of candidates apply for each role.
 +
**I have sent out e-mails asking each candidate to answer 3 questions regarding their interest in these roles.
 +
**I will reach out to those individuals that responded to my request by next week.
 +
 
 +
*'''Marketing Phase 3 Update'''
 +
**The marketing deliverables are going smoothly.
 +
**There is quite a bit of work to be done during this phase as this is where the back and forth approval process takes place.
 +
**The Ops Team is diligently working on this phase with Sisterworks Publishing and Design Foundry. 
 +
**At the moment, we are working on finalizing the copy for several pieces of collateral that are scheduled to be designed.
 +
**[https://www.owasp.org/images/7/7c/OWASP_Background-Research_Phase1_Final_%281%29.pdf Phase 1 Deliverable]
 +
**[https://www.owasp.org/images/c/c5/OWASP_Recommendations-Presentation2-April24.pdf Phase 2 Deliverable]
 +
***Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
 +
***We are not necessarily moving forward with these recommendations towards implementation.
 +
***Sisterworks and Design Foundry are helping with our brand consistency and collateral design.
 +
 
 +
*'''Strategic Goals Presentation'''
 +
**Ludovic petit has requested that we put together a presentation that the community can use to communicate our 2013 Strategic Goals.
 +
**Sarah and I have put together a first draft of the deck. 
 +
**We plan to add to it over the coming weeks to make certain we encompass the thinking behind each goals for this year.
 +
**[https://www.owasp.org/images/1/13/OWASP_2013_Strategic_Goals.pdf 2013 Strategic Goals draft]
  
*'''European Commission Grant Opportunity: Proposal Status'''
+
*'''Personal Development'''
**Seba and I have finished our work on the OWASP section of the European Commission grant proposal.  
+
**I am currently reading ''Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service'' by Michael E. Batts.
**The grant opportunity has the potential to help a hand full of OWASP projects with resources and funds.  
+
**I am still taking my online course from Coursera.
**Seba and I presented our internal proposal to proceed to the Board of Directors last week, and it was approved.  
+
**The course topic is Information Security and Risk Management in Context.
**The proposal has now been submitted to the European Commission.
+
**I am currently in week 6 of the course.
**We expect to hear back from the EU Commission with a decision towards the end of 2013.  
+
**Additionally, I am going to take a week long course in late June in the UK.
 +
**The course topic is Intellectual Property Strategy.
 +
**I will write a report on my learnings for the community after the course ends.  
  
 
*'''Daily Project based queries and requests'''
 
*'''Daily Project based queries and requests'''
Line 68: Line 93:
  
 
==Grants Updates==
 
==Grants Updates==
*'''Guidebooks Grant'''
+
*'''[https://docs.google.com/document/d/1MA3TI5ssclxvheV8At_ffu2Fuic55SDpOokS3AOvBUc/edit?usp=sharing OWASP Guidebooks Proposal]'''
 
# Amount: $25,000 USD
 
# Amount: $25,000 USD
# Status: The first payment has been allocated to our project budgets.    
+
# Status: The first payment has been allocated to our project budgets.
 +
# [https://www.owasp.org/images/1/18/Development_Guide_Project_Gantt.pdf OWASP Development Guide Plan]
 +
# [https://www.owasp.org/images/e/e9/Testing_Guide_Project_Gantt.pdf OWASP Testing Guide Plan]
 +
# [https://www.owasp.org/images/d/da/Code_Review_Project_Gantt.pdf OWASP Code Review Guide Plan] 
  
*'''ESAPI Proposal'''
+
*'''[https://docs.google.com/document/d/16ZFXaML8C7aDAZdyTMDDg4BzLr1vUTOz9eqmYE8ZW8U/edit?usp=sharing OWASP ESAPI Grant Proposal]'''
 
# Amount: $25,000 USD
 
# Amount: $25,000 USD
 
# Status: The ESAPI proposal is still being reviewed.  
 
# Status: The ESAPI proposal is still being reviewed.  
#
 
  
*'''ModSecurity Grant Writing'''
+
*'''[https://docs.google.com/document/d/1dBTaRr-yl8wGhGKxacWACznZhCZnJ_sZeAdN-b2xPlw/edit?usp=sharing OWASP ModSecurity CRS Proposal]'''
 
#Amount: $30,000 USD
 
#Amount: $30,000 USD
 
#Status: The ModSecurity proposal is still being reviewed.   
 
#Status: The ModSecurity proposal is still being reviewed.   
Line 84: Line 111:
 
#Amount: $120,000 USD  in Adwords Funds
 
#Amount: $120,000 USD  in Adwords Funds
 
#Status: We now have a better idea of the initiatives and tasks we must undertake to better leverage this award. We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.  
 
#Status: We now have a better idea of the initiatives and tasks we must undertake to better leverage this award. We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.  
 +
#Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.
  
 
*'''European Commission Grant Proposal'''
 
*'''European Commission Grant Proposal'''

Latest revision as of 23:47, 31 May 2013

OWASP Global Projects Report

  • Project Applications
    • VCR Project
    • Windows Binary Executable Files Security Checks
    • Wordpress Security Checklist
    • Simple Host Base Incidence Detection System
    • Chat Application
    • Supporting Legacy Web Applications in the Current Environment

Currently Working On

  • OWASP Projects at AppSec Conferences 2013
    • Planning continues for the project event modules for AppSec USA 2013.
    • I continue to work with our project summit participating leaders to work out costs and logistics for their attendance.
    • I am in the process of putting together our project leader workshop materials.
    • The workshop will be a 45 - 50 minute interactive presentation for current and potential OWASP Project Leaders.
    • It will take place at the AppSec USA 2013 conference in New York.
    • I will continue to provide support to the local event planning team for AppSec EU, as needed.
  • Women in Security: AppSec USA 2013
    • The team has finished a first draft of the Sponsorship Document.
    • The plan is to reach out to different organizations for sponsorship.
    • You can find more information on the AppSec USA website.
    • We are currently attempting to raise $3,000.00 for each winner.
    • We plan on having 2 winners for 2013.
    • The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.
    • We are working hard to make this a possibility for our 2 potential winners.
  • Determining Active Project Status
    • This is a status update on this initiative.
    • I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.
    • Flagship projects are completed.
    • Labs are completed.
    • Incubator projects are now in the 3rd phase of 4 phases.
  • Technical Project Advisory Roles
    • I am currently on the 1st stage of the interview process for each candidate.
    • I have created job descriptions for each role, and I have had those roles posted for over a month.
    • We have had a good amount of candidates apply for each role.
    • I have sent out e-mails asking each candidate to answer 3 questions regarding their interest in these roles.
    • I will reach out to those individuals that responded to my request by next week.
  • Marketing Phase 3 Update
    • The marketing deliverables are going smoothly.
    • There is quite a bit of work to be done during this phase as this is where the back and forth approval process takes place.
    • The Ops Team is diligently working on this phase with Sisterworks Publishing and Design Foundry.
    • At the moment, we are working on finalizing the copy for several pieces of collateral that are scheduled to be designed.
    • Phase 1 Deliverable
    • Phase 2 Deliverable
      • Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
      • We are not necessarily moving forward with these recommendations towards implementation.
      • Sisterworks and Design Foundry are helping with our brand consistency and collateral design.
  • Strategic Goals Presentation
    • Ludovic petit has requested that we put together a presentation that the community can use to communicate our 2013 Strategic Goals.
    • Sarah and I have put together a first draft of the deck.
    • We plan to add to it over the coming weeks to make certain we encompass the thinking behind each goals for this year.
    • 2013 Strategic Goals draft
  • Personal Development
    • I am currently reading Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service by Michael E. Batts.
    • I am still taking my online course from Coursera.
    • The course topic is Information Security and Risk Management in Context.
    • I am currently in week 6 of the course.
    • Additionally, I am going to take a week long course in late June in the UK.
    • The course topic is Intellectual Property Strategy.
    • I will write a report on my learnings for the community after the course ends.
  • Daily Project based queries and requests
    • This has not changed much since I began the post: questions are very similar in nature.
    • Global AppSec questions.
    • Funding queries.
    • Travel availability.
    • Project based administrative help.
    • Project status information.
    • Several project donations questions.
    • Marketing questions.
    • Grant funding questions.
    • OWASP Social Media Updates.
    • What's happening with projects, questions.

Grants Updates

  1. Amount: $25,000 USD
  2. Status: The first payment has been allocated to our project budgets.
  3. OWASP Development Guide Plan
  4. OWASP Testing Guide Plan
  5. OWASP Code Review Guide Plan
  1. Amount: $25,000 USD
  2. Status: The ESAPI proposal is still being reviewed.
  1. Amount: $30,000 USD
  2. Status: The ModSecurity proposal is still being reviewed.
  • Google Grants Proposal
  1. Amount: $120,000 USD in Adwords Funds
  2. Status: We now have a better idea of the initiatives and tasks we must undertake to better leverage this award. We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.
  3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.
  • European Commission Grant Proposal
  1. Amount: €250,000
  2. Status: This proposal has been completed and submitted.


  • Total Grant Funds Awarded: $145,000 USD for 2013.
Retrieved from "https://wiki.owasp.org/index.php?title=Projects/Reports/2013-31-05&oldid=152645"