This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Projects/O-Saft/Roadmap"
From OWASP
(update) |
m |
||
| Line 2: | Line 2: | ||
* review the code (technically, note that it is a testing and not a security tool) | * review the code (technically, note that it is a testing and not a security tool) | ||
| + | * formatting output should be a postprocess; scoring should be a postprocess | ||
* add check for certificate chains | * add check for certificate chains | ||
* add proper metric for risks rating | * add proper metric for risks rating | ||
| Line 9: | Line 10: | ||
==== Done ==== | ==== Done ==== | ||
* 04/2015: build simple GUI | * 04/2015: build simple GUI | ||
| − | * 12/2014: move formatting functionality to o-saft-usr.pm | + | * 12/2014: move formatting functionality to o-saft-usr.pm |
* 11/2014: implement other protocols (STARTTLS, IMAPS, POPS, ...) | * 11/2014: implement other protocols (STARTTLS, IMAPS, POPS, ...) | ||
* 09/2014: move description to external file; remove POD | * 09/2014: move description to external file; remove POD | ||
* 05/2014: check target for any possible/existing cipher | * 05/2014: check target for any possible/existing cipher | ||
Revision as of 23:18, 8 April 2015
- build better map with description for ciphers
- review the code (technically, note that it is a testing and not a security tool)
- formatting output should be a postprocess; scoring should be a postprocess
- add check for certificate chains
- add proper metric for risks rating
- implement client certificates
- encourage other admins and developers to fix their SSL issues ;-)"
Done
- 04/2015: build simple GUI
- 12/2014: move formatting functionality to o-saft-usr.pm
- 11/2014: implement other protocols (STARTTLS, IMAPS, POPS, ...)
- 09/2014: move description to external file; remove POD
- 05/2014: check target for any possible/existing cipher
