|
|
(45 intermediate revisions by 3 users not shown) |
Line 1: |
Line 1: |
− | <div style="width:100%;border:0,margin:0;overflow: hidden;">[[File:OWASP_Java_Project_Header.png|link=]]</div>
| + | #REDIRECT [[:Category:Java]] |
− | = About =
| |
− | | |
− | {| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| |
− | | valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |
| |
− | | |
− | == About ==
| |
− | | |
− | The OWASP Java™ and JVM Project is the clearing house for all information related to building secure web/distributed applications and services based on Java and JVM technologies. The focus of the project is on guidance for developers and architects using Java frameworks and JVM based technologies for web application development, on OWASP components that use Java and on participation in OWASP projects that use Java and JVM technologies. Moreover, we aim to provide security related guidance for system administrators managing Java and JVM based applications and tools.
| |
− | | |
− | The project is not limited to Java. It aims to also address topics around the JVM in general.
| |
− | | |
− | Community content is key to security information. The project depends on content from developers throughout the Java and JVM ecosystem.
| |
− | | |
− | ==Purpose==
| |
− | | |
− | * Provide deep, rich guidance for Java developers in using the security features of Java and of Java frameworks.
| |
− | * Address security in relation to the Java Virtual Machine and derived technologies.
| |
− | * Guide system administrators in managing Java and JVM related components and applications.
| |
− | * Create guidance for use of OWASP components that are designed for use with Java or other JVM languages.
| |
− | * Focus on information about working with and on OWASP tools built using Java or other JVM technologies.
| |
− | * Provide a stream of security related information, like vulnerabilities and security patches, related to the Java and JVM universe.
| |
− | * Build an ecosystem allowing to all actors interested to discuss, share and learn.
| |
− | | |
− | | |
− | | |
− | == Licensing ==
| |
− | | |
− | OWASP Java™ Project is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.
| |
− | | |
− | Oracle® and Java™ are [http://www.oracle.com/us/legal/trademarks/index.html|registered trademarks of Oracle] and/or its affiliates. Other names may be trademarks of their respective owners.
| |
− | | |
− | | valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |
| |
− | | |
− | == Team ==
| |
− | | |
− | Lead: [https://www.owasp.org/index.php/User:imifos Tasha CARL]
| |
− | | |
− | <br/>
| |
− | | |
− | == Meta ==
| |
− | | |
− | Last Update: 12/2015
| |
− | | |
− | <br/>
| |
− | | |
− | == Other Resources ==
| |
− | | |
− | [http://lists.owasp.org/mailman/listinfo/java-project Mailing List]
| |
− | | |
− | [https://twitter.com/owasp_java Twitter (Java)]
| |
− | | |
− | [https://twitter.com/owasp_languages Twitter (Languages)]
| |
− | | |
− | [https://github.com/OWASP-Java GitHub]
| |
− | | |
− | <br/>
| |
− | | |
− | == Related Projects ==
| |
− | | |
− | * [[OWASP_Project|Main Project Repository]]
| |
− | * [[OWASP_.NET_Project|OWASP .NET]]
| |
− | * [[OWASP_DevSec_Project|OWASP DevSec]]
| |
− | * [[OWASP_PHP_Project|OWASP PHP (inactive)]]
| |
− | * [[OWASP_Internet_of_Things_Project|OWASP IoT Security]]
| |
− | * [[OWASP_Mobile_Security_Project|OWASP Mobile Security]]
| |
− | | |
− | | valign="top" style="padding-left:25px;width:200px;" |
| |
− | | |
− | ==Classifications==
| |
− | | |
− | {| width="200" cellpadding="2"
| |
− | |-
| |
− | | align="center" valign="top" width="50%" rowspan="2"| [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects]]
| |
− | | align="center" valign="top" width="50%"| [[File:Owasp-builders-small.png|link=]]
| |
− | |-
| |
− | | align="center" valign="top" width="50%"| [[File:Owasp-defenders-small.png|link=]]
| |
− | |-
| |
− | | colspan="2" align="center" | [[File:Cc-button-y-sa-small.png|link=http://creativecommons.org/licenses/by-sa/3.0/]]
| |
− | |-
| |
− | | colspan="2" align="center" | [[File:Project_Type_Files_DOC.jpg|link=]]
| |
− | |}
| |
− | | |
− | |}
| |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | = Project and related OWASP Resources =
| |
− | | |
− | {| style="padding:0; margin:0; margin-top:10px; text-align:left; width:100%;" |-
| |
− | | valign="top" style="border-right: 1px dotted gray; padding-right:25px; width:30%; float:left;" |
| |
− | | |
− | == Mailing List ==
| |
− | | |
− | [http://lists.owasp.org/mailman/listinfo/java-project OWASP Java and JVM Project Mailing List]
| |
− | | |
− | | valign="top" style="padding-left:25px; width:30%; min-width:30%; border-right:1px dotted gray; padding-right:25px; float:left;" |
| |
− | | |
− | == Twitter Feed ==
| |
− | | |
− | [https://twitter.com/owasp_java Twitter, Java and JVM Project]
| |
− | | |
− | [https://twitter.com/owasp_languages Twitter, Programming Languages Project]
| |
− | | |
− | | |
− | | valign="top" style="padding-left:25px; width:30%; float:left;" |
| |
− | | |
− | == Code Repository ==
| |
− | | |
− | [https://github.com/OWASP-Java GitHub]
| |
− | | |
− | |}
| |
− | | |
− | == Related Project Resources ==
| |
− | | |
− | [[OWASP_Project|Main Project Repository]]
| |
− | | |
− | [[OWASP_.NET_Project|OWASP .NET Project]]
| |
− | | |
− | [[OWASP_DevSec_Project|OWASP DevSec Project]]
| |
− | | |
− | [[OWASP_Internet_of_Things_Project|OWASP IoT Security Project]]
| |
− | | |
− | [[OWASP_Mobile_Security_Project|OWASP Mobile Security Project]]
| |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | = Project Pages =
| |
− | | |
− | == Tools Chain ==
| |
− | | |
− | [[OWASP_SonarQube_Project|OWASP SonarQube Project]]
| |
− | | |
− | [[OWASP_Dependency_Check|OWASP Dependency Check]]
| |
− | | |
− | <br/>
| |
− | | |
− | <br/>
| |
− | | |
− | == Libraries ==
| |
− | | |
− | [[OWASP_Java_HTML_Sanitizer|OWASP Java HTML Sanitizer]]
| |
− | | |
− | [[OWASP_Java_Encoder_Project|OWASP Java Encoder Project]]
| |
− | | |
− | <br/>
| |
− | | |
− | <br/>
| |
− | | |
− | == Documents ==
| |
− | | |
− | [[OWASP_Secure_Coding_Practices_-_Quick_Reference_Guide|OWASP Secure Coding Practices - Quick Reference Guide]]
| |
− | | |
− | [[OWASP_Codes_of_Conduct|OWASP Codes of Conduct]]
| |
− | | |
− | [[Cheat_Sheets|OWASP Cheat Sheets Series]]
| |
− | | |
− | [[OWASP_Testing_Project|OWASP Testing Project]]
| |
− | | |
− | [[OWASP_Top_Ten_Project|OWASP Web Top 10]]
| |
− | | |
− | [[OWASP_Vulnerable_Web_Applications_Directory_Project|OWASP Vulnerable Web Applications Directory]]
| |
− | | |
− | <br/>
| |
− | | |
− | <br/>
| |
− | | |
− | == Pages to be reviewed or under review ==
| |
− | | |
− | [[Java Security Frameworks]]
| |
− | | |
− | [[OWASP_Java_Encoder_Project]]
| |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | = Get involved =
| |
− | | |
− | To get involved join the mailing list: [http://lists.owasp.org/mailman/listinfo/java-project OWASP Java and JVM Mailing List]
| |
− | | |
− | <TBD>
| |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | = Project Archives =
| |
− | | |
− | The previous version of this JAVA Project home page is archived here: [[OWASP Java Project Archive (8.2010)]]
| |
− | | |
− | <br/>
| |
− | | |
− | <hr/>
| |
− | | |
− | The category 'Java' should not be employed. Please use the category '<nowiki>[[Category:OWASP_Java_Project]]</nowiki>' instead.
| |
− | | |
− | <categorytree mode=pages style="display: block;">Java</categorytree>
| |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | | |
− | __NOTOC__
| |
− | <headertabs />
| |
− | | |
− | <br/>
| |
− | | |
− | <!-- Wikimedia insert 'Category:OWASP Java Project' classified list here -->
| |
− | | |
− | [[Category:OWASP Project]]
| |
− | [[Category:OWASP_Builders]]
| |
− | [[Category:OWASP_Defenders]]
| |
− | [[Category:OWASP_Document]]
| |
− | [[Category:Technology]]
| |
− | [[Category:OWASP_Project]]
| |
− | [[Category:OWASP Document]]
| |
− | [[Category:OWASP Download]]
| |
− | [[Category:Language]]
| |
− | | |
− | | |
− | <!--
| |
− | | |
− | =Resources=
| |
− | | |
− | The OWASP Java Project is principally about creating deep, rich guidance for Java developers using all kind of security resources.
| |
− | | |
− | == Security Guidance ==
| |
− | | |
− | The following sections include general content that can be useful for a specific role in securing Java web applications and services:
| |
− | | |
− | <TBD>
| |
− | | |
− | The following sections include specific guidance for particular technological problems related to Java web applications and services:
| |
− | | |
− | <TBD>
| |
− | | |
− | == Recommended Resources ==
| |
− | | |
− | <TBD>
| |
− | | |
− | == Active Projects ==
| |
− | | |
− | <TBD>
| |
− | | |
− | == Research Projects ==
| |
− | | |
− | <TBD>
| |
− | | |
− | -->
| |