This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Project Information:template JSP Testing Tool Project"
From OWASP
Line 6: | Line 6: | ||
|- | |- | ||
| style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description''' | | style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description''' | ||
− | | colspan="6" style="width:85%; background:#cccccc" align="left"|The goal of this project is to create an easy to use, freely available tool that can be used to quickly ascertain the level of protection that each component of a JSP tag library offers. This information can serve two purposes: | + | | colspan="6" style="width:85%; background:#cccccc" align="left"|The goal of this project is to create an easy to use, freely available tool that can be used to quickly ascertain the level of protection that each component of a JSP tag library offers. This information can serve two purposes: <ol><li>It provides a means for projects to create a coding standard. By identifying which components are safe or unsafe, a project can establish a preference order of useable components. For those components identified as unsafe, extra security requirements can be imposed on any pages using those components</li><li>It provides tag library providers development guidance. Providers can target security enhancements to the components that are most susceptible to cross-site scripting attacks. They can also use these results to demonstrate their performance relative to other competing tag libraries. It also provides feedback for developers that create small custom tag libraries for internal development usage.</li></ol> |
|- | |- | ||
| style="width:15%; background:#7B8ABD" align="center"|'''Email Contacts''' | | style="width:15%; background:#7B8ABD" align="center"|'''Email Contacts''' | ||
| style="width:14%; background:#cccccc" align="center"|Project Leader<br>[mailto:jason.li(at)aspectsecurity.com '''Jason Li'''] | | style="width:14%; background:#cccccc" align="center"|Project Leader<br>[mailto:jason.li(at)aspectsecurity.com '''Jason Li'''] | ||
− | | style="width:14%; background:#cccccc" align="center"|Project Contributors<br> | + | | style="width:14%; background:#cccccc" align="center"|Project Contributors<br>'''N/A''' |
| style="width:14%; background:#cccccc" align="center"|[https://lists.owasp.org/mailman/listinfo/owasp-jsp-testing-tool-project '''Mailing List/Subscribe''']<br>[mailto:owasp-jsp-testing-tool-project(at)lists.owasp.org '''Mailing List/Use'''] | | style="width:14%; background:#cccccc" align="center"|[https://lists.owasp.org/mailman/listinfo/owasp-jsp-testing-tool-project '''Mailing List/Subscribe''']<br>[mailto:owasp-jsp-testing-tool-project(at)lists.owasp.org '''Mailing List/Use'''] | ||
| style="width:14%; background:#cccccc" align="center"|First Reviewer<br>[mailto:markkerzner(at)gmail.com '''Mark Kerzner'''] | | style="width:14%; background:#cccccc" align="center"|First Reviewer<br>[mailto:markkerzner(at)gmail.com '''Mark Kerzner'''] |
Revision as of 04:19, 30 June 2008
PROJECT IDENTIFICATION | ||||||
---|---|---|---|---|---|---|
Project Name | OWASP JSP Testing Tool Project | |||||
Short Project Description | The goal of this project is to create an easy to use, freely available tool that can be used to quickly ascertain the level of protection that each component of a JSP tag library offers. This information can serve two purposes:
| |||||
Email Contacts | Project Leader Jason Li |
Project Contributors N/A |
Mailing List/Subscribe Mailing List/Use |
First Reviewer Mark Kerzner |
Second Reviewer Fabrício Fujikawa |
OWASP Board Member (if applicable) Name&Email |
PROJECT MAIN LINKS | |||||
---|---|---|---|---|---|
Google Code Home |
SPONSORS & GUIDELINES | |||||
---|---|---|---|---|---|
Sponsor - OWASP Summer of Code 2008 | Sponsored Project/Guidelines/Roadmap |
ASSESSMENT AND REVIEW PROCESS | ||||
---|---|---|---|---|
Review/Reviewer | Author's Self Evaluation (applicable for Alpha Quality & further) |
First Reviewer (applicable for Alpha Quality & further) |
Second Reviewer (applicable for Beta Quality & further) |
OWASP Board Member (applicable just for Release Quality) |
50% Review | Objectives & Deliveries reached? Yes --------- See 50% Review/Self-Evaluation (A) |
Objectives & Deliveries reached? Yes/No (To update) --------- See 50% Review/1st Reviewer (C) |
Objectives & Deliveries reached? Yes/No (To update) --------- See 50%Review/2nd Reviewer (E) |
X |
Final Review | Objectives & Deliveries reached? Yes/No (To update) --------- Which status has been reached? Season of Code - (To update) --------- See Final Review/SelfEvaluation (B) |
Objectives & Deliveries reached? Yes/No (To update) --------- Which status has been reached? Season of Code - (To update) --------- See Final Review/1st Reviewer (D) |
Objectives & Deliveries reached? Yes/No (To update) --------- Which status has been reached? Season of Code - (To update) --------- See Final Review/2nd Reviewer (F) |
X |