This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Docker Top 10"
Dirk Wetter (talk | contribs) (Firt draft of Roadmap, more) |
Dirk Wetter (talk | contribs) m |
||
Line 43: | Line 43: | ||
* Get other people involved to review the Documentation and provide feedback | * Get other people involved to review the Documentation and provide feedback | ||
* Incorporate feedback into the Documentation | * Incorporate feedback into the Documentation | ||
− | * | + | * First Release |
</strong> | </strong> | ||
Subsequent Releases will add | Subsequent Releases will add | ||
<strong> | <strong> | ||
− | * Go from Draft to | + | * Go from Draft to Release |
* Being Promoted from an Incubator Project to a Lab Project | * Being Promoted from an Incubator Project to a Lab Project | ||
</strong> | </strong> | ||
Line 60: | Line 60: | ||
== Project Resources == | == Project Resources == | ||
− | [https:// | + | Actions take place @ [https://github.com/OWASP/Docker-Top-10 Github] |
− | [https://2018.appsec.eu/presos/DevOps_Securing-Containers_Jack-Mannino_Abdullah-Munawar_AppSecEU2018.pptx | + | Dirk Wetter: [https://2018.appsec.eu/presos/DevOps_Docker_201_Security_Dirk-Wetter_AppSecEU2018.pdf Slides of Presentation] at OWASP AppSec Europe 2018 |
+ | |||
+ | Jack Mannino and Abdullah Munawar: [https://2018.appsec.eu/presos/DevOps_Securing-Containers_Jack-Mannino_Abdullah-Munawar_AppSecEU2018.pptx Slides of Presentation] at OWASP AppSec Europe 2018 | ||
== Project Leader == | == Project Leader == |
Revision as of 09:48, 1 September 2018
Project About
About Docker Top 10The OWASP Docker Top 10 is giving you ten bullet points to plan and implement a secure docker container environment. The 10 bullet points are ordered by relevance. They don't represent risks as each single point in the OWASP Top 10, they represent security controls. The controls range from baseline security to more advanced controls, depended on your security requirements. You should use it as a guidance in the design phase as a system specification or for auditing a docker environment. Also for procurement it could provide a basis for specifying requirements in contracts.
DescriptionLicensingRoadmapAs of August 2018, the highest priorities for the next 3 months are:
Subsequent Releases will add
Getting InvolvedFor all communication, releases and more please use github |
Project ResourcesActions take place @ Github Dirk Wetter: Slides of Presentation at OWASP AppSec Europe 2018 Jack Mannino and Abdullah Munawar: Slides of Presentation at OWASP AppSec Europe 2018 Project LeaderDirk Wetter Related Projects
|