This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Project Information:template Enigform and mod OpenPGP - 50 Review - First Reviewer - C"
(New page: Click here to return to the previous page. {| style="width:100%" border="0" align="center" ! colspan="3" align="center" style="b...) |
|||
Line 15: | Line 15: | ||
1. At what extent have the project deliveries & objectives been accomplished? Having in consideration [[OWASP Summer of Code 2008 Applications - Need Futher Clarifications#OpenPGP Extensions for HTTP - Enigform and mod_openpgp|'''the assumed ones''']], please exemplify writing down those of them that haven't been realised. | 1. At what extent have the project deliveries & objectives been accomplished? Having in consideration [[OWASP Summer of Code 2008 Applications - Need Futher Clarifications#OpenPGP Extensions for HTTP - Enigform and mod_openpgp|'''the assumed ones''']], please exemplify writing down those of them that haven't been realised. | ||
| colspan="2" style="width:75%; background:#cccccc" align="left"| | | colspan="2" style="width:75%; background:#cccccc" align="left"| | ||
+ | Demo of enigform/OpenPGP authentication and secure session management proved successful. For final we need documentation that Buanzo is working on at his wiki site published on the OWASP site. Also, I would like to see a website and a demo of session based attacks against the site with the OpenPGP extensions (can we use OWASP testing guide examples?) | ||
|- | |- | ||
| style="width:25%; background:#7B8ABD" align="center"| | | style="width:25%; background:#7B8ABD" align="center"| | ||
− | |||
2. At what extent have the project deliveries & objectives been accomplished? Having in consideration [[OWASP Summer of Code 2008 Applications - Need Futher Clarifications#OpenPGP Extensions for HTTP - Enigform and mod_openpgp|'''the assumed ones''']], please quantify in terms of percentage. | 2. At what extent have the project deliveries & objectives been accomplished? Having in consideration [[OWASP Summer of Code 2008 Applications - Need Futher Clarifications#OpenPGP Extensions for HTTP - Enigform and mod_openpgp|'''the assumed ones''']], please quantify in terms of percentage. | ||
| colspan="2" style="width:75%; background:#cccccc" align="left"| | | colspan="2" style="width:75%; background:#cccccc" align="left"| | ||
+ | 60% (I worked with Buanzo on testing Enigform and mod_openpgp for secure sessions, extensions appear to work). | ||
|- | |- | ||
|- | |- | ||
Line 25: | Line 26: | ||
3. Please do use the right hand side column to provide advice and make work suggestions. | 3. Please do use the right hand side column to provide advice and make work suggestions. | ||
| colspan="2" style="width:75%; background:#cccccc" align="left"| | | colspan="2" style="width:75%; background:#cccccc" align="left"| | ||
+ | Buanzo is a motivated security developer. Maybe he can provide development guidance after the SoC 2008 for others to learn from. | ||
|} | |} |
Revision as of 02:35, 2 July 2008
Click here to return to the previous page.
50% REVIEW PROCESS | ||
---|---|---|
Project Deliveries & Objectives |
OWASP OpenPGP Extensions for HTTP - Enigform and mod_openpgp Project's Deliveries & Objectives | |
QUESTIONS | ANSWERS | |
1. At what extent have the project deliveries & objectives been accomplished? Having in consideration the assumed ones, please exemplify writing down those of them that haven't been realised. |
Demo of enigform/OpenPGP authentication and secure session management proved successful. For final we need documentation that Buanzo is working on at his wiki site published on the OWASP site. Also, I would like to see a website and a demo of session based attacks against the site with the OpenPGP extensions (can we use OWASP testing guide examples?) | |
2. At what extent have the project deliveries & objectives been accomplished? Having in consideration the assumed ones, please quantify in terms of percentage. |
60% (I worked with Buanzo on testing Enigform and mod_openpgp for secure sessions, extensions appear to work). | |
3. Please do use the right hand side column to provide advice and make work suggestions. |
Buanzo is a motivated security developer. Maybe he can provide development guidance after the SoC 2008 for others to learn from. |