This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Talk:SAMM - Verification

From OWASP
Jump to: navigation, search

It is great to see the SAMM wiki being setup! Since you are looking at mapping of existing artifacts to SAMM levels I thought I will raise this point. When I go thru ASVS in general tool based verification is at the lower levels and manual verification is stressed on at higher levels. However in SAMM it seems to be the opposite. Can anyone explain this apparent contradiction?