This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Difference between revisions of "Category:OWASP Enterprise Application Security Project"

Jump to: navigation, search
Line 1: Line 1:
==== Main ====
== Objective ==
== Objective ==

Revision as of 21:50, 5 September 2010



The OWASP Enterprise Application Security Project (OWASP-EAS) exists to provide guidance to people involved in the procurement, design, implementation or sign-off of large scale (ie 'Enterprise') applications. There's also a [SOMAP-EAS] sister project for those interested in non-technical Enterprise Application Security.

Primary Goals

The key goals of OWASP-EAS are as follows:

  1. Act as a Metaproject to provide pointers to other relevant application security information within OWASP
  2. Provide technical guidance for procurement, design, implementation and assessment of Enterprise Application implementations
  3. To provide an open environment for the discussion of Enterprise-level Application Security

Other goals include

  1. Expansion of OWASP-EAS into other large scale applications using a common framework
  2. To provide encouragement for vendors and integrators to adopt open security standards
  3. World Domination (TBC)

Call for Volunteers

There's a few of us already, once the mailing list is up we'd like to get more input from others on how to go about tackling the problems.

Project Roadmap

Have a look at the OWASP Enterprise Application Security Project Roadmap

Project Identification

What does this OWASP project offer you?
What does this OWASP project release offer you?
what is this project?
OWASP Application Security Metrics Project

Purpose: This Project will first identify and provide the OWASP community a set of application security metrics that have been found by contributors to be effective in measuring application security. This will be followed by the development of new metrics that build on the initial metrics foundation to fulfil unmet metrics requirements. The goals of this Project are to make a baseline set of application security metrics available to the OWASP community and subsequently to provide a forum for the community to contribute metrics back into the baseline

License: N/A

who is working on this project?
Project Leader: Jeff Barto @

Project Maintainer:

Project Contributor(s): N/A

how can you learn more?
Project Pamphlet: N/A

3x slide Project Presentation: N/A

Mailing list: Subscribe or read the archives

Project Roadmap: N/A

Main links: N/A

Project Health: Yellow button.JPG Not Reviewed (Provisional)
To be reviewed under Assessment Criteria v2.0

Key Contacts
  • Contact Jeff Barto @ to contribute, review or sponsor this project
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
First Release - Unknown Date - (no download available)

Release Leader: N/A

Release details: N/A :

Rating: Yellow button.JPG Not Reviewed
To be reviewed under Assessment Criteria v2.0

This category currently contains no pages or media.