This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Project Information:template JSP Testing Tool Project"

From OWASP

Jump to: navigation, search

Revision as of 17:04, 26 January 2009

PROJECT IDENTIFICATION
Project Name	OWASP JSP Testing Tool Project
Short Project Description	The goal of this project is to create an easy to use, freely available tool that can be used to quickly ascertain the level of protection that each component of a JSP tag library offers. This information can serve two purposes: It provides a means for projects to create a coding standard. By identifying which components are safe or unsafe, a project can establish a preference order of useable components. For those components identified as unsafe, extra security requirements can be imposed on any pages using those components It provides tag library providers development guidance. Providers can target security enhancements to the components that are most susceptible to cross-site scripting attacks. They can also use these results to demonstrate their performance relative to other competing tag libraries. It also provides feedback for developers that create small custom tag libraries for internal development usage.
Short Project Description	Jason Li	Project Contributors N/A	Mailing List Subscribe here Use here	License Creative Commons Attribution Share Alike 3.0	Project Type Tool	Sponsors OWASP SoC 08

Release Status	Main Links	Related Projects
Provisory Beta Quality (Waiting for Final Review/2nd Reviewer) Please see here for complete information.	Google Code Home	If any, add link here

PROJECT IDENTIFICATION
Project Name	OWASP JSP Testing Tool Project
Short Project Description	The goal of this project is to create an easy to use, freely available tool that can be used to quickly ascertain the level of protection that each component of a JSP tag library offers. This information can serve two purposes: It provides a means for projects to create a coding standard. By identifying which components are safe or unsafe, a project can establish a preference order of useable components. For those components identified as unsafe, extra security requirements can be imposed on any pages using those components It provides tag library providers development guidance. Providers can target security enhancements to the components that are most susceptible to cross-site scripting attacks. They can also use these results to demonstrate their performance relative to other competing tag libraries. It also provides feedback for developers that create small custom tag libraries for internal development usage.
Email Contacts	Project Leader Jason Li	Project Contributors N/A	Mailing List/Subscribe Mailing List/Use	First Reviewer Mark Kerzner	Second Reviewer Fabrício Fujikawa	OWASP Board Member (if applicable) Name&Email

PROJECT MAIN LINKS
Google Code Home

SPONSORS & GUIDELINES
Sponsor - OWASP Summer of Code 2008	Sponsored Project/Guidelines/Roadmap

ASSESSMENT AND REVIEW PROCESS
Review/Reviewer	Author's Self Evaluation (applicable for Alpha Quality & further)	First Reviewer (applicable for Alpha Quality & further)	Second Reviewer (applicable for Beta Quality & further)	OWASP Board Member (applicable just for Release Quality)
50% Review	Objectives & Deliveries reached? Yes --------- See 50% Review/Self-Evaluation (A)	Objectives & Deliveries reached? Yes --------- See 50% Review/1st Reviewer (C)	Objectives & Deliveries reached? Yes --------- See 50%Review/2nd Reviewer (E)	X
Final Review	Objectives & Deliveries reached? Yes --------- Which status has been reached? Season of Code - Beta --------- See Final Review/SelfEvaluation (B)	Objectives & Deliveries reached? Yes/No (To update) --------- Which status has been reached? Season of Code - (To update) --------- See Final Review/1st Reviewer (D)	Objectives & Deliveries reached? Yes/No (To update) --------- Which status has been reached? Season of Code - (To update) --------- See Final Review/2nd Reviewer (F)	X

Retrieved from "https://wiki.owasp.org/index.php?title=Project_Information:template_JSP_Testing_Tool_Project&oldid=52110"

@@ Line 1: / Line 1: @@
+----
+{| style="width:100%" border="0" align="center"
+ ! colspan="8" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT IDENTIFICATION'''
+ |-
+ | style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
+ | colspan="7" style="width:85%; background:#cccccc" align="left"|<font color="black">'''OWASP JSP Testing Tool Project'''
+ |-
+ | style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description'''
+ | colspan="7" style="width:85%; background:#cccccc" align="left"|The goal of this project is to create an easy to use, freely available tool that can be used to quickly ascertain the level of protection that each component of a JSP tag library offers. This information can serve two purposes: <ol><li>It provides a means for projects to create a coding standard. By identifying which components are safe or unsafe, a project can establish a preference order of useable components. For those components identified as unsafe, extra security requirements can be imposed on any pages using those components</li><li>It provides tag library providers development guidance. Providers can target security enhancements to the components that are most susceptible to cross-site scripting attacks. They can also use these results to demonstrate their performance relative to other competing tag libraries. It also provides feedback for developers that create small custom tag libraries for internal development usage.
+ |-
+ | style="width:15%; background:#7B8ABD" align="center"|'''Short Project Description'''
+ | style="width:14%; background:#cccccc" align="center"|[[User:Jason Li|'''Jason Li''']]
+ | style="width:15%; background:#cccccc" align="center"|Project Contributors<br>'''N/A'''
+ | style="width:10%; background:#cccccc" align="center"|Mailing List<br>[https://lists.owasp.org/mailman/listinfo/owasp-jsp-testing-tool-project '''Subscribe here''']<br>[mailto:owasp-jsp-testing-tool-project(at)lists.owasp.org '''Use here''']
+ | style="width:17%; background:#cccccc" align="center"|License<br>[http://creativecommons.org/licenses/by-sa/3.0/ '''Creative Commons Attribution Share Alike 3.0''']
+ | style="width:14%; background:#cccccc" align="center"|Project Type<br>[[:Category:OWASP_Project#Beta_Status_Projects|'''Tool''']]
+ | style="width:15%; background:#cccccc" align="center"|Sponsors<br>[[OWASP Summer of Code 2008|'''OWASP SoC 08''']]
+ |}
+{| style="width:100%" border="0" align="center"
+ ! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Release Status'''
+ ! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Main Links'''
+ ! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Related Projects'''
+ |-
+ | style="width:29%; background:#cccccc" align="center"|
+Provisory '''[[:Category:OWASP_Project_Assessment#Beta_Quality_Tool_Criteria|Beta Quality]]'''<br>(Waiting for Final Review/2nd Reviewer)<br>[[:JSP Testing Tool Project - Assessment Frame|Please see here for complete information.]]
+ | style="width:42%; background:#cccccc" align="center"|
+[http://code.google.com/p/owasp-jsp-testing-tool/ Google Code Home]
+ | style="width:29%; background:#cccccc" align="center"|
+If any, add link here
+ |}
+----
 {| style="width:100%" border="0" align="center"
   ! colspan="7" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT IDENTIFICATION'''

Difference between revisions of "Project Information:template JSP Testing Tool Project"

Revision as of 17:04, 26 January 2009

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools