This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Projects/OWASP Mobile Security Project"

From OWASP
Jump to: navigation, search
m
m
 
(21 intermediate revisions by 4 users not shown)
Line 1: Line 1:
 
{{Template:<includeonly>{{{1}}}</includeonly><noinclude>Project About</noinclude>
 
{{Template:<includeonly>{{{1}}}</includeonly><noinclude>Project About</noinclude>
 
| project_name = OWASP Mobile Security Project
 
| project_name = OWASP Mobile Security Project
| project_home_page = OWASP_Mobile_Security_Project
+
| project_home_page = OWASP Mobile Security Project
| project_description =
+
| project_description = Our primary focus is at the application layer.  While we take into consideration the underlying mobile platform and carrier inherent risks when threat modeling and building controls, we are targeting the areas that the average developer can make a difference.  Additionally, we focus not only on the mobile applications deployed to end user devices, but also on the broader server-side infrastructure which the mobile apps communicate with.  We focus heavily on the integration between the mobile application, remote authentication services, and cloud platform-specific features.
The project's current and future initiatives are defined here: [https://www.owasp.org/index.php/Projects/OWASP_Mobile_Security_Project/Roadmap Roadmap]
 
 
 
The OWASP Mobile Security Project is a centralized resource intended to give developers and security teams the resources they need to build and maintain secure mobile applications.  Through the project, our goal is to classify mobile security risks and provide developmental controls to reduce their impact or likelihood of exploitation. 
 
 
 
Our primary focus is at the application layer.  While we take into consideration the underlying mobile platform and carrier inherent risks when threat modeling and building controls, we are targeting the areas that the average developer can make a difference.  Additionally, we focus not only on the mobile applications deployed to end user devices, but also on the broader server-side infrastructure which the mobile apps communicate with.  We focus heavily on the integration between the mobile application, remote authentication services, and cloud platform-specific features.
 
 
    
 
    
 
| project_license =
 
| project_license =
  
| leader_name1 = Jack Mannino
+
| leader_name1 = Jonathan Carter (Overall Project and iGoat Leader)
| leader_email1 = Jack@nvisiumsecurity.com
+
| leader_email1 = jonathan.carter@owasp.org
| leader_username1 = Jack Mannino
+
| leader_username1 = Jonathan Carter
  
| leader_name2 = Mike Zusman
+
| leader_name2 = Mike Zusman (Mobile Cheat Sheet Leader)
 
| leader_email2 = [email protected]
 
| leader_email2 = [email protected]
 
| leader_username2 = schmoilito
 
| leader_username2 = schmoilito
  
| leader_name3 = Zach Lanier
+
| leader_name3 = Tony DeLaGrange (MobiSec Leader)
| leader_email3 = zach.lanier@n0where.org
+
| leader_email3 = mobisec@secureideas.net
| leader_username3 = Zach_Lanier
+
| leader_username = Tony DeLaGrange
 +
 
 +
| leader_name4 = Sarath Geethakumar (Mobile Device Management Leader)
 +
| leader_email4 = sarath.geethakumar@owasp.org
 +
| leader_username4 =  Sarath Geethakumar
 +
 
 +
| leader_name5 = Tom Eston (Mobile Threat Model Leader)
 +
| leader_email5 = [email protected]
  
| leader_name4 = Giles Hogben
+
| leader_name6 = Don Williams (Mobile Testing Leader)
| leader_email4 = [email protected]
 
| leader_username4 =  Giles Hogben
 
  
| leader_name5 = Vinay Bansal
+
| leader_name7 = Jonathan Carter (Mobile Top Ten)
| leader_email5 = vinay.bansal@cisco.com
+
| leader_email7 = jonathan.carter@owasp.org
| leader_username5 Vinaykbansal
+
| leader_username7 Jonathan Carter
 +
 
 +
| contributor_name1 = Zach Lanier
 +
| contributor_email1 = [email protected]
 +
| contributor_username1 = Zach_Lanier
  
 
| contributor_name2 = Jim Manico
 
| contributor_name2 = Jim Manico
Line 35: Line 39:
 
| contributor_username2= jmanico
 
| contributor_username2= jmanico
  
| contributor_name1 = David Lindner
+
| contributor_name3 = Ludovic Petit
| contributor_email1 = david.lindner@aspectsecurity.com
+
| contributor_email3 = ludovic.petit@owasp.org
| contributor_username1 = David Lindner
+
| contributor_username3 = Ludovic Petit
  
| contributor_name3 = Tom Neaves
+
| contributor_name4 = Swapnil Deshmukh
| contributor_email3 = tom.neaves@verizonbusiness.com
+
| contributor_email4 = sd.swapz@gmail.com
| contributor_username3 = Tom Neaves
+
| contributor_username4 = Swapnil Deshmukh
  
| contributor_name4 = Kuai Hinojosa
+
| contributor_name5 = Beau Woods
| contributor_email4 = Kuai.Hinojosa@owasp.org
+
| contributor_email5 = owasp@beauwoods.com
| contributor_username4 = Webappsecguy
+
| contributor_username5 = Beau Woods
  
| contributor_name6 = Zach Lanier
 
| contributor_email6 = [email protected]
 
| contributor_username6 =  Zach_Lanier
 
  
| contributor_name7 = Ludovic Petit
 
| contributor_email7 = [email protected]
 
| contributor_username7 =  Ludovic Petit
 
  
| contributor_name8 = Zaki Akhmad
 
| contributor_email8 = [email protected]
 
| contributor_username8 =  Zakiakhmad
 
  
| contributor_name9 = Christian Papathanasiou
 
| contributor_email9 = [email protected]
 
| contributor_username9 =  Christian_Papathanasiou
 
  
| contributor_name10 = Swapnil Deshmukh
 
| contributor_email10 = [email protected]
 
| contributor_username10 =  Swapnil Deshmukh
 
  
| contributor_name11 = Beau Woods
 
| contributor_email11 = [email protected]
 
| contributor_username11 =  Beau Woods
 
  
 
| pamphlet_link =  
 
| pamphlet_link =  
  
| presentation_link =
+
| presentation_link = http://www.slideshare.net/JackMannino/owasp-top-10-mobile-risks
  
 
| mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp-mobile-security-project
 
| mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp-mobile-security-project
Line 89: Line 75:
 
<!--- The line below is for GPC usage only. Please do not edit it --->
 
<!--- The line below is for GPC usage only. Please do not edit it --->
 
| project_about_page = Projects/OWASP Mobile Security Project
 
| project_about_page = Projects/OWASP Mobile Security Project
 +
 
}}
 
}}

Latest revision as of 19:47, 19 June 2015

PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP Mobile Security Project (home page)
Purpose: Our primary focus is at the application layer. While we take into consideration the underlying mobile platform and carrier inherent risks when threat modeling and building controls, we are targeting the areas that the average developer can make a difference. Additionally, we focus not only on the mobile applications deployed to end user devices, but also on the broader server-side infrastructure which the mobile apps communicate with. We focus heavily on the integration between the mobile application, remote authentication services, and cloud platform-specific features.
License: N/A
who is working on this project?
Project Leader(s):
Project Contributor(s):
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation: View
Mailing list: Mailing List Archives
Project Roadmap: View
Key Contacts
current release
Not Yet Published
last reviewed release
Not Yet Reviewed


other releases