Category:OWASP Backend Security Project
From OWASP
Click here to return to OWASP Projects page.
Click here to see (& edit, if wanted) the template.
| PROJECT IDENTIFICATION | ||||||
|---|---|---|---|---|---|---|
| Project Name | OWASP Backend Security Project | |||||
| Short Project Description | This project aims to improve and to collect the existent information about the backend security. The project is composed by three sections (security development, security hardening and security testing). The aim is to define the guidelines for the companies and IT professionals working in the security field into processes development and back-end components management/testing in the enterprise architecture. | |||||
| Email Contacts | Project Leader Carlo Pelliccioni | Project Contributors Daniele Bellucci Erik Sonnleitner Francesco Perna Giuseppe Gottardi Guido Landi Guido Pederzini Maurizio Agazzini Massimo Biagiotti Pasquale de Rinaldis | Mailing List/Subscribe Mailing List/Use | First Reviewer Esteban Ribičić | Second Reviewer Josh Sweeney | OWASP Board Member (if applicable) Name&Email |
| PROJECT MAIN LINKS | |||||
|---|---|---|---|---|---|
| |||||
| SPONSORS & GUIDELINES | |||||
|---|---|---|---|---|---|
| Sponsor - OWASP Summer of Code 2008 | Sponsored Project/Guidelines/Roadmap | ||||
| ASSESSMENT AND REVIEW PROCESS | ||||
|---|---|---|---|---|
| Review/Reviewer | Author's Self Evaluation (applicable for Alpha Quality & further) | First Reviewer (applicable for Alpha Quality & further) | Second Reviewer (applicable for Beta Quality & further) | OWASP Board Member (applicable just for Release Quality) |
| 50% Review | Objectives & Deliveries reached? Yes --------- See&Edit:50% Review/Self-Evaluation (A) | Objectives & Deliveries reached? Yes --------- See&Edit: 50% Review/1st Reviewer (C) | Objectives & Deliveries reached? Yes --------- See&Edit: 50%Review/2nd Reviewer (E) | X |
| Final Review | Objectives & Deliveries reached? Yes/No (To update) --------- Which status has been reached? Season of Code - (To update) --------- See&Edit: Final Review/SelfEvaluation (B) | Objectives & Deliveries reached? Yes/No (To update) --------- Which status has been reached? Season of Code - (To update) --------- See&Edit: Final Review/1st Reviewer (D) | Objectives & Deliveries reached? Yes/No (To update) --------- Which status has been reached? Season of Code - (To update) --------- See&Edit: Final Review/2nd Reviewer (F) | X |
Contents |
Welcome to the OWASP Backend Security Project
OWASP Backend Security Project is the first OWASP project entirely dedicated to the core of the Web Applications.
OWASP Backend Security Project wiki v0.1
Objectives
The aim of this OWASP project is to create a new guide that could allow developers, administrators and testers to comprehend any parts of the security process about back-end components that directly communicate with the web applications as well as databases, ldaps, payment gateway, and much more.
Join the project
To reach this purpose our community needs more Information Technology security professionals as possible to create a new point of reference for the entire OWASP community. Although these information are briefly discussed in the others OWASP projects the community would like to collect those already existing information and creating new sections related to the not mentioned back-end components.
OWASP Backend Security Project is composed of three sections: security development, security hardening, security testing.
Below are described the main professional skills requested:
- Web Developers
- System Administrators
- DB Administrators
- Penetration Testers
Below are described the main technology skills requested:
* Programming Languages
- JAVA
- PHP
- .NET
* Database Server
- ORACLE
- SQL Server
- DB2
- MySQL
- PostgreSQL
* LDAP Server
- OpenLDAP
- iPlanet LDAP
- Active Directory
* Other back-end components
OWASP Backend Security Project needs of the OWASP community and new volunteers to become a new point of reference about the Web Application Security and a new OWASP success.
Mailing List
https://lists.owasp.org/mailman/listinfo/owasp-backend-security
owasp-backend-security@lists.owasp.org
News
06/19/2008 - 1st OWASP Summer of Code 2008 deadline: 29th June 2008.
04/18/2008 - OWASP Backend Security Project will participate to the next OWASP Summer of Code 2008.
01/31/2008 - OWASP Backend Security Project will be presented at OWASP Day 2 organized by OWASP-Italy (Rome, University "La Sapienza" Via Salaria, 113).
01/31/2008 - 1st dead line: (03/31/2008) - We need to collect the existing information in other areas of the OWASP wiki for the similar categories.
Contacts
carlo.pelliccioni <at> gmail.com
This category currently contains no articles or media.
