Difference between revisions of "Funds available for OWASP Projects"

From OWASP
Jump to: navigation, search
(Source Code Review OWASP Projects(5k))
 
(18 intermediate revisions by 6 users not shown)
Line 1: Line 1:
 
This page contains details about funds available to OWASP projects.
 
This page contains details about funds available to OWASP projects.
  
The sponsorship model is different from the one used in [[OWASP Autumn Of Code 2006|AoC 06]] and [[OWASP Spring Of Code 2007|SpoC 007]] since these are cases where specific money (throughout out the year) has been allocated to OWASP projects (for example by new OWASP members or by companies/organizations with specific requirements/projects)  
+
The sponsorship model is different from the one used in [[OWASP Autumn Of Code 2006]], [[OWASP Spring Of Code 2007]], [[OWASP Summer of Code 2008]] and [[OWASP Season of Code 2009]] since these are cases where specific money (throughout out the year) has been allocated to OWASP projects (for example by new OWASP members or by companies/organizations with specific requirements/projects)  
  
 +
== Available Projects/THIS FIELD IS UNDER REVIEW ==
 +
 +
OWASP is requesting proposals for the following OWASP projects:
 +
* Under review.
  
 +
== How to Apply ==
 +
If you are interested, email your proposal to Dinis.cruz at owasp.net including responses to the following items:
  
== ORG - OWASP Site Generator (5k) ==
+
* Your educational and professional background
 +
* Application security experience and accomplishments
 +
* Participation and leadership in open communities
 +
* The opportunity, challenges, issues or need your proposal addresses
 +
* Milestones and objectives
 +
* Specific activities and who will carry out these activities
 +
* Specific deliverables and a rough project schedule so we can track progress
 +
* Long-term vision for the project
 +
* Any other reasons why you and your project should be selected
  
* '''Project description:''': Continue development of [[OWASP SiteGenerator|Site Generator]], write new vulnerabilities, work on new dynamic engine, document findings
+
The proposed project delivery time is 3 months and the payment will be made in two 50% parts (one at the 50% mark and one at 100% mark (i.e. project completed))
* '''Funds available:''': 5,000 USD
+
* '''Sponsor''': Spy Dynamics, Cenzic
+
  
 
+
OWASP will also put the applicants in touch with the contacts at the sponsoring companies so that the brief and project deliverables can be finalized.
== OWASP Corporate Application Security Rating Guide (3k) ==
+
 
+
* '''Project description:''': As per https://www.owasp.org/index.php/OWASP_Corporate_Application_Security_Rating_Guide, finalize criteria, perform a research to selected companies and publish a report with the results
+
* '''Funds available:''': 3,000 USD
+
* '''Sponsor''': Cenzic
+
 
+
 
+
== Questions for SANS's SSI (5k) ==
+
 
+
* '''Project description:''': Write questions for JAVA SANS's Software Security Institute certification exams(http://www.sans-ssi.org/). The candidate will need to write the questions and answers and must be a very knowledgeable and respected member of the Java security institute. For obvious reasons only 10% to 20% of the questions created will be disclosed to the OWASP community, with the remaining used in the certification's exams.
+
* '''Funds available:''': 5,000 USD
+
* '''Sponsor''': SANS
+
 
+
 
+
== Source Code Review OWASP Projects(5k) ==
+
 
+
* '''Project description:''': Use Fortify's source code scanning engine to scan OWASP projects coded in JAVA. The main objective of this project will be to create the workflow required to make this service a mandatory step on the OWASP Software Development Lifecycle (i.e. the tools developed and published via OWASP projects).
+
* '''Funds available:''' 5,000 USD
+
* '''Sponsor''': Fortify
+

Latest revision as of 11:56, 10 November 2009

This page contains details about funds available to OWASP projects.

The sponsorship model is different from the one used in OWASP Autumn Of Code 2006, OWASP Spring Of Code 2007, OWASP Summer of Code 2008 and OWASP Season of Code 2009 since these are cases where specific money (throughout out the year) has been allocated to OWASP projects (for example by new OWASP members or by companies/organizations with specific requirements/projects)

Available Projects/THIS FIELD IS UNDER REVIEW

OWASP is requesting proposals for the following OWASP projects:

  • Under review.

How to Apply

If you are interested, email your proposal to Dinis.cruz at owasp.net including responses to the following items:

  • Your educational and professional background
  • Application security experience and accomplishments
  • Participation and leadership in open communities
  • The opportunity, challenges, issues or need your proposal addresses
  • Milestones and objectives
  • Specific activities and who will carry out these activities
  • Specific deliverables and a rough project schedule so we can track progress
  • Long-term vision for the project
  • Any other reasons why you and your project should be selected

The proposed project delivery time is 3 months and the payment will be made in two 50% parts (one at the 50% mark and one at 100% mark (i.e. project completed))

OWASP will also put the applicants in touch with the contacts at the sponsoring companies so that the brief and project deliverables can be finalized.