Difference between revisions of "OWASP CLASP Project Roadmap"

From OWASP
Jump to: navigation, search
m (CLASP Project Todo List moved to OWASP CLASP Project Roadmap)
m (Undo revision 61093 by LaoloRaccc (Talk))
 
(15 intermediate revisions by 3 users not shown)
Line 1: Line 1:
* Add CLASP Categories for 'Roles' 'Activities' (Pravir)
+
==Goals==
* Add 'Activity Assessment View' stuff to each CLASP activity (Pravir)
+
The OWASP CLASP Project's overall goal is to...
* Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Jeremy)
+
 
* Port OWASP Guide to Wiki (Weilin)
+
  Reinforce application security through a set of prescriptive and proactive
* [DONE] Add 'Role-Based View' stuff from CLASP to Wiki (Jeremy)
+
  process components that are adaptable to any development model.
* [DONE] Integrate 'CLASP resources' (principles, etc) stuff from CLASP to Wiki (Pravir)
+
 
* [DONE] Create a better OWASP CLASP Project page (Pravir)
+
In the near term, we are focused on the following tactical goals...
 +
 
 +
# Porting all of the CLASP v1.2 materials to the OWASP wiki
 +
# Generating more introductory materials to help users get started with CLASP
 +
# Enhancing the vulnerability catalog with more information (descriptions, examples, etc.)
 +
 
 +
 
 +
==Current Tasks==
 +
* Add 'Activity Assessment View' stuff to each CLASP activity (Unassigned)
 +
* Add 'Coding Guidelines' from CLASP to stubbed wiki page (Unassigned)
 +
* Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Unassigned)
 +
 
 +
 
 +
==Ideas==
 +
* The [[:Category:CLASP Activity]] is redundant with [[:Category:OWASP CLASP Project]] and [[:Category:Activity]]. I suggest we remove it.
 +
** I added it since [[:Category:Activity]] has a few other items in addition to [[:Category:CLASP Activity]] (for example, [[Deployment]], [[Configuration]], etc.). My thought was that those are good things to have linked to a general 'Activity' category, but for CLASP, it's redundant and doesn't fit in to the overall picture since it's more high-level. Thus, it made sense to keep the CLASP activities collected in one place as well as mapping them up to the more general 'Activity' category. ([[User:Pravir Chandra|Pravir Chandra]])
 +
 
 +
 
 +
 
 +
[[Category:OWASP CLASP Project]]

Latest revision as of 09:47, 22 May 2009

Goals

The OWASP CLASP Project's overall goal is to...

 Reinforce application security through a set of prescriptive and proactive
 process components that are adaptable to any development model.

In the near term, we are focused on the following tactical goals...

  1. Porting all of the CLASP v1.2 materials to the OWASP wiki
  2. Generating more introductory materials to help users get started with CLASP
  3. Enhancing the vulnerability catalog with more information (descriptions, examples, etc.)


Current Tasks

  • Add 'Activity Assessment View' stuff to each CLASP activity (Unassigned)
  • Add 'Coding Guidelines' from CLASP to stubbed wiki page (Unassigned)
  • Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Unassigned)


Ideas