Difference between revisions of "OWASP CLASP Project Roadmap"

From OWASP
Jump to: navigation, search
m (Undo revision 61093 by LaoloRaccc (Talk))
 
(13 intermediate revisions by 3 users not shown)
Line 1: Line 1:
The CLASP Project's overall goal is to...
+
==Goals==
 +
The OWASP CLASP Project's overall goal is to...
  
   Mission statement here
+
   Reinforce application security through a set of prescriptive and proactive
 +
  process components that are adaptable to any development model.
  
 
In the near term, we are focused on the following tactical goals...
 
In the near term, we are focused on the following tactical goals...
  
# one
+
# Porting all of the CLASP v1.2 materials to the OWASP wiki
# two
+
# Generating more introductory materials to help users get started with CLASP
# three
+
# Enhancing the vulnerability catalog with more information (descriptions, examples, etc.)
  
Here are the current tasks defined to help us achieve these goals
 
  
* Add CLASP Categories for 'Roles' 'Activities' (Pravir)
+
==Current Tasks==
* Add 'Activity Assessment View' stuff to each CLASP activity (Pravir)
+
* Add 'Activity Assessment View' stuff to each CLASP activity (Unassigned)
* Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Jeremy)
+
* Add 'Coding Guidelines' from CLASP to stubbed wiki page (Unassigned)
* Port OWASP Guide to Wiki (Weilin)
+
* Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Unassigned)
* [DONE] Add 'Role-Based View' stuff from CLASP to Wiki (Jeremy)
+
 
* [DONE] Integrate 'CLASP resources' (principles, etc) stuff from CLASP to Wiki (Pravir)
+
 
* [DONE] Create a better OWASP CLASP Project page (Pravir)
+
==Ideas==
 +
* The [[:Category:CLASP Activity]] is redundant with [[:Category:OWASP CLASP Project]] and [[:Category:Activity]]. I suggest we remove it.
 +
** I added it since [[:Category:Activity]] has a few other items in addition to [[:Category:CLASP Activity]] (for example, [[Deployment]], [[Configuration]], etc.). My thought was that those are good things to have linked to a general 'Activity' category, but for CLASP, it's redundant and doesn't fit in to the overall picture since it's more high-level. Thus, it made sense to keep the CLASP activities collected in one place as well as mapping them up to the more general 'Activity' category. ([[User:Pravir Chandra|Pravir Chandra]])
 +
 
 +
 
 +
 
 +
[[Category:OWASP CLASP Project]]

Latest revision as of 09:47, 22 May 2009

Goals

The OWASP CLASP Project's overall goal is to...

 Reinforce application security through a set of prescriptive and proactive
 process components that are adaptable to any development model.

In the near term, we are focused on the following tactical goals...

  1. Porting all of the CLASP v1.2 materials to the OWASP wiki
  2. Generating more introductory materials to help users get started with CLASP
  3. Enhancing the vulnerability catalog with more information (descriptions, examples, etc.)


Current Tasks

  • Add 'Activity Assessment View' stuff to each CLASP activity (Unassigned)
  • Add 'Coding Guidelines' from CLASP to stubbed wiki page (Unassigned)
  • Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Unassigned)


Ideas