Difference between revisions of "OWASP CLASP Project Roadmap"

From OWASP
Jump to: navigation, search
m (Undo revision 61093 by LaoloRaccc (Talk))
 
(10 intermediate revisions by 3 users not shown)
Line 1: Line 1:
The CLASP Project's overall goal is to...
+
==Goals==
 +
The OWASP CLASP Project's overall goal is to...
  
   Mission statement here
+
   Reinforce application security through a set of prescriptive and proactive
 +
  process components that are adaptable to any development model.
  
 
In the near term, we are focused on the following tactical goals...
 
In the near term, we are focused on the following tactical goals...
  
# one
+
# Porting all of the CLASP v1.2 materials to the OWASP wiki
# two
+
# Generating more introductory materials to help users get started with CLASP
# three
+
# Enhancing the vulnerability catalog with more information (descriptions, examples, etc.)
 +
 
 +
 
 +
==Current Tasks==
 +
* Add 'Activity Assessment View' stuff to each CLASP activity (Unassigned)
 +
* Add 'Coding Guidelines' from CLASP to stubbed wiki page (Unassigned)
 +
* Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Unassigned)
 +
 
 +
 
 +
==Ideas==
 +
* The [[:Category:CLASP Activity]] is redundant with [[:Category:OWASP CLASP Project]] and [[:Category:Activity]]. I suggest we remove it.
 +
** I added it since [[:Category:Activity]] has a few other items in addition to [[:Category:CLASP Activity]] (for example, [[Deployment]], [[Configuration]], etc.). My thought was that those are good things to have linked to a general 'Activity' category, but for CLASP, it's redundant and doesn't fit in to the overall picture since it's more high-level. Thus, it made sense to keep the CLASP activities collected in one place as well as mapping them up to the more general 'Activity' category. ([[User:Pravir Chandra|Pravir Chandra]])
  
Here are the current tasks defined to help us achieve these goals
 
  
* Get the Word doc downloads posted (Pravir)
 
* Add a proper Roadmap for the CLASP Project (Pravir)
 
* Add user for change notification after mail is working (Pravir)
 
* Add CLASP Categories for 'Roles' 'Activities' (Pravir)
 
* Add 'Activity Assessment View' stuff to each CLASP activity (???)
 
* Add 'Coding Guidelines' from CLASP to stubbed wiki page (???)
 
* Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Jeremy)
 
* Port OWASP Guide to Wiki (Weilin)
 
* [DONE] Add 'Role-Based View' stuff from CLASP to Wiki (Jeremy)
 
* [DONE] Integrate 'CLASP resources' (principles, etc) stuff from CLASP to Wiki (Pravir)
 
* [DONE] Create a better OWASP CLASP Project page (Pravir)
 
  
 
[[Category:OWASP CLASP Project]]
 
[[Category:OWASP CLASP Project]]

Latest revision as of 09:47, 22 May 2009

Goals

The OWASP CLASP Project's overall goal is to...

 Reinforce application security through a set of prescriptive and proactive
 process components that are adaptable to any development model.

In the near term, we are focused on the following tactical goals...

  1. Porting all of the CLASP v1.2 materials to the OWASP wiki
  2. Generating more introductory materials to help users get started with CLASP
  3. Enhancing the vulnerability catalog with more information (descriptions, examples, etc.)


Current Tasks

  • Add 'Activity Assessment View' stuff to each CLASP activity (Unassigned)
  • Add 'Coding Guidelines' from CLASP to stubbed wiki page (Unassigned)
  • Add 'Vulnerability Use Cases' stuff from CLASP to Wiki (Unassigned)


Ideas