lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <578F85C4-E08C-11D8-83FB-000A9591DA56@whitehatsec.com>
Date: Wed, 28 Jul 2004 04:50:37 -0700
From: Jeremiah Grossman <jeremiah@...tehatsec.com>
To: bugtraq@...urityfocus.com
Subject: WASC Releases Web Security Threat Classification



Web Application Security Consortium Establishes Official Charter and 
Delivers Web Security Threat Classification

Group Promotes Industry Standard Terminology of Web Security Threats

Web Application Security Consortium (WASC), a group dedicated to 
developing and promoting "security standards of best practice" for the 
World Wide Web, announced the completion of the WASC official Charter 
and Web Security Threat Classification.

The Web Security Threat Classification is a cooperative effort to 
clarify and organize the threats to the security of a Web site. The 
members of the WASC created this project to develop and promote 
industry standard terminology for describing these issues. With the 
creation of the Web Security Threat Classification, application 
developers, security professionals, software vendors and compliance 
auditors have the ability to access a consistent language for Web 
security related issues.

Our first release of the Threat Classification document is available 
for download here:

http://www.webappsec.org/threat.html


Regards,

Jeremiah Grossman
WASC Spokesman




Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ