OWASP Projects Portal Launch!
Jason Li
Global Projects Committee
jason.li@owasp.org
OWASP
AppSec USA 2011
Copyright © The OWASP Foundation
Permission is granted to copy, distribute and/or modify this document
under the terms of the OWASP License.
The OWASP Foundation
http://www.owasp.org
The Prologue
OWASP Projects are:
Open Source
Freely Available
Anyone Can Start
Anyone Can Contribute
Anyone Can Use
Documentation, Tools, Code
Hugely successful - over 140 projects!!
OWASP
2
The Problem
OWASP
3
The Vision
Provide a way to
enable:
Consumers to find
projects of value and
relevance
Community members
to provide feedback to
leaders
Contributors to be
recognized for work
GPC to support and
promote projects
Find
Feedback
Fame
Foundation
OWASP
4
The Path
Partnered w/ Geeknet (creators of SourceForge)
by
OWASP Neighborhood to house metadata about
projects
SourceForge infrastructure will be available to
OWASP Projects
OWASP
5
The Reason
Summary Page
 (Enables users to find projects of
value and relevance)
Reviews feature
 (Enables community members to
provide feedback to leaders)
Tracking / Plugins
 (Enables contributors to be
recognized for work)
Metadata Repository
 (GPC to support and promote
projects)
OWASP
6
The Cool Stuff
Incubator, Labs, Flagship, Archive
Enables users to distinguish developing projects from
mature ones
Entirely Community Driven
Open review system drives:
 Elevation process
 Benefits for projects (e.g. graphic design, code signing, etc)
 Promotion and visibility
OWASP
7
The Timeline
September 2011
Launch Day!
OWASP
8
The Timeline
September 23rd, 2011 (AppSec USA)
Call for volunteers (five projects so far!)
January 1st 2012 (New Year’s)
Current projects inventory metadata migrated
First batch of volunteer projects go live
July 13th, 2012 (AppSec EU)
All new projects go automatically through portal
General Availability
OWASP
9
The End
OWASP
10