Folks, The CAS AppSec WG met today and draft meeting notes are available in wiki: https://wiki.jasig.org/display/CAS/2013.03.19+CAS+AppSec+Working+Group+Call
A new public mailing list has been created for this group. This list will be used by the working group for open discussion, coordination, and collaboration. Anyone interested in participating or just following along with the public discussion in encouraged to join. https://wiki.jasig.org/display/JSG/cas-appsec A new private mailing list has also been created for those interested in actively participating in working group activities around vulnerability assessment. We've settled into bi-weekly conf calls on Tuesdays 2pm ET. If you are interested in joining the group please let me know. Near term goals seem to be shaping up around completing an Application Threat Model ala OWASP as well reviewing static and dynamic security scans. https://www.owasp.org/index.php/Application_Threat_Modeling Best, Bill -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
