[转载]Web Application Security Consortium(一个研究脚本安全的站)
信息来源:邪恶八进制信息安全团队([url]www.eviloctal.com[/url])这个站看起来 学术气氛还不错呢
[url]http://www.webappsec.org/[/url]
Mission
To increase the general awareness and clear understanding as to the importance of web application security.
To identify, develop, adopt and advocate standards for mitigating web application security concerns.
Charter
The success of Web Application Security Consortium (WASC) will be determined by the membership and its advocacy of the charter. Organizational Members are key to success, since it is they who essentially define the market and create, or inhibit, general awareness and understanding of our industry. Without consensus from Organizational Members, and thus the industry, there is little chance of a clear universal message consumers can rely upon in order to engage those in the web application security space. WASC does not advocate any specific vendor or solution, the aim of the consortium is to broadly increase consumer understanding of web application security issues and how they affect today's organizations.
What WASC does do:
Create an open forum for the creation, discussion and dissemination of knowledge pertaining to web application security
Educate the market regarding web application security related matters
Create a vendor neutral champion/voice of the web application security industry
What WASC does not do:
WASC does not advocate vendor specific technologies, services or solutions
WASC does not speak on anyone's behalf, but rather on the industry's behalf as an agnostic champion of web application security related matters
Project Focus
WASC projects focus on creating common awareness and understanding of web application security issues. It is important as an industry that there is a common language we speak, common standards that are agreed upon, and a unified position on web application security awareness in order to facilitate adoption by the market in general.
In order to prevent the creation of academic discussions with no outcome for the market, it is critical that Organizational Members not only participate in these projects, but also must support particular deliverables/outcomes. Certain projects may be specified as
页:
[1]