OpenSAMM » presentation

Resources posted and SAMM in XML

Pravir Chandra — Sun, 22 Aug 2010 05:30:03 +0000

Over the course of the past year, many people have contributed resources related to SAMM (via the mailing list primarily) and we haven’t had them in an easy-to-find place. Well, that’s all changed now. The new Download page now has all the resources neatly organized for people to download, use, and extend. If you have created any other resources (or made improvements to any that we have posted) please to ping the mailing list with the updates and we’ll link them from this page.

One of the other new items is a full XML version of the SAMM 1.0 framework document. It includes all the content from the whole SAMM document, so now it should be a lot simpler to build tools and automation around the model itself (not to mention making translations into other languages a lot simpler).

Browse the model online

Pravir Chandra — Mon, 04 May 2009 19:43:44 +0000

Over the weekend, we managed to get large parts of the SAMM content imported into the OWASP wiki so that folks can browse the model online. This will also support community contributions for additional material that maps under the SAMM activities. It’ll also help for folks making mappings to existing regulatory standards.

The official SAMM releases going forward will still be made in PDF form for mass distribution. The wiki version will syndicate some of the content for easy online referencing, but the PDF version is still the authoritative source of SAMM information.

Check it out on the OWASP wiki.

OWASP Podcast about SAMM

Pravir Chandra — Thu, 26 Mar 2009 01:14:17 +0000

I recorded an OWASP Podcast episode with Jim Manico and it just went live. We discuss the new SAMM release, some of the project’s history, and, of course, some other favorite projects of mine. Jim is a great host and I can’t wait to get invited for another!

SAMM Presentation at OWASP NYC 2008

Pravir Chandra — Thu, 25 Sep 2008 18:19:11 +0000

As the project lead for the OWASP CLASP Project, I was invited to speak at the OWASP NYC conference to introduce SAMM and discuss details with attendees. The conference and my talk had a great turn out, and I was impressed with the amount of feedback received. Both slides and video from my presentation (below) are online as well as from all the talks at the conference.