Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Retire obfuscation and reverse engineering "controls" #2

Closed
vanderaj opened this issue Nov 17, 2014 · 0 comments
Closed

Retire obfuscation and reverse engineering "controls" #2

vanderaj opened this issue Nov 17, 2014 · 0 comments
Assignees
@vanderaj
Milestone
3.0

Comments

@vanderaj
Copy link
Member

Issue: ASVS has always been a "20% of the controls to cover 80% of the issue" standard. Reverse engineering and obfuscation are not controls, but delaying tactics for software that fits into a tiny corner case. Additionally, as an open standard, any control that requires a significant investment in third party tools to be compliant is unacceptable.

Remove all references to reverse engineering and obfuscation.
Align 17.7 with the results of OWASP Top M10 2015
Retire 17.11
Retire 17.25

To allow easy transition to 2.1, 17.11 and 11.25 should simply be blanked out to avoid a renumbering effort on the part of ASVS users and tools.
@vanderaj vanderaj self-assigned this Nov 17, 2014
@vanderaj vanderaj added this to the 2.1 milestone Nov 17, 2014
@vanderaj vanderaj added the bug label Nov 17, 2014
@vanderaj vanderaj modified the milestone: 2.1 Nov 21, 2014
@vanderaj vanderaj modified the milestones: 2.1, 3.0 Jul 10, 2015
SPoint42 pushed a commit to SPoint42/ASVS that referenced this issue Jul 29, 2020
@chamorin @dhz1138
Reviewed all french translation (OWASP#2)
b709ee1 
* Removed mitre urls
* Requested changes

Co-authored-by: Charles Morin <charles.a.morin@desjardins.com>
@jmanico jmanico mentioned this issue Mar 11, 2021
Closed
tghosth added a commit that referenced this issue Sep 4, 2022
@tghosth
Translation de v3 (#2)
652294f 
* Fixing accented characters in V3

* Add missing special character for de

* Create de outputs

* Create de outputs
@danielcuthbert danielcuthbert mentioned this issue Sep 14, 2022
Closed
lfservin pushed a commit to lfservin/ASVS that referenced this issue Sep 15, 2022
@tghosth
Translation de v3 (OWASP#2)
508f2b2 
* Fixing accented characters in V3

* Add missing special character for de

* Create de outputs

* Create de outputs
@ryarmst ryarmst mentioned this issue May 6, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@vanderaj vanderaj

Labels
None yet
Projects
None yet
Milestone
3.0
Development

No branches or pull requests
1 participant
@vanderaj