Re: [HASMAT] moving forward Thu, 02 September 2010 20:05 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id A44583A68AB for <>; Thu, 2 Sep 2010 13:05:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: 0.863
X-Spam-Status: No, score=0.863 tagged_above=-999 required=5 tests=[AWL=-1.300, BAYES_50=0.001, FH_RELAY_NODNS=1.451, HELO_MISMATCH_NET=0.611, RDNS_NONE=0.1]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id k0DuC-wfMEDo for <>; Thu, 2 Sep 2010 13:05:35 -0700 (PDT)
Received: from (unknown []) by (Postfix) with SMTP id AD95A3A680B for <>; Thu, 2 Sep 2010 13:05:34 -0700 (PDT)
Received: (qmail 62613 invoked by uid 1016); 2 Sep 2010 21:00:48 -0000
Message-ID: <>
Date: Thu, 2 Sep 2010 17:00:48 -0400 (EDT)
X-Mailer: ELM [version 2.5 PL8]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Subject: Re: [HASMAT] moving forward
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: HTTP Application Security Minus Authentication and Transport <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 02 Sep 2010 20:06:00 -0000

>>> -----Original Message-----
>>> From: [] On 
>>> Behalf Of Peter Saint-Andre
>>> Sent: Thursday, September 02, 2010 12:17 PM
>>> To: Kai Engert
>>> Cc:
>>> Subject: Re: [HASMAT] moving forward
>> > I wanted to propose "WebAppSec", but there's already 
>> That's a good group to reach out to. :) Is anyone here involved with 
>> those folks? Are there other such groups to be aware of?
> One of the Officers/Founders sits practically next to me.  I can definitely check with the WASC folks if they 
> are concerned about the name.  

Hello Hasmat,
I am one of the cofounders of 'The Web Application Security Consortium' ( and was recently
informed about this thread. Since this is a discussion about the name of your project it probably makes sense to pick 
something less generic; something that makes your unique cause stand out (for your benefit). As to what that name should be
I'm not going to step on anyone's toes as an outsider but I wanted to provide you with some common names/references
within the appsec space that you should be aware of. 

- OWASP ( Open 'Web Application Security Project'
- WASC ( The Web Application Security Consortium
- Appsec: Used by SANS for a conference ( as well as owasp (
- webappsec list: runs a mailing list called webappsec (
- The Web Security Mailing List: run by WASC ( also known as websecurity. 
  We were going to name it webappsec but didn't want to cause additional confusion :)

Feel free to ping me if you're debating related names and I can assist with letting you know if something
similar exists (I am well connected).

- Robert Auger
WASC Co Founder/Moderator of The Web Security Mailing List