CREST launches OWASP Verification Standard (OVS) Program

Hello people, hope so you all are fabulous. If you have come on this webpost then definitely you are going to read the news. Do you know that “” is one of the best news websites where you can read news and stay updated about the affairs that are happening around the world. Right now, you get the content on our site related to trending affairs or stories. Being updated about the world is the best thing. You also have to be updated on each and everything that you do from morning to evening. Now, if we talk about news or trending stories, then you should watch or read news about trending topics.


CREST OVS will provide increased levels of assurance for application security assessments.

4 August 2022: CREST, the international not-for-profit, membership body representing the global cyber security industry, in consultation with the Open Web Application Security Project (OWASP), today announced the OWASP Verification Standard (OVS), a new quality assurance standard for the global application security industry. CREST OVS provides mobile and web app developers with greater security assurance and accredited organisations with enhanced access to the growing app development industry.

Rowland Johnson

Rowland Johnson

CREST OVS measures an organisation’s ability to execute and deliver assessments related to Level 1 and Level 2 of the OWASP Application Security Verification Standard (ASVS) and OWASP Mobile Application Security Verification Standard (MASVS). The ASVS and MASVS are OWASP projects which have been developed by the technical AppSec community to establish an open-source framework of security requirements needed to design, develop and test secure mobile and web applications.

“CREST OVS sets new standards in web and mobile application security to provide the buyers of application security assessment services with the highest level of assurance,” said Rowland Johnson, president of CREST. “The program has a series of explicit requirements that are designed to assess and harness the capabilities of an organisation, along with the skills and competencies of its individual security testers.”

CREST has been working closely with governments, regulators and multinational organisations focused on improving application security and it is expected that there will be high demand for both CREST OVS Mobile and CREST OVS Apps accredited services.

By leveraging ASVS and MASVS, CREST is formally supporting the open-source community to build and maintain global standards. “Both CREST and OWASP are non-profit organisations and we share a vision of increasing collaboration and open standards across the industry to build and maintain global cyber security standards,” added, Johnson.

Andrew van der Stock, Executive Director of the OWASP Foundation said: “This is a positive move for worldwide corporate and government adoption of the ASVS and MASVS projects. While the OWASP Top 10 risks project has built vital awareness of the importance of Application Security, I am excited to see the move towards using standards such as ASVS and MASVS to help organizations improve their application security in a structured and comprehensive way.”

To apply for the OVS program, companies need to be accredited to the CREST Penetration Testing discipline. Organisations must also demonstrate at corporate level that they can meet the program requirements to execute and deliver Level 1 and Level 2 ASVS and MASVS services.

In addition, all organisations will need to ensure that their teams have completed CREST’s Skilled Person Register and have each signed the CREST Code of Conduct. For more information on eligibility and how to become CREST OVS accredited, please visit the OVS pages on the CREST website.

CREST is an international not-for-profit, membership body representing the global cyber security industry. Its goal is to help create a secure digital world for all by quality assuring its members and delivering professional certifications to the cyber security industry.

CREST accredits almost 300 member companies, operating across dozens of countries, and certifies thousands of professionals worldwide. It works with governments, regulators, academe, training partners, professional bodies and other stakeholders around the world.

CREST members undergo a rigorous quality assurance process and employ competent professionals. Organisations buying their cyber security services from CREST members do so with confidence.

The Open Web Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. It includes:



    • Community-led open source software and documentation projects


    • Over 250+ local chapters worldwide


    • Tens of thousands of members


    • Industry-leading educational and training conferences



OWASP is an open community dedicated to enabling organizations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All OWASP projects, tools, documents, forums, and chapters are free and open to anyone interested in improving application security.


Source link

Hey guys, hope you read the content. I am feeling so blessed you have come on this website for reading trending Stories, recent Stories, etc. Stay connected with us and visit our website regularly for regular updates. You can also subscribe to our newsletter for email notification. Thank You guys for visiting our website. If you like the content of this website then don’t forget to tell your friends about this website. Don’t forget to subscribe our newsletter.

Leave a Reply

Your email address will not be published.

%d bloggers like this: