SAFETAG: Difference between revisions
(Created SAFETAG page) |
(→About: Added About Info) |
||
| Line 3: | Line 3: | ||
=About= | =About= | ||
<div style="float:left; margin-right:1.0em">[[File:SAFETAG.png|75px|center|SAFETAG Logo]]</div> | <div style="float:left; margin-right:1.0em">[[File:SAFETAG.png|75px|center|SAFETAG Logo]]</div> | ||
"The Security Auditing Framework and Evaluation Template for Advocacy Groups (SAFETAG) is a professional audit framework that adapts traditional penetration testing and risk assessment methodologies to be relevant to small, non-profit, human rights organizations based or operating in the developing world. | |||
SAFETAG is based upon a set of principles, activities, and best practices to allow digital security auditors to best support at-risk organizations by working with them to identify the risks they face, the next steps they need to take to address them, and guidance on how to seek out support in the future. | |||
SAFETAG audits are targeted at serving small scale civil society organizations or independent media houses who have strong digital security concerns but do not have the funds to afford a traditional digital security audit. The traditional security-audit framework is based upon the assumption that an organization has the time, money, and capacity to aim for as close to perfect security as possible. Low-income at-risk groups have none of these luxuries. These audits are both far too expensive, and produce output that is too complex for these organizations to act upon." | |||
'''Website:''' https://safetag.org/<br> | '''Website:''' https://safetag.org/<br> | ||
Revision as of 10:41, 11 December 2018
About
"The Security Auditing Framework and Evaluation Template for Advocacy Groups (SAFETAG) is a professional audit framework that adapts traditional penetration testing and risk assessment methodologies to be relevant to small, non-profit, human rights organizations based or operating in the developing world.
SAFETAG is based upon a set of principles, activities, and best practices to allow digital security auditors to best support at-risk organizations by working with them to identify the risks they face, the next steps they need to take to address them, and guidance on how to seek out support in the future.
SAFETAG audits are targeted at serving small scale civil society organizations or independent media houses who have strong digital security concerns but do not have the funds to afford a traditional digital security audit. The traditional security-audit framework is based upon the assumption that an organization has the time, money, and capacity to aim for as close to perfect security as possible. Low-income at-risk groups have none of these luxuries. These audits are both far too expensive, and produce output that is too complex for these organizations to act upon."
Website: https://safetag.org/
Read/Download SAFETAG: SAFETAG Overview (PDF), SAFETAG Full Guide (PDF)