Author Archives: ms

New Security Patterns book by Ed Fernandez: Foreword

The new book on Security Patterns is prepared for print. I’m happy that Ed chose me as shepherd for the book. I’ve just finished the Foreword: “Security is simple. We use a little bit of cryptography, add some firewalls and … Continue reading

Posted in Books, General | Leave a comment

Peter Sommerlad

Prof. Peter Sommerlad is director of IFS Institute for Software at FHO/HSR Rapperswil, Switzerland. Peter is co-author of the books POSA Vol.1 and Security Patterns and contributed to “97 things every programmer should know”. His goal is to make software … Continue reading

Posted in Who is Who | Leave a comment

Pattern Contributions at Conferences & Workshops

We are aware of the following contributions which focus on security (and somehow related) patterns. In order to reflect the evolution of security patterns they are presented in chronological order (most recent patterns first).

Posted in Patterns | Comments Off on Pattern Contributions at Conferences & Workshops

Security Patterns Foundations

Besides patterns, a lot of background and modeling research has been done. In this section, we publish such “meta” information which doesn’t present new patterns, but provides new insight about security patterns as engineering tool.

Posted in Foundations | Leave a comment

Dr. Eduardo B. Fernandez

Ed has pioneered the field of Security Patterns. He frequently publishes patterns and books on our beloved topic. Ed’s bio on his Website: “Since 1984 I have been a Professor of Computer Science and Engineering at FAU. Before that, I … Continue reading

Posted in Who is Who | Leave a comment

Welcome to

The main objective of this Website is to bring together security patterns enthusiasts, to provide a forum for security patterns and to improve the overall work on security patterns. In the past, we have identified security patterns as a very … Continue reading

Posted in General | Leave a comment

A Survey on Security Patterns

Abstract:┬áSecurity has become an important topic for many software systems. Security patterns are reusable solutions to security problems. Although many security patterns and techniques for using them have been proposed, it is still difficult to adapt security patterns to each … Continue reading

Posted in Foundations | Leave a comment

Understanding Security with Patterns

Nice introduction to Security Patterns: Tutorial T39 @ OOPSLA 2006 by Peter Sommerlad.

Posted in Presentations | Leave a comment

Security Patterns: Integrating Security and Systems Engineering

Most security books are targeted at security engineers and specialists. Few show how to build security into software. None breakdown the different concerns facing security at different levels of the system: the enterprise, architectural and operational layers. Security Patterns addresses … Continue reading

Posted in Books | Leave a comment

Best Practices and Strategies for J2EE, Web Services, and Identity Management

A group at SUN (Chris Steel, Ramesh Nagappan, Ray Lai – boys, we miss SUN Microsystems!) offers a set of architectural security patterns for J2EE-based applications, Web services and identity management. They have an outline of their patterns available. See … Continue reading

Posted in Books | Leave a comment