Secure Application Development
Home faculty program location registration subscribe related past events	Security architectures Learning objectives to understand what a security architecture is to identify some useful security architecture patterns Overview This session is a workshop. Participants are invited to actively engage in the definition of the concept 'security architecture' and identification of pertinent architectural patterns. Security architecture is seen as an emergent property rather than an up-front artefact. Hence the session finds solutions for specific problems and then reflects on these solutions and attempts to factor out common elements - these elements, or patterns, are what we perceive as the (security) architecture of a system. The session starts by eliciting the security problems participants care about and forming affinity groups around them. Next, a system that one of the group members is working on is chosen as a case study and groups look for ways of mitigating the risks. Each group gets 5 minutes to present their proposal in a plenary session. After that, other participants are invited to find flaws in the proposal and suggest improvements. Under the guidance of the session organizer, participants mine the architectures presented for patterns. This activity aims to lay bare the principles underlying defensive techniques.

Secure Application Development

Security architectures

Learning objectives

to understand what a security architecture is
to identify some useful security architecture patterns

Overview

This session is a workshop. Participants are invited to actively engage in the definition of the concept 'security architecture' and identification of pertinent architectural patterns.

Security architecture is seen as an emergent property rather than an up-front artefact. Hence the session finds solutions for specific problems and then reflects on these solutions and attempts to factor out common elements - these elements, or patterns, are what we perceive as the (security) architecture of a system.

The session starts by eliciting the security problems participants care about and forming affinity groups around them.

Next, a system that one of the group members is working on is chosen as a case study and groups look for ways of mitigating the risks.

Each group gets 5 minutes to present their proposal in a plenary session. After that, other participants are invited to find flaws in the proposal and suggest improvements. Under the guidance of the session organizer, participants mine the architectures presented for patterns. This activity aims to lay bare the principles underlying defensive techniques.