"Security design patterns - An approach to build a secure system" by Dat Tien Le
Dat Tien Le is a PhD student in the ConSeRNS group under the supervision of Audun Jøsang, Einar Broch Johnsen, and Frank Eliassen.
In this talk, we will about the concept of design patterns but applied to security problems. Just think of how popular the concept of design pattern has become, i.e., look at the classic GOF book that won the Dahl-Nygaard prize. Now we see this applied to security problems. (See Abstrat in the long description.)
"The activity of the secure system development can be supported by reusing extensive knowledge accumulated about security in the form of security patterns. However, the attention is not paid enough to the approach as it lies in the boundary of various fields and lose the focus of mainstream research. The presentation will walk through the definition of security design patterns, where to find and how to apply it to your design with a case study of a real q-mail system architecture"
Material on which the talk is based:
- James Walden, “Secure design patterns”,
- Chris Steel, Ramesh Nagappan and Ray Lai, "Core Security Patterns".
- MunawarHafiz, Ralph Johnson and Raja Afandi, "Security architecture of qmail"
- Nobukazu Yoshioka, Hironori Washizaki and Katsuhisa Maruyama, "A survey on security patterns".