Security Patterns
Jan van Prooijen - Security Patterns
A way to design solution architectures

Home

 
What are security patterns? Security patterns are way to design a infrastructure using building blocks, called patterns. These patterns are building blocks for the design. A pattern is a generic solution for a specific problem. A good designed pattern is a solution for a well defined problems. Most problems (or challenges if you prefer) may be categorized according to its attributes. Based on these attributes a certain general solution could be applied. If an organization knows its needs, it may design its architecture with these building blocks of patterns. Patterns itself are nothing new, although they are less common for an IT infrastructure. Usually you will find patterns in combination with software design. In this project the project team built upon the pattern template of the Open Group with the addition of some attributes to make them more suitable for our goal. What is special about these patterns? The PvIB security patterns makes the connection between the higher level information security functionality and the practical solutions In general architecture models give you the desired information security functionality, but they lack the clear connections with the practical solution. That part depends upon the design skills of the architect. This model of security patterns should resolve this issue. By using the model the security architect can make his infrastructure design in a transparent way. the transparentness of the method will make it easier to explain
Security Patterns

Patterns

More about patterns in general, see the page of the Open Group.

http://www.opengroup.org/public/arch/p4/patterns/patterns.htm

And the dedicated page at the site of the Hillside Group

http://hillside.net/patterns/

Project of the PvIB

This page describes the results or the product of a project of the PvIB. The PvIB (short for: Platform for Information Security) is a Dutch association for Information Security. I was a member of the project team.


Project goal:

- an architectural design method based on information security functions

- a compact set of patterns describing a infrastructure architecture from a security point of view

maandag 18 maart 2013
Document to download, all in Dutch, but the drawings look great: Security Patterns: IB Patronen PvIB 1.0_11 jan 2013 definitief.pdf Slides of the presentation at PvIB-meeting: Informatieavond Patronen Definitief.pdfhttp://www.janvanprooijen.nl/Downloads/IB%20Patronen%20PvIB%201.0_11%20jan%202013%20definitief.pdfhttp://www.janvanprooijen.nl/Downloads/Informatieavond%20Patronen%20Definitief.pdfhttp://www.janvanprooijen.nl/Downloads/Informatieavond%20Patronen%20Definitief.pdfshapeimage_8_link_0shapeimage_8_link_1shapeimage_8_link_2