Loading...

Security Patterns in Practice: Designing Secure Architectures Using Software Patterns

ISBN: 978-1-119-97048-4

June 2013

584 pages

Description

Everything you need to build sophisticated security controls into every phase of your software lifecycle

In today’s world of mobile networking and remote sensing, cloud computing and web interfacing, applications and the networks they run on have never been more complex. Nor have they ever been more vulnerable to attack.

Despite the vast amounts spent each year on system security, the number and scope of attacks on websites and databases worldwide continues to escalate.

Clearly, what’s needed is a more systematic approach to security that the piecemeal methodology followed since the early 1990s—a holistic, case-based approach based on best practices and proven solutions to the full array of modern security threats.

Written by one of the world’s leading experts on the subject, Security Patterns in Practice supplies you with just such approach.

With the help of numerous, real-world case studies, author Eduardo B. Fernandez show you how to incorporate security into every phase of the software lifecycle—from concept to design to implementation and reengineering—using security patterns.

Dr. E. B. Fernandez also supplies you with a vast catalog of up-to-date security patterns—along with detailed implementation advice and descriptions in UML—covering the full range of modern security issues, including:

  • Identity management
  • Access control
  • Network security and web services security
  • Cloud computing security
  • Authentication
  • Process management
  • Web services cryptography
  • Building secure architecture

Security Patterns in Practice arms you with everything you need to confidently develop or reengineer the most secure applications possible, without having to become a security expert.

About the Author
Eduardo B. Fernandez (FL, USA - www.cse.fau.edu/~ed) is a professor in the Department of Computer Science and Engineering at the Florida Atlantic University in Boca Raton, Florida. Ed has published numerous papers and four books on authorization models, object-oriented analysis & design, and security patterns. He has lectured all over the world at both academic and industrial meetings. His current interests include security patterns, web services, cloud computing security and fault tolerance. He holds a MS degree in Electrical Engineering from Purdue University and a Ph.D. in Computer Science from UCLA. Ed is an active consultant for industry, including assignments with IBM, Allied Signal, Motorola, Lucent, and others.