Blog

Updates, insights, and commentary from the OSA community. Tracking the evolution of security architecture since 2008.

17 April 2009 • Spinoza

New data security pattern

I finally got round to finishing the draft of the data security pattern.

16 April 2009

OSA presentation at OWASP chapter meeting

At the recent OWASP Switzerland chapter meeting, I have presented OSA. We have got some positive and constructive feedback and look forward to more contributors :-). Most importantly we have heard again that also for security architecture pattern applies: "the more the merrier"

25 January 2009 • Spinoza

ISO and COBIT mapping

I've spent the last couple of days adding ISO17799 and COBIT mappings to the controls catalog. If you check any of the controls you will now see the mapping details at the bottom. You can also search for ISO or COBIT references using the search function in the menu bar to return a list of controls if you want to do a reverse lookup!

18 January 2009

Looking for contributors for the secure development pattern

We just started the discussion on secure development lifecycle.

12 January 2009

OSA News January 09

Please find a short summary of recent changes on the Open Security Architecture website:

19 December 2008 • Phaedrus

Cloud pattern finalised

Take a look at the cloud pattern in the pattern library (library/patternlandscape/251-pattern-cloud-computing)

26 November 2008 • Phaedrus

Cloud Computing research

I've been spending time researching the Cloud Computing pattern in the last week or so and I must say I am learning a lot. I've been a big fan of Nick Carr (http://www.roughtype.com/) since I saw him speak about 3 years ago, and have long appreciated the possible financial benefits for large organizations of a utility model for computing. However I have the same feeling about some of the distributed technologies that are starting to spring up as I had when I first encountered the Internet back in '93. In other words I think we are in for a really big paradigm shift with a lot of innovation (and I'm not talking about Social networking!). Of course I could just be getting carried away with the hype but I think not, and this is why:

14 November 2008

New Pattern: Identity Management

We have recently promoted the identity managment pattern from draft to published.The area of identity management is vast and hence this single pattern can only be a high level overview.Further more detailed patterns could follow. Have a look at here: http://www.opensecurityarchitecture.org/cms/library/pattern_landscape/244-pattern-identity-management Looking forward to a lot of comments.

17 September 2008 • Spinoza

New icons

Started a thread on BB for updated icon set for 09_02 release (you can find the current set under the menu library|icon library). I've built some new icons that you can view and comment on. We've added some devices like USB memory stick, optical drive, and process options like awareness.

12 September 2008 • Spinoza

Metadata for images

I noticed from the site stats that a lot of our visitors are reaching us via Google Images, often for the SVG icon library that we have built from the Tango project base images. It's good to know that people are finding these useful, I certainly appreciate the combination of icons and Inkscape as a useful replacement for Visio!