Security Patterns are a great reference for building secure software, but they are mostly very abstract and ignore technologies like AOP, frameworks and libraries. Also, there are many patterns out there and it's hard to find the right ones. In this session you will see the common patterns adopted with current technologies and and select through practical experiences.
Since the beginning of J2EE Mike has worked on several enterprise development projects and started using Spring shortly after the first release. He has deep knowledge about making simple, transparent and powerful security solutions with tools like Spring Security (Acegi) and AspectJ. Besides this, he has implemented several Single Sign On solutions for customers using Kerberos and JA-SIG CAS. He is currently writing the first book about Spring Security (in German).
