Open Reference Architecture for Security and Privacy


This document is a living document! Collaboration is fun, so help us by contributing (See section contributing)! Join the ROI movement!



A stable version of this publication (2019 edition!) is also available as hard-copy, see here. Support this work and buy a hardcopy! The latest version of this Open Referene Architecture is always available online at

This reference architecture contains open reusable information to empower you to solve or mitigate security or privacy risks. This reference architecture is created to ease the process to create security and privacy solutions. It is time to stop reinventing the wheel when it comes down to creating security and privacy solutions. Build your specific solution on proven solutions. Making use of existing solutions is a far better investment in time and quality.

The reference architecture is not just another security book. Since libraries and book stores are filled with decent books on security and privacy this book is all about using and reusing existing security and privacy solutions to simplify the process to solve your urgent use case.

(c) 2015-2021 Maikel Mardjan and Asim Jahan.

Published by the Business Management Support Foundation, The Netherlands.

All trademarks, trade names, product names and logos appearing in this report are the property of their respective owners.


This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. Use of these materials is permitted only in accordance with license rights granted. Materials provided “AS IS”; no representations or warranties provided. User assumes all responsibility for use, and all liability related thereto, and must independently review all materials for accuracy and efficacy.


Architecture Essentials