The SESS'05 held in St. Louis, MO on May 15-16 was intended to be a venue to discuss techniques for building and validating secure applications. Workshop attendees (about 40 people) came both from the software engineering and the security community, raising a fruitful discussion and exchange of ideas and problem perspectives. Speaker presentations were organized in three sessions. The first session addressed security at the architectural level of applications. Demir et~al. [1] proposed an aspect oriented architectural description language to handle security features in distributed systems. Rits et~al. [2] described their approach for inspecting (in an aspect oriented fashion) access control policies in multi-layer applications. Banerjee et~al.[3] related trustworthiness of complex applications to their architectural parts: components, connectors, and configurations. Ren et~al.[4] suggested that