Security Engineering for Large Scale Distributed Applications

Konstantin Beznosov

16 October 2005

Abstract: The way security mechanisms for large-scale distributed applications are engineered today has a number of serious drawbacks. As a result, secure distributed applications are a) very expensive and error-prone to build, deploy, and integrate, b) complex and error-prone to operate and administer, and still c) far from being adequate to the real-life problems. Drawing on my academic and industrial experiences, I will discuss several recently invented techniques that can improve engineering of security mechanisms for distributed systems. I will specifically talk about improving those mechanisms that are based on the decision-enforcement paradigm, and will use access control as a representative example. I will also briefly describe other relevant projects at the Department of Electrical and Computer Engineering, the University of British Columbia.

Keyword(s): distributed systems security ; decision-enforcement paradigm ; access control ; Engineering Security Mechanisms

Published in: Konstantin Beznosov, "Security Engineering for Large Scale Distributed Applications," Talk given at severall organizations. See the abstract for details., 2003. :

The record appears in these collections:
Engineering Security Mechanisms

 Record created 2009-04-27, last modified 2013-05-22

Transfer from CDS 0.99.7:
Download fulltext

Rate this document:

Rate this document:
(Not yet reviewed)