Security Engineering for Large Scale Distributed Applications

Abstract

Copyright © 2002-2004 Konstantin Beznosovairplanes vs. cars � flying is fast � driving is slow � why isn’t everybody flying? 2 why aren't secure systems almost completely insecure, or “secure ” but � too expensive and error-prone to build � too complex to administer � inadequate for real-world problems � forever everywhere? examples 3 � CORBA Security examples • no compliant system • over 600 pages • 3 days to install and configure a toy set up � Web services security • harder than RPC-based CORBA 4 � research direction outline � access control mechanisms overview � some things that can be done about it � some specific things: attribute function, composable policy engines � other research projects 5 what can be done about it? improvements towards • inexpensive and error-proof to build • effective and inexpensive in administration • adequate for problem domains • easy and inexpensive to change and integrat