Home Page for Tatyana Ryutov

Links

The Generic Authorization and Access Control API (GAA-API) provides fine-grained access control and application-level intrusion detection capabilities that are accessible to applications through a simple API. Applications can use this framework to delegate access control and application-level intrusion detection to the GAA-API. The GAA-API supports the needs of most applications, thus not forcing the developers to design their own authorization mechanisms.
The DARPA funded Dynamic Policy Evaluation for Containing Network Attacks (DEFCN) effort at the Information Sciences Institute (ISI) of the University of Sothern California (USC) is developing an access control framework and reference implementation supporting access control policies that are sensitive to network threat conditions. The project integrates the mechanisms for evaluation and execution of such policies with intrusion detection and response systems, and through continued development and extension of the GAA-API. The reseachers will ensure that the the framework is usable and integrated with a wide range of applications.
The Global Operating Systems Technology Group (GOST) is organized informally, consisting of faculty, staff, and students from the the Computer Networks Division of the Information Sciences Institute (ISI) of the University of Sothern California (USC) who are working on infrastructure and services for information discovery and retrieval, network security, electronic commerce, electronic payment, and distributed parallel computing.
Center for Computer Systems Security provides focus for work at USC on improving the security of computer systems, networks, and applications. It accomplished this by encouraging the development, adoption, evaluation, and integration of security technologies with applications and core network and operating system services. The center promotes the understanding and integration of security policy management and enforcement technologies for distributed systems; it conducts research in technologies supporting personal privacy, computer and network intrusion detectionand response, and survivability of critical infrastructure. The center provides a focal point for education at USC in theory and technology for computer security.