2008 Spring LERSAIS IA Seminar Schedule

 

Time: 1:30 - 3:00 PM, Friday

(Welcome Reception:  1:30 - 2:00 PM)

 

Venue: Room 404 Information Science Building

 

 

 

Date

Speaker

Title

 1.

April 11

Yuecel Karabulut

 Secure Scripting Based Composite Application Development: A Business-Driven Approach

 

 

    

                     

 

April 11

 

Speaker

 Yuecel Karabulut

 

Title

Secure Scripting Based Composite Application Development: A Business-Driven Approach

 

 

Abstract:

Dynamic scripting languages such as Ruby provide language features that enable developers to express their intent more rapidly and with fewer expressions. Organizations started using these languages in order to add enhancements to their existing applications or create composite applications. Current research has not yet addressed how security specification and enforcement can be done for scripting based application development. To fill this gap, we developed a secure composition framework for the design and facilitation of security. Our approach enables a business oriented application developer to add high-level security intentions to his business process model. The framework supports the automatic generation of security configuration and enforcement. In this talk we will present our generic security framework and a specific architecture for scripting based secure composition.

 

 

Biography:  

Dr. Yuecel Karabulut is a Senior Research Scientist at SAP Research in Palo Alto. He is currently member of the Platforms Research Group. Before joining this group Yuecel has worked in the Security & Trust Research Program of SAP Research, CEC Karlsruhe, Germany where he led several SAP internal technology transfer projects and external European funded large research projects including TrustCoM and ITAIDE. Within the context of internal technology transfer projects he has provided strategic input to various product and industry groups within SAP. His main areas of expertise include Secure Service-Oriented Architectures, Secure Business Process Composition, Application-level Virtual Machine Sandboxing, Secure Web Mashups, Application Platform Security, Mobile Application Security, Security for SaaS, Policy Management, Authorization Management, Trust Management and PKI. He has a number of conference & journal publications, and holds several patents focusing on distributed information systems, security and trust issues in open, interoperable systems. Prior to joining SAP, he worked as a postdoctoral researcher at the University of Dortmund in Germany. Yuecel received his doctoral degree and his Diploma in Informatics from the University of Dortmund, and his BSc degree in Computer Engineering from Ege University, Turkey. He serves as program committee member and chair as well as reviewer at many international conferences, workshops and journals. Yuecel has given several invited talks, tutorials and lectures at various industrial research centers, conferences and universities. He holds the award of DAAD's (German Academic Exchange Service) Outstanding Student of Year 2002. 

 

More information may be found at: