Dr. Günter Karjoth    IBM Research GmbH Zurich Research Laboratory  Säumerstrasse 4  CH-8803 Rüschlikon  Switzerland      tel: +41 - 44 - 7248 - 486    fax: ... - 953    gkaXzurich.ibm.com where X = @          PGP Fingerprint: 664D 8BB7 3BA5 DCEB CF26 4F7E 259C 3590 F7FC F99B Key available from http://www.zurich.ibm.com/~gka/pgp.html

I am a Research Staff Member at the IBM Zurich Research Laboratory doing research in enterprise security complance.

I am also a member of the IBM team that published the Separation of Duties and Entitlement Analyzer on IBM alphaWorks. It consists fo a set of policy and role analysis functions for IBM Tivoli Access Manager and IBM Tivoli Identity Manager that supports "separation of duties" and entitlement reporting.

 

Professional Activities

I am on the Editorial Board of digma. Zeitschrift für Datenrecht und Informationssicherheit - a Swiss journal on security and privacy.
Together with Jan Camenisch, I lecture at the ETH Zurich on E-Privacy: Privacy in the Electronic Society.

Some conferences I'm currently associated with:

• Third ACM Conference on Data and Application Security and Privacy (CODASPY 2013) [PC member]
  Feb 18-20, 2013, San Antonio, TX, USA.
  [Submission deadline: Sep 7]
• 6th International Conference on Network and System Security (NSS 2012) [PC Member]
  Wu Yi Shan, Fujian, China; Nov 21-23, 2012
  [Submission deadline: June 24]
• Internet of Things (IoT2012) [PC member]
  Wuxi, China on October 24-26, 2012.
• 8th International Workshop on Security and Trust Management (STM 2012) [PC member]
  In conjunction with ESORICS 2012. Pisa, Italy - September 13-14, 2012
• 13th Joint IFIP TC6 and TC11 Conference on Communications and Multimedia Security (CMS'2012) [PC member]
  Canterbury, UK, Sep 2-5, 2012
• Data Usage Management on the Web [PC member]
  Held in conjunction with WWW 2012. Lycon, France; April 16th, 2012
• GI SICHERHEIT 2012 Sicherheit - Schutz und Zuverlässigkeit [PC member]
  Fachtagung vom 7. - 9. März 2012, Darmstadt

• D. Basin, S.J. Burri and G. Karjoth. Optimal Workflow-aware Authorizations. In: 17th ACM Symposium on Access Control Models and Technologies (SACMAT) pages 93-102. ACM, 2012.
• S.J. Burri and G. Karjoth. Flexible Scoping of Authorization Constraints on Business Processes with Loops and Parallelism In: F. Daniel et al. (Eds.): BPM 2011 Workshops, Part II, LNBIP 100, pp. 411-422. Springer, Heidelberg (2012)
• D. Basin, S.J. Burri and G. Karjoth. Obstruction-free Authorization Enforcement: Aligning Security and Business Objectives. In: 24th IEEE Computer Security Foundations Symposium, pages 99-113. IEEE Press, 2011.
• D. Basin, S.J. Burri and G. Karjoth. Separation of Duties as a Service. In: 6th ACM Symposium on Information, Computer and Communications Security (ASIACCS), pages 423-429. ACM, 2011.
• M. Langheinrich and G. Karjoth Social networking and the risk to companies and institutions. In Information Security Technical Report, Volume 15, Issue 2, May 2010, Pages 51-56, 2010.
• D. Basin, S.J. Burri and G. Karjoth. Dynamic Enforcement of Abstract Separation of Duty Constraints. In: 14th European Symposium on Research in Computer Security (ESORICS), Lecture Notes in Computer Sciene 5789, pages 250-267. Springer, 2009
• G. Karjoth, A. Schade and E. Van Herreweghen. Implementing ACL-based Policies in XACML. 24th Annual Computer Security Applications Conference, pages 183-192. IEEE Computer Society, 2008.
• G. Karjoth and P. Moskowitz. Disabling RFID Tags with Visible Confirmation: Clipped Tags Are Silenced. In ACM Workshop on Privacy in the Electronic Society (WPES'05), pages 27-30. ACM Press, 2005.
• M. Backes, W. Bagga, G. Karjoth, M. Schunter. Efficient Comparison of Enterprise Privacy Policies. In 19th Annual ACM Symposium on Applied Computing, pages 375-382. Nicosia, Cyprus, March 14-17, 2004.
• G. Karjoth. Access Control with IBM Tivoli Access Manager. ACM Transactions on Information and System Security Vol. 6, No. 2, 232-257 (2003).
• G. Karjoth and M. Schunter. A Privacy Policy Model for Enterprises. In 15th IEEE Computer Security Foundations Workshop (CSFW) pages 271-281. IEEE Computer Society, 2002.
• J. Algesheimer, C. Cachin, J. Camenisch, and G. Karjoth. Cryptographic Security for Mobile Code. In 2001 IEEE Symposium on Security and Privacy, pages 2-11. IEEE Computer Society, 2001.

• Talk: The Challenges of Introducing Authorization Constraints on the Business Level. Karlsruhe Institute of Technology, July 12, 2011

A full publication list (includes links to downloadable papers). You can also use IBM's CyberDigest Web Site to check out my list of publications, including the latest IBM Research Reports.

dblp  |  Co-authors  |  BibFinder  |  DoCIS  |  Libra  |  Google's Patent Search

Last modified: Tue Sep 11 11:58:35 CEST 2012

IBM doesn't necessarily share my personal opinions stated on this page.