My main research area is access control, particularly risk-based access control and role-mining. I greatly enjoy novel and counterintuitive approaches to access control and security in general, and don't generally prescribe to the patch-and-publish model of research. In addition to access control, I have worked in applied cryptography, privacy, and a little stint in machine learning and geoscience.
I often try to see how far I can push Cuil Theory (‽) in legitimate research (think more GURU than Monzy). This usually takes the form of esoteric yet tangental references, citations or analogies, most of which seems to get banished to the black hole of my SVN repository.
Research Assistant
