Publications & Presentations

Speaking Engagements, Presentations & Workshops

  • Identiverse 2021
    • The Holy Grail of IAM: Getting to Grips with Authorization
    • Slides
    • Video
  • Data Protection in Real Time – Transforming Privacy Law into Practice, University of Oxford
    • 9-10 September 2019
    • Updates from the OASIS XACML Technical Committee – Making Authorization Developer-Friendly using ALFA, REST, and JSON
    • Slides
  • Identiverse 2019
    • Policy-enabling your services: elastic, dynamic access control for your APIs, microservices and data
    • The Developer’s Guide to Policy-Driven Authorization (or: how to make the right decision 100% of the time)
  • European Identity Conference 2019
    • To the cloud and beyond: delivering policy-driven authorization for cloud applications and data lakes
    • Slides
  • Identiverse 2018
    • Beyond Identity – Secure your APIs Using Axiomatics Policy Server
  • European Identity Conference 2018
    • Identity Solved. What Next? Tackling your Toughest Authorization Challenges
    • Slides.
    • Agenda
  • Consumer Identity World USA 2017
  • OWASP Chicago 2016
    • Agenda
    • What is Attribute Based Access Control?
  • Cloud Identity Summit 2014, Monterey, CA
    • Why lasagna is better than spaghetti: baking authorization into your applications using ALFA, JSON, and REST
    • Slides.
    • Video
    • Agenda
  • European Identity Conference 2014, Munich
    • Designing Privacy into our ‘Smart’ Systems and Services
    • Slides.
    • Agenda
  • JavaZone 2013, Oslo
    • Authorization: it’s not just about who you are!
    • Watch the video
      here.
    • Slides
  • Gartner Identity & Access Management 2013, Las Vegas
    • E3: Guest Panel: San Diego Identity Standards Smackdown
    • Speakers: Gerry Gebel, Kelly Grizzle, Dick Hardt, Paul Madsen, Nat Sakimura
    • Slides
  • European Identity Conference EIC 2013, Munich
    • OASIS Panel: ID Protocols – Out with the Old and in with the New?
    • Speakers: David Brossard, Craig Burton, Dr. Michael B. Jones, Dr. Paul Madsen, Darran Rolls
    • Watch the video
      here.
  • Gartner Identity & Access Management 2012, Las Vegas
    • Panel: New-School Identity Protocols Fight for Your Love
    • Speakers: David Brossard, Kelly Grizzle, Dick Hardt, Paul Madsen, Nat Sakimura
    • Slides
  • Cloud Identity Summit 2012, Vail, CO
  • Cloud Identity Summit Europe 2012, London
  • European Identity Conference 2012, Munich (Germany)
    • OASIS Workshop: Identity, Privacy, and Data Protection in the Cloud – What is Being Done? Is it Enough?
    • Agenda.
    • Slides
  • IEEE Globecom 2008
  • IEEE CRISIS 2008
    • http://www.redcad.org/crisis2008/Tutorial.html#Summary
    • In this tutorial we will analyse the main concepts, design patterns and reference implementations of security and governance solutions that protect services, information and resources within and across Enterprises. We will also explain how these
      solutions can be put together into the context of a Service Oriented Security Infrastructure enabling the evolution of SOA technology towards end-to-end integration and governance across business partners. We will demonstrate the above through a
      concept infrastructure developed at BT’s research labs to illustrate new mechanisms for securely exposing and contextualizing services in a network-centric environment. BT acknowledges the fact that enterprises have an increasing need to share
      services and resources across corporate boundaries. This concept infrastructure therefore aims at enabling secure, measurable, dynamic, flexible, and adaptive service exposure.

Papers

  • 7th International Joint Conference, ICSOC-ServiceWave 2009, Stockholm, Sweden, November 24-27, 2009.
    • Title: Distributed Access Control Management – A XACML-Based Approach
    • Authors: Rissanen E., Brossard D., Slabbert A.
    • Affiliation: Axiomatics
    • Download
      paper.
  • IEEE 7th International Conference on Web Services (ICWS 2009)
    • Title: A governance model for SOA
    • Authors: de Leusse, P., Dimitrakos, T., and Brossard, D.
    • Affiliation: U. of Newcastle & BT Innovate
  • Third IFIP International Conference on Trust Management (IFIPTM 2009)
    • Title: Distributed systems security governance, a SOA based approach
    • Authors: de Leusse, P. and Brossard, D.
    • Affiliation: U. of Newcastle & BT Innovate
    • Title: A Virtual Hosting Environment for Distributed Online Gaming
    • Authors: David Brossard and Juan Luis Prieto Martinez
    • Affiliation: BT Innovate
    • Title: Common Capabilities for Trust & Security in Service Oriented Infrastructures
    • Authors: David Brossard and Maurizio Colombo
    • Affiliation: BT Innovate & IIT CNR Pisa
  • eChallenges 2008
    • Title: A Service Oriented Architecture to support the federation lifecycle management in a secure B2B environment
    • Authors: Angelo Gaeta, CRMPA, Francesco Orciuoli, DIIMA, Nicola Capuano, DIIMA, David Brossard, BT, Theo Dimitrakos, BT
    • Published in: Collaboration and the Knowledge Economy: Issues, Applications, Case Studies, Paul Cunningham and Miriam Cunningham (Eds), IOS Press, 2008 Amsterdam, ISBN 978-1-58603-924-0
    • Title: Dynamic SLAs and Trust for Next Generation Business Models in Grid
    • Authors: Francesco D’Andria, ATOS Origin , Sandra Jimenez, ATOS Origin, Melanie Biette, ATOS Origin, David Brossard, British Telecom, Lenni Madsen, British Telecom, Francesco Orciuoli, DIIMA
    • Published in: Collaboration and the Knowledge Economy: Issues, Applications, Case Studies, Paul Cunningham and Miriam Cunningham (Eds), IOS Press, 2008 Amsterdam, ISBN 978-1-58603-924-0
    • Title: Common Capabilities for Trust & Security in Service Oriented Infrastructures
    • Authors: David Brossard, BT Group CTO, Theo Dimitrakos, BT Group CTO, Maurizio Colombo, CNR
    • Published in: Collaboration and the Knowledge Economy: Issues, Applications, Case Studies, Paul Cunningham and Miriam Cunningham (Eds), IOS Press, 2008 Amsterdam, ISBN 978-1-58603-924-0
  • More at
    http://www.informatik.uni-trier.de/~ley/db/indices/a-tree/b/Brossard:David.html
  • ICNS 2006
    • Andreas Maierhofer, Theo Dimitrakos, Leonid Titkov, David Brossard, “Extendable and Adaptive Message-Level Security Enforcement Framework,” icns, pp.72, International conference on Networking and Services (ICNS’06), 2006

Journals

  • Wiley SCN 2010
    • http://www3.interscience.wiley.com/journal/123268080/abstract
    • Title: Securing business operations in an SOA
    • Authors: Pierre de Leusse, David Brossard, Nektarios Georgalas
    • Affiliation: University of Newcastle & BT Innovate
  • BT Technology Journal, vol.27, no.2 (BTTJ)

Books

  • Handbook on communications and information security, Stavroulakis, P, 2009
    • Dimitrakos, T., Brossard, D. and de Leusse, P., Securing the Service Oriented Infrastructure: research challenges and emerging solutions
    • Buy at
      Amazon
    • Browse at
      Google Books
  • Service Oriented Infrastructures and Cloud Service Platforms for the Enterprise: A selection of common capabilities validated in real-life business trials by the BEinGRID consortium
    • Chapter 3: Management of Virtual Organizations
    • Chapter 4: Aspects of General Security & Trust
    • Chapter 9: Bringing it all together
    • Buy at
      Amazon
  • Grid and Cloud Computing: A Business Perspective on Technology and Applications
    • Chapter 12: Virtual Hosting Environments for Online Gaming
    • Buy at
      Amazon
    • Browse at
      Google Books