My broad research area is security in distributed systems. In this area I'm mostly concerned with usage control and trust management issues.

Currently I'm working on a model-based methodology for security engineering. In this methodology models are used to represent security concerns related to identity, trust, risk, and usage control concepts.