consulting

Konstantin consults industry and government on the subject of his expertise.

About Konstantin

Konstantin (Kosta) Beznosov has over 20 years of experience in cybersecurity, with world-class expertise in enterprise security, usable security, and systems security. Before joining UBC in 2003, he worked for 7 years on enterprise security solutions for healthcare, telecom, and finance, as a developer, consultant, and security architect. Dr. Beznosov’s prior work on applying CORBA Security architecture to computerized medical records at Baptist Health Systems of South Florida laid the foundation for the OMG standard on Resource Access Decision (RAD) Facility. He actively participated in standardization of security-related OMG’s specifications (CORBA Security, RAD, SDMM) from 1997 to 2001, and served as a co-chair of the Security SIG. He also contributed to the specification of the eXtensible Access Control Markup Language (XACML). Since joining UBC, Dr. Beznosov has been actively contributing to major venues in research on cybersecurity. Having co-authored over 100 research papers on cybersecurity, he is also a co-author of “Enterprise Security with EJB and CORBA” and “Mastering Web Services Security” by Wiley Computer Publishing. Just in the past 6 years, Dr. Beznosov co-authored 18 publications at top international conferences such as ACM CHI, SOUPS, NDSS, ACM CCS, USENIX Security Symposium, and the IEEE Symposium on Security and Privacy.

Areas of Expertise

  • Security reviews of designs and architectures for applications (servers and clients) and enterprise solutions.
  • Usable security and privacy reviews and designs of security mechanisms, controls, or other security-critical parts of systems and solutions.
  • Review and analysis of human and social factors in enterprises and consumer-oriented security solutions.
  • Solutions addressing human and social factors in securiuty-critical systems, applications, and processes for mass consumers and organizational employees.

Past consulting engagements

  • Government of the Province of British Columbia, Canada. Served on the independent panel that advised the BC government on the benefits and risks of internet voting.
  • Microsoft Research. Computer security research.
  • Credit Suise First Boston (CSFB). Security architecture review and design for enterprise in-house solutions.
  • Sprint. Security architecture review and design for enterprise in-house solutions.