The paper describes the security problems and challenges faced in a environment of distributed computing. There are shown the specifics of security mechanisms for distributed computer systems based on the modern security technologies and standards.
The structure of the mechanism for the security risk minimization in the distributed computer systems is suggested. There are suggested the estimation of the level of security threats, the integrated estimation of damage due to the attacks on the vulnerability and the estimation for risk of the security threats realization. Also, there is suggested an approach to the risk analysis based on estimation of the risk factors of the security threats. Also, the special security risk matrix for risk minimization is suggested.
The main principles for design and the basic elements of security policy in distributed computer systems are described. A model of security policy for distributed computer systems is suggested. This model allows formulate and substantiate the main principles of security policy for administrating of the distributed computer systems.