A security mechanism for distributed systems is proposed in this paper. The motivation is to improve the serious drawback of applying a centralized security mechanism. Application of a centralized security mechanism for distributed systems is not workable since it is vulnerable to the intruders. The proposed security mechanism for distributed systems consists of two major components. One is the ADKG (Automatic Double-checking Key Generation) mechanism applied to ensure the safety and correctness of the generated key; the other is the DUA (Distributed User Authentication) mechanism used to identify the privilege and individuality of the user. An SSPRB (Securely Strong Pseudo-Random Bit) generator is also used to generate the security keys for the ADKG mechanism. The SSPRB generator is designed on the basis of the rewriting rules. For safety consideration, multiple security sites are simultaneously operated to generate a ticket for an applicant, any request for services is then certified by that ticket. There are three characteristics in the proposed security meshanism. The first is the innovative SSPRB generator which offers advantages of lower computation burden and larger seed space. The second is that the ADKG mechanism presents a precise and secure scheme for the key generation procedure. The third is that the DUA mechanism provides a reliable and steady approach for user authenticaton. Any successful intrusion into a security site would not imperil the security of the entire system.