Dear all,
I think the following call for papers is highly relevant for readers
of this list, so please pardon me to promote an event for the first time:
Second International Workshop on Secure Software Engineering (SecSE 2008)
In conjunction with ARES 2008
Barcelona, Catalonia, March 4th-7th 2008
http://www.ares-conference.eu/conf/
Call for Papers
Introduction
============
In our modern society, software is an integral part of everyday life,
and we expect and depend upon software systems to perform
correctly. Software security is about ensuring that systems continue
to function correctly also under malicious attack. As most systems now
are web-enabled, the number of attackers with access to the system
increases dramatically and thus the threat scenario changes. The
traditional approach to secure a system includes putting up defence
mechanisms like IDS and firewalls, but such measures are no longer
sufficient by themselves. We need to be able to build better, more
robust and more secure systems. Even more importantly, however, we
should strive to achieve these qualities in all software systems, not
just the ones that need special protection.
This workshop will focus on techniques, experiences and lessons
learned for engineering secure and dependable software.
Topics
======
Suggested topics include, but are not limited to:
- Secure architecture and design
- Security in agile software development
- Aspect-oriented software development for secure software
- Security requirements
- Risk management in software projects
- Secure implementation
- Secure deployment
- Testing for security
- Quantitative measurement of security properties
- Static and dynamic analysis for security
- Verification and assurance techniques for security properties
- Lessons learned
- Security and usability
- Teaching secure software development
- Experience reports on successfully attuning developers to secure software
engineering
Important dates:
===============
- Submission Deadline: October 25th 2007 (NOTE: Extended from 10th)
- Author Notification: November 30th 2007
- Author Registration: December 15th 2007
- Proceedings Version: January 15th 2008
- Conference/workshop: March 4th - March 7th 2008
Submission Guidelines
=====================
Authors are invited to submit research and application papers in IEEE
Computer Society Proceedings Manuscripts style (two columns,
single-spaced, including figures and references, using 10 fonts, and
number each page). Please consult the IEEE CS Author Guidelines at the
following web page:
http://preview.tinyurl.com/psg2o
We solicit the submission of full papers (8 pages) representing
original, previously unpublished work. Submitted papers will be
carefully evaluated based on originality, significance, technical
soundness, and clarity of exposition.
Duplicate submissions are not allowed. A submission is considered to
be a duplicate submission if it is submitted to other
conferences/workshops/journals or if it has been already accepted to
be published in other conferences/workshops/journals. Duplicate
submissions thus will be automatically rejected without reviews.
Contact author must provide the following information: paper title,
authors' names, affiliations, postal address, phone, fax, and e-mail
address of the author(s), about 200-250 word abstract, and about five
keywords and register at our ARES website:
http://www.ares-conference.eu/conf/
Submission of a paper implies that should the paper be accepted, at
least one of the authors will register for the ARES conference and
present the paper in the workshop. Accepted papers will be given
guidelines in preparing and submitting the final manuscript(s)
together with the notification of acceptance. Note that SecSE 2008
does not require anonymized submissions.
Publication
===========
All accepted papers will be published as ISBN proceedings published by
the IEEE Computer Society.
Organizing committee:
=====================
Torbjørn Skramstad, Norwegian University of Science and Technology (NTNU)
Lillian Røstad, Norwegian University of Science and Technology (NTNU)
Martin Gilje Jaatun, SINTEF ICT, Norway
Enquiries to the organizing committee may be sent to:
SecSE08 "replace with at-character" gmail.com
Program committee
=================
Rubén Alonso, ESI, Spain
Ana Cavalli, GET/INT, France
Ivan Flechais, University of Oxford, UK
Per Håkon Meland, SINTEF ICT, Norway
Leon Moonen, Delft University of Technology, Netherlands
Khalid Mughal, University of Bergen, Norway
Holger Peine, Fraunhofer IESE, Germany
Samuel Redwine, James Madison University, USA
Chunming Rong, University of Stavanger, Norway
Lillian Røstad, NTNU, Norway
Christoph Schuba, Sun Microsystems Inc., USA
Nahid Shahmehri, Linköping University, Sweden
Torbjørn Skramstad, NTNU, Norway
Bart De Win, KU Leuven, Belgium
Stephen Wolthusen, Royal Holloway University of London, UK
--
Dr. Holger Peine, Project Manager Security
Fraunhofer IESE, Fraunhofer-Platz 1, 67663 Kaiserslautern, Germany
Phone +49-631-6800-2134, Fax -1899 (shared)
http://www.iese.fraunhofer.de
PGP key via http://pgp.mit.edu ; fingerprint is 1BFA 30CB E3ED BA99 E7AE 2BBB
C126 A592 48EA F9F8
_______________________________________________
Secure Coding mailing list (SC-L) SC-L@securecoding.org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php
SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com)
as a free, non-commercial service to the software security community.
_______________________________________________
