Call for Papers: CQRE
(As some of you have problems with the html-version of the CFP you will find the full version below. Sorry for this inconvenience.) *** Call for Papers CQRE [Secure] Congress Exhibition Duesseldorf, Germany, Nov. 30 - Dec. 2 1999 --- provides a new international forum covering most aspects of information security with a special focus to the role of information security in the context of rapidly evolving economic processes. --- Deadline for submission of extended abstracts: May 14, 1999 website: http://www.secunet.de/forum/cqre.html mailing-list: send mailto:[EMAIL PROTECTED] (where the subject is "subscribe" without paranthesis) *** The "CQRE - secure networking" provides a new international forum giving a close-up view on information security in the context of rapidly evolving economic processes. The unprecedented reliance on computer technology transformed the previous technical side- issue "information security'' to a management problem requiring decisions of strategic importance. Hence, the targeted audience represents decision makers from government, industry, commercial, and academic communities. If you are developing solutions to problems relating to the protection of your countrys information infrastructure or a commercial enterprise, consider submitting a paper to the "CQRE - secure networking" conference. We are looking for papers and panel discussions covering: . electronic commerce - new business processes - secure business transactions - online merchandising - electronic payment / banking - innovative applications . network security - virtual private networks - security aspects in internet utilization - security aspects in multimedia- applications - intrusion detection systems . legal aspects - digital signatures acts - privacy and anonymity - crypto regulation - liability . corporate security - access control - secure teleworking - enterprise key management - IT-audit - risk / disaster management - security awareness and training - implementation, accreditation, and operation of secure systems in a government, business, or industry environment . security technology - cryptography - public key infrastructures - chip card technology - biometrics . trust management - evaluation of products and systems - international harmonization of security evaluation criterias . standardization . future perspectives Any other contribution addressing the involvement of IT security in economic processes will be welcome. Authors are invited to submit an extended abstract of their contribution to the program chair. The submissions should be original research results, survey articles or ``high quality'' case studies and position papers. Product advertisements are welcome for presentation, but will not be considered for the proceedings. Manuscripts must be in English, and not more than 2.000 words. The extended abstracts should be in a form suitable for anonymous review, with no author names, affiliations, acknowledgements or obvious references. Contributions must not be submitted in parallel to any conference or workshop that has proceedings. Separately, an abstract of the paper with no more than 200 words and with title, name and addresses (incl. an E-mail address) of the authors shall be submitted. In the case of multiple authors the contacting author must be clearly identified. We strongly encourage electronic submission in Postscript format. The submissions must be in 11pt format, use standard fonts or include the necessary fonts. Proposals for panel discussions should also be sent to the program chair. Panels of interest include those that present alternative/controversial viewpoints or those that encourage lively discussions of relevant issues. Panels that are collections of unrefereed papers will not be considered. Panel proposals should be a minimum of one page describing the subject matter, the appropriateness of the panel for this conference and should identify participants and their respective viewpoints. mailing list/ web-site: --- If you want to receive emails with subsequent Call for Papers and registration information, please send a brief mail to [EMAIL PROTECTED] You will find this call for papers and further information at http://www.secunet.de/forum/cqre.html . important dates: deadline for submission of extended abstracts May 14, 1999 deadline for submission of panel proposalsJune 1, 1999 notification of acceptance June 25, 1999 deadline for submission of complete papers July 30, 1999 program chair: -- secunet - Security Networks GmbH c/o Rainer Baumgart Weidenauer Str. 223 - 225 57076
DCSB: Fred Hapgood; Product/Price Comparison in Digital Commerce
--- begin forwarded text Date: Mon, 8 Mar 1999 07:32:26 -0500 To: [EMAIL PROTECTED], [EMAIL PROTECTED] From: Robert Hettinga [EMAIL PROTECTED] Subject: DCSB: Fred Hapgood; Product/Price Comparison in Digital Commerce Cc: Chris Wysopal [EMAIL PROTECTED], Ron Rivest [EMAIL PROTECTED] Sender: [EMAIL PROTECTED] Reply-To: Robert Hettinga [EMAIL PROTECTED] -BEGIN PGP SIGNED MESSAGE- The Digital Commerce Society of Boston Presents Fred Hapgood Author, Analyst The Race to Get In-Between: The Struggle over Control of Product Comparison Presentation Information Tuesday, April 6th, 1999 12 - 2 PM The Downtown Harvard Club of Boston One Federal Street, Boston, MA Arguments can -- and will -- be made that, by the nature of the internet, ecommerce is likely to aggregate around vendors providing the most comprehensive and flexible tools for comparing the largest number of products. If this is right, several questions arise: Who is in the best competitive position: Distributors, who can use their market role to compel participation by vendors; portals, who start with traffic but who need the tools; or specialty catalogers, which have the tools but need the traffic? What is the most plausible business model for such a service? What sort of business, if any, might continue to be handled directly from the sites of individual manufacturers and merchants? Will the advantages accruing to the control of product comparison presentations endure or is this a passing phase? Might the vendors seize control back with a system of distributed agents? Among others. Fred Hapgood is a freelance writer, i.e., intellectual property provider and buzz vector, with a special interest in ecommerce. He has written for almost everyone at least once. http://www.pobox.com/~hapgood This meeting of the Digital Commerce Society of Boston will be held on Tuesday, April 6, 1999, from 12pm - 2pm at the Downtown Branch of the Harvard Club of Boston, on One Federal Street. The price for lunch is $32.50. This price includes lunch, room rental, various A/V hardware, and the speakers' lunch. The Harvard Club *does* have dress code: jackets and ties for men (and no sneakers or jeans), and "appropriate business attire" (whatever that means), for women. Fair warning: since we purchase these luncheons in advance, we will be unable to refund the price of your lunch if the Club finds you in violation of the dress code. We need to receive a company check, or money order, (or, if we *really* know you, a personal check) payable to "The Harvard Club of Boston", by Saturday, April 3rd, or you won't be on the list for lunch. Checks payable to anyone else but The Harvard Club of Boston will have to be sent back. Checks should be sent to Robert Hettinga, 44 Farquhar Street, Boston, Massachusetts, 02131. Again, they *must* be made payable to "The Harvard Club of Boston", in the amount of $32.50. Please include your e-mail address, so that we can send you a confirmation If anyone has questions, or has a problem with these arrangements (We've had to work with glacial A/P departments more than once, for instance), please let us know via e-mail, and we'll see if we can work something out. Upcoming speakers for DCSB are: May Chris Wysopal L0pht Client Security JuneRon Rivest MIT Deep Crack = MicroMint? JulyTBA We are actively searching for future speakers. If you are in Boston on the first Tuesday of the month, and you are a principal in digital commerce, and would like to make a presentation to the Society, please send e-mail to the DCSB Program Commmittee, care of Robert Hettinga, mailto: [EMAIL PROTECTED]. For more information about the Digital Commerce Society of Boston, send "info dcsb" in the body of a message to mailto: [EMAIL PROTECTED] . If you want to subscribe to the DCSB e-mail list, send "subscribe dcsb" in the body of a message to mailto: [EMAIL PROTECTED] . We look forward to seeing you there! Cheers, Robert Hettinga Moderator, The Digital Commerce Society of Boston -BEGIN PGP SIGNATURE- Version: PGP for Personal Privacy 5.5.3 iQEVAwUBNuPDF8UCGwxmWcHhAQHWQAgAkarr+q1RZr6WXiStDlPQlp4WSCbPTFIk mlcb/hg4baCsx4O0VLGi5u2p84iSE8yQYY7jmMQsrXEujhA7JKbFyFCu7HwdJd/q RrBKcTC35iajkyMG1xCwLSfGskLyzy9dvs7FbzEl1h3jXHCbdZdhmIObQCzeQuNm Z0BetkmMw/lDTWExjJse7Jku49FCq7y4jh6ED3woxAvI+auaA8oDUHhBGPgnYGsy bcCj/igElr78l7J3zi19zUgtUmr00mBjVUi3W8bmM9NOC1LnRWHv8nOwL9sRN4qO oC8H3ZJ1BNh+Bx1GWNMGpCOHQbz+fXy77Ob+/H4WZWwT5iiYHOfnUQ== =Jnfz -END PGP SIGNATURE- - Robert A. Hettinga mailto: [EMAIL PROTECTED] Philodox Financial Technology Evangelism http://www.philodox.com/ 44 Farquhar Street, Boston, MA 02131 USA "... however it may deserve respect for its usefulness and antiquity, [predicting the end of the world] has not been found agreeable to
references to password sniffer incident
This is a little off topic, I know, but I'm writing a paper about the work we've done on an encrypting sendmail (I'll announce details as soon as it restabilises, but if anyone wants to see the old version it's at http://www.home.aone.net.au/qualcomm ). For part of this, I wanted to refer to the incident where someone mounted a password sniffer at a major network hub (MAE-West?) a couple of years ago. But I haven't turned up anything useful in a Web search. I didn't dream this incident, did I? Does anyone have any references? thanks, Greg. Greg Rose INTERNET: [EMAIL PROTECTED] QUALCOMM AustraliaVOICE: +61-2-9181 4851 FAX: +61-2-9181 5470 Suite 410, Birkenhead Point http://people.qualcomm.com/ggr/ Drummoyne NSW 2047 B5 DF 66 95 89 68 1F C8 EF 29 FA 27 F2 2A 94 8F
Re: references to password sniffer incident
Greg Rose [EMAIL PROTECTED] writes: I wanted to refer to the incident where someone mounted a password sniffer at a major network hub (MAE-West?) a couple of years ago. But I haven't turned up anything useful in a Web search. I didn't dream this incident, did I? Does anyone have any references? There was an alleged incident in 1993, where a sniffer had access to the BARRNet low-speed router traffic--a lot less damaging than a sniffer on MAE-West, but that's the only incident of the type I can recall. http://www.geek-girl.com/bugtraq/1993_4/0032.html is the only useful reference I could find. -- Dan Riley [EMAIL PROTECTED] Wilson Lab, Cornell University URL:http://www.lns.cornell.edu/~dsr/ "History teaches us that days like this are best spent in bed"
Re: references to password sniffer incident
I don't specfically know about MAE-West, but there are any number of attacks on ISPs that involved setting up password sniffers on major transit Ethernets. Phil