[SC-L] Metricon 2.0

2007-07-07 Thread Gunnar Peterson
SC-Lers, There are several presentations at Metricon by or of interest to SC-L denizens. -gp The agenda for Metricon 2.0 in Boston August 7th has been set. Metricon is co-located with Usenix security conference. The details, travel info, registration, and agenda are here: https://www.securityme

[SC-L] MetriCon 2.0 CFP

2007-04-24 Thread Gunnar Peterson
Last year's conference, MetriCon 1.0 featured a software security metrics track ( http://securitymetrics.org/content/Wiki.jsp?page=Metricon1.0), including: * A Metric for Evaluating Static Analysis Tools - Chess & Tsipenyuk, Fortify * An Attack Surface Metric - Manadhata & Wing, Carnegie-Mellon *

Re: [SC-L] MetriCon 2.0 CFP

2007-04-25 Thread Gunnar Peterson
14:53 2007 > To: Secure Mailing List > Subject: [SC-L] MetriCon 2.0 CFP > > Last year's conference, MetriCon 1.0 featured a software security metrics > track ( http://securitymetrics.org/content/Wiki.jsp?page=Metricon1.0), > including: > > * A Metric for Evaluating Stat

Re: [SC-L] MetriCon 2.0 CFP

2007-04-25 Thread Gary McGraw
Plus, check out Andrew Jaquith's excellent book: -Original Message- From: Gunnar Peterson [mailto:[EMAIL PROTECTED] Sent: Tue Apr 24 20:14:53 2007 To: Secure Mailing List Subject: [SC-L] MetriCon 2.0 CFP Last year's conference, MetriCon 1.0 featured a softwar

Re: [SC-L] MetriCon 2.0 CFP

2007-04-25 Thread Bret Watson
You know its a little off topic - but I'd kill for a set of metrics around the effectiveness/efficiency of a SOC :) Anyone got any ideas? The usual "events per person" type metrics are backwards (good security means less events so lower "efficiency" Thanks Bret ___

Re: [SC-L] MetriCon 2.0 CFP

2007-04-25 Thread Gadi Evron
uith's excellent book: > > > > -Original Message- > > From: Gunnar Peterson [mailto:[EMAIL PROTECTED] > > Sent: Tue Apr 24 20:14:53 2007 > > To: Secure Mailing List > > Subject: [SC-L] MetriCon 2.0 CFP > > > > Last year's confer

Re: [SC-L] MetriCon 2.0 CFP

2007-04-25 Thread Gunnar Peterson
. > >> >> -gp >> >> On 4/24/07 7:32 PM, "Gary McGraw" <[EMAIL PROTECTED]> wrote: >> >>> Plus, check out Andrew Jaquith's excellent book: >>> >>> -Original Message- >>> From: Gunnar Peterson [mailto:[E