posted by organizer: SecureSoftwareByDesign || 89 views || tracked by 1 users: [display]

Secure Software 2023 : Secure Software By Design


When Jun 12, 2023 - Jun 13, 2023
Where Arlington, VA USA
Submission Deadline Apr 28, 2023
Notification Due May 5, 2023
Final Version Due May 26, 2023
Categories    devsecops   secure software design   application threat modeling   development of security req.

Call For Papers

Collaborate on approaches to improve software security

The CERT Division of the Carnegie Mellon University Software Engineering Institute (SEI) today announced registration and a call for presentations for Secure Software by Design, a two-day live, in-person event on June 12 and 13 at the SEI’s Arlington, Va., location.

The SEI has been in the forefront of secure software development, promoting a “shift left” approach whereby security weaknesses are addressed, prevented, or eliminated earlier in the software development cycle, which saves time and money. Building on this research in support of the newly released National Cyber Strategy , the Secure Software by Design event promotes making security an integral aspect of the entire software lifecycle as a result of following deliberate, intentional engineering processes rather than addressing security in individual stages as one-off activities.

This event also supports the many efforts underway at the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Agency (CISA) and addresses the issues that CISA Director Jen Easterly spoke about during her recent address to the nation from CMU . "Technology providers and software developers must take ownership of their customer’s security outcomes rather than treating each product as if it carries an implicit caveat emptor. To achieve this, every technology provider must begin by creating products that are both ‘secure by default’ and ‘secure by design,’” said Easterly

“Secure Software by Design is intended to improve the state of secure development approaches by bringing together thought leaders in this area for presentations and discussions on all aspects of software intensive system development,” said Tim Chick , Applied Systems Group lead in the SEI-CERT Division. “This event will discuss application threat modeling, development of security requirements, secure software architectures, DevSecOps, secure development platforms and pipelines, software assurance, secure coding practices, software testing, and more.”

For more information about registration and call for presentations, visit the conference website at . Deadline for the call for presentations is 28 April 2023

Related Resources

SecDev 2023   IEEE Secure Development Conference
ICSE 2024   The IEEE/ACM International Conference on Software Engineering (Second Round)
IEEE ICCC 2023   IEEE--2023 9th International Conference on Computer and Communications (ICCC 2023)
ACM CIIS 2023   ACM--2023 The 6th International Conference on Computational Intelligence and Intelligent Systems (CIIS 2023)
TACC 2023   3rd Tunisian-Algerian Conference on Applied Computing
PRDC 2023   28th IEEE Pacific Rim International Symposium on Dependable Computing
ESSE 2023   2023 The 4th European Symposium on Software Engineering (ESSE 2023)
IET-CPS-SI:IoT-based Secure Health 2023   Special issue on IoT-based Secure Health Monitoring and Tracking through Estimated Computing
ICRE--EI 2023   2023 7th International Conference on Reliability Engineering (ICRE 2023)
ICSRS 2023   IEEE--2023 The 7th International Conference on System Reliability and Safety (ICSRS 2023)