posted by organizer: SecureSoftwareByDesign || 318 views || tracked by 1 users: [display]

Secure Software 2023 : Secure Software By Design


When Jun 12, 2023 - Jun 13, 2023
Where Arlington, VA USA
Submission Deadline Apr 28, 2023
Notification Due May 5, 2023
Final Version Due May 26, 2023
Categories    devsecops   secure software design   application threat modeling   development of security req.

Call For Papers

Collaborate on approaches to improve software security

The CERT Division of the Carnegie Mellon University Software Engineering Institute (SEI) today announced registration and a call for presentations for Secure Software by Design, a two-day live, in-person event on June 12 and 13 at the SEI’s Arlington, Va., location.

The SEI has been in the forefront of secure software development, promoting a “shift left” approach whereby security weaknesses are addressed, prevented, or eliminated earlier in the software development cycle, which saves time and money. Building on this research in support of the newly released National Cyber Strategy , the Secure Software by Design event promotes making security an integral aspect of the entire software lifecycle as a result of following deliberate, intentional engineering processes rather than addressing security in individual stages as one-off activities.

This event also supports the many efforts underway at the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Agency (CISA) and addresses the issues that CISA Director Jen Easterly spoke about during her recent address to the nation from CMU . "Technology providers and software developers must take ownership of their customer’s security outcomes rather than treating each product as if it carries an implicit caveat emptor. To achieve this, every technology provider must begin by creating products that are both ‘secure by default’ and ‘secure by design,’” said Easterly

“Secure Software by Design is intended to improve the state of secure development approaches by bringing together thought leaders in this area for presentations and discussions on all aspects of software intensive system development,” said Tim Chick , Applied Systems Group lead in the SEI-CERT Division. “This event will discuss application threat modeling, development of security requirements, secure software architectures, DevSecOps, secure development platforms and pipelines, software assurance, secure coding practices, software testing, and more.”

For more information about registration and call for presentations, visit the conference website at . Deadline for the call for presentations is 28 April 2023

Related Resources

ACM BSCI 2024   The 6th ACM International Symposium on Blockchain and Secure Critical Infrastructure
DevSecOpsRO 2024   2nd Workshop on DevSecOps Research and Opportunities (DevSecOpsRO) (in conjunction with EuroS&P 2024)
ITNG 2024   The 21st Int'l Conf. on Information Technology: New Generations ITNG 2024
ACIE 2024   CPS--2024 4th Asia Conference on Information Engineering (ACIE 2024)
ICSE 2025   The 47th International Conference on Software Engineering (Second Cycle)
ISCMI 2024   2024 11th International Conference on Soft Computing & Machine Intelligence (ISCMI 2024)
ACM AICCC 2024   ACM--2024 7th Artificial Intelligence and Cloud Computing Conference (AICCC 2024)
ACM NLPIR 2024   ACM--2024 8th International Conference on Natural Language Processing and Information Retrieval (NLPIR 2024)
CCAT 2024   2024 the 3rd International Conference on Computer Application Technology (CCAT 2024)
IEEE CECCC 2024   IEEE--2024 6th International Communication Engineering and Cloud Computing Conference (CECCC 2024)