posted by organizer: sectest2015 || 3662 views || tracked by 4 users: [display]

SECTEST 2015 : The 6th international Workshop on Security Testing

FacebookTwitterLinkedInGoogle

Link: https://sites.google.com/site/sectestworkshop15/home
 
When Apr 13, 2015 - Apr 13, 2015
Where Graz, Austria
Submission Deadline Feb 6, 2015
Notification Due Mar 2, 2015
Final Version Due Mar 20, 2015
Categories    testing   security   software engineering   vulnerability modelling
 

Call For Papers

********************************************************************************************************
Update: Deadline extended to February 6.
*********************************************************************************************************
The Sixth International Workshop on Security Testing (SECTEST 2015)
https://sites.google.com/site/sectestworkshop15/
Graz, Austria, April 13 2015

Co-located with ICST 2015

To improve software security, several techniques, including vulnerability modelling and security testing, have been developed but the problem remains unsolved. SECTEST workshop tries to answer how vulnerability modelling can help users understand the occurrence of vulnerabilities so to avoid them, and what the advantages and drawbacks of the existing models are to represent vulnerabilities. At the same time, the workshop tries to understand how to solve the challenging security testing problem, how security testing is different from and related to classical functional testing, and how to assess the quality of security testing. This is in particular interesting since testing the mere functionality of a system alone is already a fundamentally critical task. The objective of SECTEST workshop is to share ideas, methods, techniques, and tools about vulnerability modelling and security testing to improve the state of the art. In particular, the workshop aims at providing a forum for practitioners and researchers to exchange ideas, perspectives on problems, and solutions. Both papers proposing novel models, methods, and algorithms and reporting experiences applying existing methods on case studies and industrial examples are welcome. The topics of interest include, but are not restricted to:

• network security testing
• application security testing
• security requirements definition and modelling
• security and vulnerability modelling
• secure interoperability
• runtime monitoring of security‐relevant applications
• security testing of legacy systems
• cost effectiveness issues
• comparisons between security‐by‐design and formal analyses
• formal techniques for security testing and validation
• security test generation and oracle derivation
• specifying testable security constraints
• test automation
• penetration testing
• regression testing for security
• robustness and fault tolerance to attacks
• test‐driven diagnosis of security weaknesses
• process and models for designing and testing secure system
• when to perform security analysis and testing
• "white box" security testing techniques
• compile time fault detection and program verification
• tools and case studies
• industrial experience reports



:: Submission

We solicit both full papers (8 pages) and short papers (2 pages) in IEEE two‐column format. We also solicit demonstrations of security testing tools (4 pages). All submissions will be peer‐reviewed. Authors of accepted papers must guarantee that their paper will be presented at the workshop. Authors are invited to submit their papers electronically, as portable document format (pdf); please, do not send files formatted for work processing packages (e.g., Microsoft Word or Wordperfect files). The mechanism for paper submissions is via EasyChair.



:: Publication

The proceedings will be published in the IEEE digital library.


:: Workshop Chairs

Martín Ochoa (Technical University of Munich, Germany)
Giancarlo Pellegrino (Technical University of Darmstadt, Germany)


:: Important Dates

Papers due: February 6, 2015
Notification: March 2, 2015
Camera‐ready due: March 20, 2015

Related Resources

ICFEM 2017   19th International Conference on Formal Engineering Methods
STV 2017   11th Workshop on System Testing and Validation
ISSTA 2017   International Symposium on Software Testing and Analysis
DMCIT 2017   ACM-2017 International Conference on Data Mining, Communications and Information Technology(DMCIT 2017)--EI
ICISIP 2017   The 5th IIAE International Conference on Intelligent Systems and Image Processing 2017
CGDEIJ 2017   Computer Game Development and Education: An International Journal
Smart-City-IoT-Security 2017   Special Issue on Security of IoT-enabled Infrastructures in Smart Cities
IJSC 2017   International Journal on Soft Computing
EDCC 2017   13th European Dependable Computing Conference
SPLASH 2017   ACM SIGPLAN conference on Systems, Programming, Languages and Applications: Software for Humanity