posted by system || 1120 views || tracked by 2 users: [display]

MeSSa 2015 : 3rd International Workshop on Measurability of Security in Software Architectures

FacebookTwitterLinkedInGoogle

Link: http://www.vtt.fi/messa2015
 
When Sep 8, 2015 - Sep 8, 2015
Where Dubrovnik/Cavtat, Croatia
Submission Deadline Jun 7, 2015
Notification Due Jun 19, 2015
Final Version Due Jun 22, 2015
 

Call For Papers

Security-related incidents are increasing, and at the same time the society is based more and more on reliability of cyber-physical systems. Systematic approaches to measure security and to build security in are thus needed in order to build secure software systems and to offer security evidence for software architects, decision makers and end-users. Security measuring from software architectures is required to produce sufficient evidence of security level as early as in the design phase. Consequently, design-time security measuring supports “security by design” approach. In addition, software architectures have to support runtime security measuring to obtain up-to-date security information from online software systems. Runtime security measuring is exploited in situation-awareness and self-adaptive security, such as security of IoT in eHealth. Security metrics for adaptation should also support evaluation and validation of runtime security adaptation. The area of security metrics and security assurance metrics research is evolving, but still lacks widely accepted definitions of metrics and applicable measuring techniques for design-time and runtime security monitoring.

The workshop will provide a forum for dissemination, demonstration and discussion of original scientific and experimental results of security measurement topics. MeSSa 2015 solicits contributions on the following issues (but not limited to):
* Security, trust and privacy metrics
* Security assurance metrics
* Security, trust and privacy measurement systems and associated data gathering
* Security measuring from software architectures and measurability-increasing mechanisms
* Metrics for self-adaptive security
* Taxonomies and ontologies on security metrics
* Trade-off analysis and decision-making
* Adaptive metrics approach for measuring risks, threats, operational activities, and the effectiveness of data protection
* Metrics for evaluation and validation of security adaptation
* Evolutionary techniques for developing adaptive security metrics
* Adaptive metric for measuring security level of a real-time system
* Visualizing security metrics
* Methods for analyzing sensitivity and assessing uncertainty in adaptive security
* Techniques for integrating data analytics to support security decision-making and adaptive control
* Optimization and security challenges in IoT-based architectures for eHealth
* Cognitive security capabilities of IoT-based architectures for eHealth
* Evaluation of adaptive security and privacy solutions
* Real-time anomaly detection in communication networks
* Innovative visualization methods for detection of attacks in networks
* Security functionality in network management systems to assist administrators/operators
* SDN-based methods for security monitoring and assurance
* Security issues of SDN-based network control software
* Security assurance for third party control applications in SDN


IMPORTANT DATES
Submission of papers: (May 22)-) Extended until June 7, 2015
Author notification: June 19, 2015
Submission of camera-ready paper: June 22, 2015


SUBMISSION AND PUBLICATION
Authors should submit a workshop paper no longer than seven pages. Papers of 5 pages in length or longer are considered Full Papers. The authors should use the ACM template (http://www.acm.org/sigs/publications/proceedings-templates) for the paper.

The paper should be supplied in MS Word or PDF format to https://easychair.org/conferences/?conf=messa2015

The accepted workshop papers will be published in an ACM digital library. At least one author of all accepted papers must present the paper at the workshop.

ORGANIZERS
Reijo Savola, VTT Technical Research Centre of Finland, Finland
Dr. Antti Evesti, VTT Technical Research Centre of Finland, Finland
Anni Karinsalo, VTT Technical Research Centre of Finland, Finland
Dr. Marco Hoffmann, NOKIA Networks, Germany
Dr. Habtamu Abie, Norwegian Computing Centre, Norway

PROGRAM COMMITTEE

Iris Adam, NOKIA Networks, Germany
Marijke Coetzee, University of Johannesburg, South Africa
Thorsten Holz, Ruhr-Universität Bochum, Germany
Wolfgang Hommel, Leibniz Supercomputing Centre, Germany
Marina Krotofil, Hamburg University of Technology, Germany
Wolfgang Leister, Norwegian Computing Center, Norway
Fabio Martinelli, Institute of Informatics and Telematics, Italy
Mohammad Mozumdar, California State University, Long Beach, USA
Eila Ovaska, VTT Technical Research Centre of Finland, Finland
Ebenezer Paintsil, Verifone, Norway
Stefan Poslad, Queen Mary University of London, UK
Juha Röning, University of Oulu, Finland
Riccardo Scandariato, Katholieke Universiteit Leuven, Belgium
Einar Snekkenes, Gjøvik University College, Norway
Mikko Särelä, Aalto University of Oulu, Finland
Arild Torjusen, Norwegian Computing Center, Norway
Denis Treck, University of Ljubljana, Slovenia
Yan Zhang, Simula Research Laboratory, Norway


ORGANISING PROJECTS
ASSET (asset.nr.no)
SASER-SIEGFRIED (Celtic-Plus Project)



Related Resources

SPAA 2017   ACM Symposium on Parallel Algorithms and Architectures
SPLASH 2017   ACM SIGPLAN conference on Systems, Programming, Languages and Applications: Software for Humanity
SIGCOMM 2017   Conference on Applications, Technologies, Architectures, and Protocols for Computer Communication
PACT 2017   International Conference on Parallel Architectures and Compilation Techniques
ASE 2017   The 32nd IEEE/ACM International Conference on Automated Software Engineering
EuropeanSeC 2017   2017 European Security Conference
ANCS 2017   The 13th ACM/IEEE Symposium on Architectures for Networking and Communications Systems
SPURS 2017   Sound and Practical Unanticipated Reuse of Software - Special Issue of Journal of Software: Evolution and Process
SECURWARE 2017   The Eleventh International Conference on Emerging Security Information, Systems and Technologies
INSERT 2017   1st International Conference on Security, Privacy, and Trust (INSERT'17)