posted by user: secse || 1230 views || tracked by 3 users: [display]

CloudIM 2016 : Special Session on Incident Management in Cloud Computing


When Apr 23, 2016 - Apr 25, 2016
Where Rome, Italy
Submission Deadline Feb 10, 2016
Notification Due Feb 24, 2016
Final Version Due Mar 3, 2016
Categories    cloud   security   incident management

Call For Papers

Outsourcing computing and storage to the cloud does not eliminate the need for handling of information security incidents. It is not possible to create a computer system that is 100% secure, which implies that if there is someone who sees the value of breaking into your systems, they will eventually succeed – and you must therefore assume that information security incidents will take place in your system.
The handling of incidents in the cloud is difficult because of long provider chains; more than one provider may be involved in in the production of a service, and there is often a large distance (physical and logical) to the provider, and it is consequently difficult to involve the provider when something happens. This also means that you do not necessarily have access to forensics; cloud solutions are often based on multi-tenancy, which means that data from multiple clients could potentially exist on a given infrastructure, and it will not be acceptable to disclose (e.g.) a raw dump from a hard drive in this case. There are also unclear legal restrictions on data originating from one jurisdiction (e.g., Norway) but stored in another (e.g., USA).
With many providers involved in a given service offering, inter-provider collaboration in handling of incidents in the cloud can be a major challenge, but this is a prerequisite for ensuring the accountability of the cloud service providers.

Suggested topics include (but are not limited to):
• Incident detection in the Cloud
• Incident handling in the Cloud
• Communication of incidents along cloud provider chains
• Cloud Forensics
• Logging for cloud incident investigations
• Incident handling for IoT/Cloud convergence

See web link for more info.

Related Resources

ICIEM 2016   International Conference on Integrated Environmental Management for Sustainable Development
CCGRID 2017   17th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing
CIKM 2017   The 26th 2017 ACM Conference on Information and Knowledge Management
IEEE TDSC Journal SI 2016   IEEE TDSC Special Issue on Data-Driven Dependability and Security
IPMU 2018   17th Information Processing and Management of Uncertainty in Knowledge-Based Systems Conference
ICCCRI 2017   5th International Conference on Cloud Computing Research and Innovation (ICCCRI 2017)
AsiaCCS 2017   Call for paper: ACM Asia Conference on Computer and Communications Security
ICISSP 2017   3rd International Conference on Information Systems Security and Privacy
ICCT-IEEE 2017   17th IEEE International Conference on Communication Technology(ICCT 2017)
AIP Special Issue 2016   Journal Acta Informatica Pragensia - Special Issue on Systems