posted by user: usenixcfp || 1405 views || tracked by 2 users: [display]

CSET 2010 : 3rd Workshop on Cyber Security Experimentation and Test

FacebookTwitterLinkedInGoogle

Link: http://www.usenix.org/events/cset10/cfp/
 
When Aug 9, 2010 - Aug 9, 2010
Where Washington, DC
Submission Deadline May 24, 2010
Notification Due Jun 30, 2010
Final Version Due Jul 15, 2010
 

Call For Papers

Overview

Effective cyber security experimentation on network testbeds is challenging for a number of reasons:

* Scale: Experiments may need to be quite large and complex to accurately portray the phenomenon being investigated.
* Multi-party nature: Interesting experiments include humans, drawn from several logical or physical parties, who either collaborate or compete with each other.
* Risk: Cyber security experiments naturally carry significant risk if not properly contained and controlled. At the same time, these experiments may well require some degree of interaction with the larger world to be useful.
* Realism: Experiments must faithfully recreate the relevant features of the phenomena they investigate in order to obtain correct results, yet data about threats and the Internet landscape is sparse and often must undergo transformations to reduce scale and sensitivity before being ported to testbeds. Hence careful reasoning about "realism" is required.
* Rigor: Repeatability and correctness must be ensured in any scientific experimentation. These are extremely hard to achieve on distributed network testbeds, due to testbed dynamics, sharing and unpredictability, and experimentation scale and complexity that overwhelm humans.
* Setup/scenario complexity: Testbed experiments are very complex and evolve over time. Time investment needed for setup and manipulation of experiments that are realistic, correct, and repeatable is too large for a single user and requires community involvement. Tools and practices for sharing experiments and their components are lacking.

Meeting these challenges requires both transformational advance in capability and transformational advance in usability of the underlying research infrastructure. The 3rd Workshop on Cyber Security Experimentation and Test (CSET '10) invites submissions on the science, design, architecture, construction, operation, and use of cyber security experiments in network testbeds and infrastructures. While we are particularly interested in works that relate to emulation testbeds, we invite all work relevant to cyber security experimentation and evaluation (e.g., simulation, deployment, traffic models).

Topics

Topics of interest include but are not limited to:

* Science of security/testbed experimentation
o Data and tools to achieve realistic experiment setup/scenarios
o Diagnosis of and methodologies for dealing with experimental artifacts
o Support for experimentation on a large scale (virtualization, federation, high fidelity scale-down)
o Tools and methodologies to achieve, and metrics to measure, correctness, repeatability, and sharing of experiments
* Testbeds and methodologies
o Tools, methodologies, and infrastructure that support risky experimentation
o Support for experimentation in emerging security topics (cyber-physical systems, wireless, botnets, etc.)
o Novel experimentation approaches (e.g., coupling of emulation and simulation)
o Experience in designing or deploying secure testbeds
o Instrumentation and automation of experiments; their archiving, preservation, and visualization
o Fair sharing of testbed resources
* Hands-on security education
o Experiences teaching security classes that use hands-on security experiments for homework, in-class demonstrations, or class projects
o Experiences from red team/blue team exercises

Submissions

Research submissions must have a separate section labeled "Methodology" in which they clearly identify their research hypothesis and tests designed to prove/disprove it. Submissions that recount experiences (e.g., from education or testbed deployment) must have a separate section labeled "Lessons Learned" where they draw conclusions from their experience and generalize it to other environments.

Submissions must be 6–8 pages long including tables, figures, and references. Text should be formatted in two columns on 8.5" x 11" paper using 10 point type on 12 point leading ("single-spaced"), with the text block being no more than 6.5" wide by 9" deep. Text outside the 6.5" x 9" block will be ignored.

Submissions must be in PDF and must be submitted via the Web submission form, which will be available here soon.

All papers will be available online to registered attendees before the workshop. If your accepted paper should not be published prior to the event, please notify production@usenix.org. The papers will be available online to everyone beginning on the day of the workshop, August 9, 2010.

Simultaneous submission of the same work to multiple venues, submission of previously published work, or plagiarism constitutes dishonesty or fraud. USENIX, like other scientific and technical conferences and journals, prohibits these practices and may take action against authors who have committed them. See the USENIX Conference Submissions Policy for details. Questions? Contact your program co-chairs, cset10chairs@usenix.org, or the USENIX office, submissionspolicy@usenix.org.

Papers accompanied by nondisclosure agreement forms will not be considered. Accepted submissions will be treated as confidential prior to publication on the USENIX CSET '10 Web site; rejected submissions will be permanently treated as confidential.

Related Resources

DMMLACS 2022   3rd International Special Session on Data Mining and Machine Learning Applications for Cyber Security
CSW 2022   2022 International Workshop on Cyber Security (CSW 2022)
EvoCompAISecurity&Privacy 2022   Evolutionary Computing for AI-Driven Security and Privacy: Advancing the state-of-the-art applications
IEEE COINS 2022   IEEE COINS 2022: Hybrid (3 days on-site | 2 days virtual)
CyberSciTech 2022   The 7th IEEE Cyber Science and Technology Congress
ICIMP 2022   The Seventeenth International Conference on Internet Monitoring and Protection
DATE 2022   Design, Automation, and Test in Europe
CEVVE 2022   2022 International Conference on Electric Vehicle and Vehicle Engineering (CEVVE 2022)
AST 2022   3rd ACM/IEEE International Conference on Automation of Software Test
NISecurity 2022   2022 International Conference on Network and Information Security (NISecurity 2022)