CALL FOR PARTICIPATION ****************************************************************************** 8th International Workshop on Security Measurements and Metrics (MetriSec 2012) Lund, Sweden -- September 21, 2012 http://metrisec2012.cs.nku.edu/ ******************************************************************************
** Registration now open ABOUT THE CONFERENCE MetriSec is the annual research workshop on security metrics and measurements. It is affiliated with the International Symposium on Empirical Software Engineering and Measurement (ESEM), attracting a wide international audience from both the academic and industrial communities. The 8th International Workshop on Security Measurements and Metrics (MetriSec 2012) will be held in Lund, Sweden on September 21, 2012. The MetriSec 2012 workshop is organized as a 1-day event featuring: - a keynote by Peter Gutmann on "From Revenue Assurance to Assurance: The Importance of Measurement in Computer Security" - a panel on "Data Sources in Computer Security and How Much to Trust Them" - four research papers REGISTRATION Registration information is available at the ESEM registration page: http://esem.cs.lth.se/esem2012/registration.shtml KEYNOTE SPEAKER - Prof. Peter Gutmannn University of Auckland - Auckland, New Zealand See http://blogs.ethz.ch/csg/2012/07/09/come-to-metrisec-2012-part-1/ for more details on the keynote talk. LIST OF ACCEPTED PAPERS - Comparing and applying attack surface metrics by Jeffrey Stuckman and James Purtilo - Development of Qualification of Security Status Suitable for Cloud Computing System by Satoshi Kai; Tomohiro Shigemoto; Tetsuro Kito; Satoshi Takemoto; and Tadashi Kaji - Predicting vulnerable classes in an Android application by Riccardo Scandariato and James Walden - Software Vulnerability Prediction using Text Analysis Techniques by Aram Hovsepyan; Riccardo Scandariato; Wouter Joosen; and James Walden PANEL The panel "Data Sources in Computer Security and How Much to Trust Them" at MetriSec will focus on problems with data sources for empirical studies about computer security, including completeness, bias, and stability of data sources like the NVD. Participants will include Laurie Williams and Peter Gutmann. See https://blogs.ethz.ch/csg/2012/07/10/come-to-metrisec-2012-part-2/ for more information. MORE INFORMATION Additional information about the workshop can be found at: http://metrisec2012.cs.nku.edu/ _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. Follow KRvW Associates on Twitter at: http://twitter.com/KRvW_Associates _______________________________________________