[TYPES/announce] HotSpot: Hot Topics in the Principles of Security and Trust

[Joshua Guttman]

[ The Types Forum (announcements only),
 http://lists.seas.upenn.edu/mailman/listinfo/types-announce ]

[ type-oriented theories have played a
  big role in the principles of security and
  trust in the past, and we welcome work
  in this area to HotSpot!  --Joshua
]


HotSpot, which we intend as a blend of invited and
contributed papers, has now confirmed a list of
excellent invited speakers, grouped into three
areas:

Privacy and quantitative information flow
  Giovanni Cherubin (EPFL)
  Pasquale Malacaria (QMUL)

Secure Compilation
  Catalin Hritcu (INRIA)
  Frank Piessens (KU Leuven)

Voting protocols and privacy-type properties
  Steve Kremer (INRIA)
  Carsten Schürmann (ITU Copenhagen)

We're looking for a similar number of contributed
talks to fill out the day.  They may be on related
topics, or range across other aspects of the
principles of security and trust.

This is shaping up to be a very promising exchange
of ideas on security and trust principles.  We'd
love to have your submission for a talk about the
work you're most interested in right now.

Talks may cover work published elsewhere, or work
to be published elsewhere.  Alternately, if you'd
like your paper to be published as a HotSpot paper,
we can offer slots in the IEEE Xplore digital
library area for the IEEE Euro S workshops.  The
deadline for submission is:

28 February

All the details are below.  See also
http://hotspot.compute.dtu.dk

Looking forward to the event; please join in!

Joshua and Sebastian






=
HotSpot 2020:
6th Workshop on
Hot topics in the Principles of Security and Trust
Affiliated with Euro S 2020, 15th of June 2020 in Genova, Italy
http://hotspot.compute.dtu.dk
Organized by the Theory of Security working group IFIP WG 1.7.
=

Aim and scope
=

The principles of security and trust remain an area of intense and
creative work.  This work is focused primarily on defining security
and trust goals, developing methods to verify the systems meet those
goals, and to synthesize systems that meet those goals by
construction.

The areas of interest for HotSpot cut across many application areas,
including hardware-software connections, distributed and cloud
systems, big data, machine learning for (and against) security and
privacy, and single-purpose systems such as voting, electronic
currency and smart contracts. The areas of interest are unified
however by a focus on rigorous models and reasoning, clear semantics,
and a balance between proof and empirical methods.

Format
==

The one-day workshop will be divided into a sequence of four main
sessions.  Each session will be devoted to a set of talks on related
topics, both with invited talks and submitted papers. The sessions are

1. Privacy and quantitative information flow
   (C Palamidessi)
2. Voting protocols and privacy-type properties
   (P Y A Ryan, S Mödersheim)
3. Secure compilation (P Degano)
4. Open session

Submissions on all formally-grounded topics related to security,
privacy and trust are welcome. They can either be

(a) an informal submission, consisting of an abstract or a paper that
may appear formally elsewhere.

(b) a full submission, to be included in an IEEE Xplore volume
accompanying the main IEEE EuroS 2020 proceedings.  See submission
instructions on our website: http://hotspot.compute.dtu.dk

PC
==

Catherine Meadows
Catuscia Palamidessi
Jan Juerjens
Joshua Guttman (co-chair)
Matteo Maffei
Peter Y A Ryan
Pierpaolo Degano
Sebastian Mödersheim (co-chair)
Jean-Jacques Quisquater
Steve Schneider
Veronique Cortier

Important Dates
===

Workshop papers submission: February 28, 2020

Workshop notification date: April 12, 2020

Workshop date: June 15, 2020

Submission instructions
===

See http://hotspot.compute.dtu.dk

--
Who sups with the devil should bring a long spoon.

[TYPES/announce] CFP: 1st IEEE International Workshop on Cyber Resilience Economics

[Joshua Guttman]

[ The Types Forum (announcements only),
 http://lists.seas.upenn.edu/mailman/listinfo/types-announce ]

CALL FOR PAPERS:
1st IEEE International Workshop on Cyber Resilience Economics

This workshop will be co-located with QRS 2016
(http://paris.utdallas.edu/qrs16/), the 2016 IEEE international
conference on Software Quality, Reliability, and Security

Vienna, Austria August 1- 3, 2016.

Background and Scope:

Cyber economics drives many of the decisions related to cyber security
by both the defenders and attackers.  It determines on the defensive
side the technologies and procedures implemented to prevent and
respond to cyber-attacks.  On the offensive side, it not only
determines the type of attack but also the effort expended to ensure
its success.  In short, it determines the asymmetric balance between
the attackers and defenders.

The Cyber Resiliency Economics workshop will explore effects of cyber
economics on this asymmetric balance and examine approaches to
shifting adversaries' current advantage in cyber conflicts in favor of
defenders.  It will bring together a diverse group of experts to
advance the concepts and application of cyber economics as related to
asymmetric advantage and cyber resiliency.  This includes foundational
and applied advances in economics, its effects on asymmetry and
resiliency driving the essential system requirements for cyber systems
including traditional IT, cloud platforms, cyber-physical systems, and
critical infrastructure.  This will serve to accelerate the
recognition, adoption and application of cybersecurity resilience
within industry, government and academia by addressing the key
concerns of how these techniques and technologies can be realized
within the practical constraints of cost, risk, and benefit.

Information for Authors:

We are currently seeking manuscripts for a ½ day workshop that will be
a forum to discuss recent research in areas associated with cyber
resilience economics.  Manuscripts should be submitted in the IEEE
standard conference format of 8 pages maximum in the following topics
of interest:

• Foundations of asymmetric cyber advantage
• Defining practical cyber resiliency
• Technical & architectural approaches to gaining asymmetric advantage
• Metrics, measures, and economics of cyber resiliency & asymmetry
• Optimal balance between resiliency and security
• Adversary economics: assessing the value of impacting the attacker
• Frameworks for ROI analysis (cost, risk, benefit) to guide
  technology investment (research, development, and utilization)
• Integrated analyses of cyber resiliency & asymmetry with
  co-dependent infrastructures (e.g., power)
• Cyber resiliency related tools that are guided by economic factors
  for defender and/or adversary
• Use cases or case studies for defender and/or adversary that include
  economic factors

Chairs:
Nick Multari (PNNL) nick.mult...@pnnl.gov
Jeffrey Picciotto (MITRE) j...@mitre.org

Key Dates:
Manuscripts Due: April 22, 2016
Author Notification: May 25, 2016
Camera-ready and author registration due: June 10, 2016
Conference dates: August 1-3, 2016

URLs:
CRE Workshop:  http://paris.utdallas.edu/cre16/
CRE Submissions:  http://banana.utdallas.edu/qrs2016/start/www/CRE2016/
QRS Conference: http://paris.utdallas.edu/qrs16/