http://www.chesworkshop.org/ches2013/.
GreenCom 2013
IEEE International Conference on Green Computing and Communications,
Security, Privacy, and Trust Computing Track,
Beijing, China, August 20-23, 2013 .
[posted here 04/01/13]
Computer networks, communication systems, and other IT infrastructures have
caused severe environmental problems by consuming significant amounts of power,
increasing greenhouse gas emissions, and lead to pollution during the production
and disposal. To reduce such environmental problems and create a sustainable
environment, new energy models, algorithms, methodologies, platforms, tools and
systems are pressing. Thus, green computing and communications solutions
should be designed with more renewable energy, higher energy efficiency, lower
greenhouse gas emission, and less harmful materials.
The 2013 IEEE International Conference on Green Computing and Communications (GreenCom 2013)
will be an exciting international forum for scientists, engineers, and researchers to
exchange their novel works regarding advancements in the state-of-art of green
computing and communications, as well as to identify the emerging research topics and
open issues for further researches.
The Security, Privacy, and Trust Computing Track of the conference seeks submissions
from the industry and academia, presenting novel research contributions to
computer security, privacy, and trust management.
Topics of interest include, but are not limited to:
- Coding and cryptography for green communications and computing
- Remote data integrity and possession
- Dependability, availability and forensics in clouds
- Secure cooperative computation
- Private information retrieval from clouds
- Distributed computation and access control on encrypted data
- Security and privacy in vehicular networks
- Privacy enhanced social networks
- Security and privacy in electronic healthcare networks
- Security and privacy in Internet of things
- Privacy in data disclosure and mining
- Green cryptography for resource-constraint information systems
- Secure smart grid technology for future green energy management
- Lightweight cryptography for green computing
- Digital forensics and crimes
- Cloud computing security
- Security policy and privacy requirements
- Cyber security
- Biometrics
- Digital watermarking
- Quantum cryptography
- Physical layer security for communications
- Security algorithms and applications
For more information, please see
http://www.china-iot.net/GreenCom2013.htm.
TGC 2013
8th International Symposium on Trustworthy Global Computing,
Buenos Aires, Argentina, August 30-31, 2013.
[posted here 03/18/13]
The Symposium on Trustworthy Global Computing is an international annual venue
dedicated to safe and reliable computation in the so-called global computers, i.e.,
those computational abstractions emerging in large-scale infrastructures such as
service-oriented architectures, autonomic systems and cloud computing. The TGC
series focuses on providing frameworks, tools, algorithms and protocols for designing
open-ended, large-scaled applications and for reasoning about their behaviour and
properties in a rigorous way. The related models of computation incorporate code
and data mobility over distributed networks that connect heterogeneous devices
and have dynamically changing topologies.
We solicit papers in all areas of global computing, including (but not limited to):
- theories, languages, models and algorithms
- language concepts and abstraction mechanisms
- security, trust, privacy and reliability
- resource usage and information flow policies
- software development and software principles
- model checkers, theorem provers and static analyzers
For more information, please see
http://sysma.lab.imtlucca.it/tgc2013/.
September 2013
ECTCM 2013
1st International Workshop on Emerging Cyberthreats and Countermeasures,
Co-located with ARES 2013,
University Regensburg, Germany, September 2-6, 2013.
[posted here 03/04/13]
The First International Workshop on Emerging Cyberthreats and Countermeasures
aims at bringing together researchers and practitioners
working in different areas related to cybersecurity. After organizing three
informal workshops on Early Warning Systems in IT in the past three years, we
strongly believe that the next step is to give the workshop a more formal
structure in context of an internationally acclaimed scientific conference.
The focus of this year's workshop is on IT Early Warning, Malware Detection
and Analysis, Targeted Attacks, Cryptanalysis, and Privacy Protection.
Contributions demonstrating both current weaknesses and threats as well as new
countermeasures are welcome.
For more information, please see
http://www.ectcm.net.
SeCIHD 2013
3rd IFIP International Workshop on Security and Cognitive Informatics for Homeland Defense,
Held in conjunction with the 8th ARES Conference (ARES 2013),
Regensburg, Germany, September 2-6, 2013.
[posted here 03/18/13]
In the last years significant work has been undertaken by Governments and local agencies
with respect to the protection of critical infrastructures and public-private sector
coordination in the event of a cyber-attack. Threats to cities and their social infrastructures,
e.g. from crime, and terrorism, endanger human life directly and indirectly. Resilience of
critical infrastructures is gaining importance as a core concept to cope with such threats.
In general, this means strengthening social infrastructures to prevent or mitigate such
threats and to consistently deliver the intended services in a trustworthy and "normal"
way even in changing situations. Information and communication infrastructure (ICT) is a
primary part of the social infrastructure and therefore one of the central objects of these
attacks. As a consequence, effective response capabilities must be properly organized and
closely coordinated because, at the time of a cyber-attack, it is not possible to immediately
determine whether the attacker is a script kiddie, an insider, a rogue actor (organized crime,
terrorist organization, or radical), or a nation state.
Unlike traditional Defense categories (i.e., land, air, and sea), the capabilities required to respond to
an attack on critical infrastructures will necessarily involve infrastructure owned and operated by
both the public and the private sector. Exercising for effective digital systems security becomes
thus a crucial task in order to strengthen the resilience of IT systems against arising threats.
Advanced information technologies that are able to analyze and interpret complex patterns or
situations and take the proper decisions in terms on countermeasures the basic building blocks
of the above solutions. In this context, it is worth noting research that combines security and
defense aspects with achievements in designing advanced systems for the acquisition and
sophisticated semantic analysis of complex image patterns and group behaviors. Such
systems use cognitive models of semantic interpretation and can be applied to develop
e.g., algorithms and protocols used for the security of computer systems themselves, but
also to ensure the confidentiality and security of communication networks.
Thus, the aim of this workshop is collecting and discussing new ideas and solutions that can
be used to develop globally understood safe solutions connected with activities to
strengthen national defense capability. The workshop topics include (but are not limited to):
- Homeland Security and Information Processing
- Investigative and Computer System Related Forensic Techniques, Trends and Methods
- Network Forensics, Wireless and Mobile Forensics
- Cyber-Defense Threat Analysis
- Emergency Management, Including Prevention, Planning, Response, and Recovery
- Secure Communications, Cyber-Attack Countermeasures
- Vulnerability Analysis and Countermeasures
- Anomaly Detection
- Information Sharing and Secrecy
- Cryptographic Models for Homeland Defense
- Personal Security and Biometric
- Intelligent Robots and Unmanned Vehicles
- Target and Pattern Recognition
- Sensor and Data Analysis
- Semantic Image and Data Processing
- Information Fusion
- Emerging Threats in Intelligent Energy Systems
- Advanced Vision Algorithms
- Security and Privacy in Ambient Intelligence
- Context and Location-aware Computing
- Embedded Systems in Security
- Knowledge-based Systems for Internet Security
- Security Issues and Protocols for Internet Services
- Privacy and Trust for Internet Services
- Artificial Intelligence and Computational Intelligence
- Cognitive Informatics
- Security and Privacy in Power-Grid Systems
- Cognitive Models of the Brain
- Mathematical Foundations of Computing and Cryptography
- Biologically Inspired Information Systems and Secret Data Management
- Cognitive Image and Scene Understanding
- Intelligent Health Technologies
For more information, please see
http://isyou.info/conf/secihd13/.
DPM 2013
8th International Workshop on Data Privacy Management,
Held in conjunction with ESORICS 2013,
Egham, U.K., September 12-13, 2013.
[posted here 04/15/13]
The aim of this workshop is to discuss and exchange the ideas related
to privacy data management. We invite papers from researchers and
practitioners working in privacy, security, trustworthy data systems
and related areas to submit their original papers in this workshop.
Topics of interest include, but are not limited to the following:
- Privacy Information Management
- Privacy Policy-based Infrastructures and Architectures
- Privacy-oriented Access Control Languages and Models
- Privacy in Trust Management
- Privacy Data Integration
- Privacy Risk Assessment and Assurance
- Privacy Services
- Privacy Policy Analysis
- Lightweight cryptography & Cryptanalysis
- Query Execution over Privacy Sensitive Data
- Privacy Preserving Data Mining
- Hippocratic and Water-marking Databases
- Privacy for Integrity-based Computing
- Privacy Monitoring and Auditing
- Privacy in Social Networks
- Privacy in Ambient Intelligence (AmI) Applications
- Individual Privacy vs. Corporate/National Security
- Code-based Cryptology
- Privacy in computer networks
- Privacy and RFIDs
- Privacy and Big Data
- Privacy in sensor networks
For more information, please see
http://research.icbnet.ntua.gr/DPM2013/.
QASA 2013
2nd International Workshop in Quantitative Aspects in Security Assurance,
Held in conjunction with ESORICS 2013,
Egham, U.K., September 12-13, 2013.
[posted here 04/15/13]
There is an increasing demand for techniques to deal with quantitative
aspects of security assurance at several levels of the development
life-cycle of systems & services, e.g., from requirements elicitation to run-time
operation and maintenance. The aim of this workshop is to bring together
researchers and practitioners interested in these research topics with a
particular emphasis techniques for service oriented architectures. The
scope of the workshop, is intended to be broad, including aspects as
dependability, privacy, risk and trust.
The list of topics includes, but it is not limited to:
- Probabilistic/stochastic model checking
- Quantitative information flow analysis
- Quantitative issues in access and usage control
- Security testing techniques
- Static/dynamic code analysis techniques
- Metrics for security, trust and privacy
- Incremental/modular security assurance analysis
- Process compliance assurance techniques
- Tool support for quantitative security assurance
- Simulation techniques
- Model-driven techniques for security, trust, risk and privacy
- Assurance cases modelling and analysis
For more information, please see
http://www.iit.cnr.it/qasa2013.
CRITIS 2013
8th International Workshop on Critical Information Infrastructures Security,
Amsterdam, The Netherlands, September 16-18, 2013.
[posted here 04/15/13]
The annually held CRITIS conference is devoted to Critical (Information) Infrastructure security,
protection and resilience. Modern societies increasingly depend on critical infrastructures.
Those themselves increasingly
depend on and are entangled with Information and Communication Technologies (ICT). Disruption
or loss of (ICT-based) critical infrastructures may result in serious consequences for the
functioning of the society, the economy, the functioning of governments, the ecology and
social well-being of people, and in the most unfortunate cases loss of human lives, livestock and
other animals. As a consequence, the security, reliability and resilience of these infrastructures
are critical for the society. Critical (Information) Infrastructure Protection (C(I)IP) is therefore
a major objective for governments, companies, operators of these infrastructures and the
worldwide research community. CRITIS 2013 is set to continue a well-established tradition
of presenting innovative research and exploring new challenges for the protection of
critical information-based infrastructures (CIP/CIIP). CRITIS brings together stakeholders
from industry, operators and governments as well as researchers and professionals from
academia, applied research organisations and industry interested in all different aspects
of C(I)IP. One focus of CRITIS 2013 is on the new challenges of cyber resilience of smart
cities and smart mobility, a topic that will be highlighted by thought provoking and
visionary keynote speeches and by conference papers.
For more information, please see
http://www.critis2013.nl.
CMS 2013
14th Joint IFIP TC6 and TC11 Conference on Communications and Multimedia Security,
Magdeburg, Germany, September 25-26, 2013.
[posted here 02/11/13]
The conference provides a forum for engineers and scientists in information security.
Both state-of-the-art issues and practical experiences as well as new trends in these areas
will be once more the focus of interest just like at preceding
conferences. The conference will address in particular security and
privacy issues in mobile contexts, web services (including social
networking) and ubiquitous environments.
We solicit papers describing original ideas and research results on
topics that include, but are not limited to: applied cryptography,
biometrics, forensics, secure documents and archives, multimedia systems
security, digital watermarking, distributed DRM policies, attack
resistant rndering engines, adaptive anomaly detection, censorship
resistance, risk management, mobility and security/privacy, mobile
identities, privacy enhanced identity management, security/privacy
policies and preferences, social networks security/privacy,
security/privacy in geo-localized applications, security/privacy in
VoIP`, security policies (including usage control), web services
security, economics of network and information security (NIS), SOA
security, ubiquitous and ambient computing security, cloud computing
security/privacy, wireless and ad hoc network security, RFID tags and
(multimedia) sensor nodes security, security technology effectiveness,
incentivizing security.
For more information, please see
http://www.cms2013.de.
SECURECOMM 2013
9th International ICST Conference on Security and Privacy in
Communication Networks,
Sydney, Australia, September 25-27, 2013.
[posted here 03/18/13]
Securecomm seeks high-quality research contributions in the form of well-developed
papers. Topics of interest encompass research advances in ALL areas of secure
communications and networking. Topics in other areas (e.g., formal methods, database
security, secure software, theoretical cryptography) will be considered only if a clear
connection to private or secure communication/networking is demonstrated.
Topics of interest include, but are not limited to, the following:
- Security & Privacy in Wired, Wireless, Mobile, Hybrid, Sensor, Ad Hoc networks
- Network Intrusion Detection and Prevention, Firewalls, Packet Filters
- Malware, botnets and Distributed Denial of Service
- Communication Privacy and Anonymity
- Network and Internet Forensics Techniques
- Public Key Infrastructures, Key Management, Credential Management
- Secure Routing, Naming/Addressing, Network Management
- Security & Privacy in Pervasive and Ubiquitous Computing, e.g., RFIDs
- Security & Privacy for emerging technologies: VoIP, peer-to-peer and overlay
network systems
For more information, please see
http://securecomm.org/2013/.
SeTTIT 2013
Workshop on Security Tools and Techniques for Internet of Things,
Co-located with the BODYNETS 2013 conference,
Boston, Massachusetts, USA, September 30 - October 2, 2013.
[posted here 03/18/13]
E-health systems have the objective to continuously monitor the state of patients
in order to increase knowledge and understanding of their physical status. Being a
system of systems, the Internet of Things (IoT) has to master the challenge of
integrating heterogeneous systems across technology boundaries. Timely delivery of
observation data is a key aspect to identifying potential diseases and anomalies. IoT
systems are vulnerable to attacks since communication is mostly wireless and thus
vulnerable to eavesdropping, things are usually unattended and thus vulnerable to
physical attacks, and most IoT elements are short on both the energy and computing
resources necessary for the implementation of complex security-supporting schemes.
Among the plethora of applications that can benefit from the IoT, the workshop will
have a particular focus on security aspects in eHealth and in the broad-sense of
well-being. Security aspects in other application domains of the IoT are also of interest.
The workshop will address security issues that are particular to the context of using IoT
for eHealth including threat modeling, risk assessment, privacy, access control, and
fault-tolerance. Theoretical, modeling, implementation, and experimentation issues will
be discussed to build an accurate general view on the security of medical BANs. One
of the major challenges that will be underlined by the workshop participants is the
combination of different security models needed for the sub-networks of the IoT (e.g.,
BAN, PAN, LAN, MANET) with consideration of the severe computational, storage, and
energy limitations of the elementary smart nodes. We encourage contributions describing
innovative work addressing the use of information and communication technologies in
medical applications. Topics of interest include, but are not limited to:
- Definition of accurate metrics to assess the threats and the risks associated to IoT for eHealth
- Identification and description of new attack scenarios that are specific to IoT architectures
- Context-awareness for IoT security in eHealth
- Soft trust management in IoT
- Risk-based adaptive security for IoT
- Analytics and predictive models for adaptive security in IoT
- Adaptive security decision-making models for IoT
- Evaluation and validation models for adaptive security in IoT
- Lightweight cryptographic protocols for IoT
- Investigation of the security properties that should be fulfilled by the transmission
of patient data across body area networks
- Designing secure heterogeneous BAN architectures for eHealth applications
- Implementing practical testbeds that allow the analysis of the security performance of BANs
- Monitoring the security level of the eHealth applications relying on IoT
- Analyzing the results of experiments conducted using real patient data and studying the security
performance of the associated architectures
For more information, please see
http://settit.bodynets.org/2013/show/home.
October 2013
CNS 2013
1st IEEE Conference on Communications and Network Security,
Washington D.C., USA, October 14-16, 2013.
[posted here 10/08/12]
Cyber security has become an important research and development area
for academia, government, and industry in recent years. As government and
industry investment in cyber security research continues to grow, there will be
a dramatic increase in the amount of new results generated by the research
community, which must be disseminated widely amongst the research community
in order to provide the peer review feedback that is needed to ensure that
high-quality solutions that address important and emerging security issues are
developed. As a leading professional society focusing on communications technologies,
IEEE Communications Society (ComSoc) has identified the need for a high-quality
security conference that would focus on communications-oriented aspects of security.
IEEE ComSoc has thus decided to launch a new conference dedicated to Communications
and Network Security. This new conference is positioned to be a core ComSoc
conference (at a level comparable to IEEE INFOCOM ) and will serve as a premier forum
for cyber security researchers, practitioners, policy makers, and users to exchange ideas,
techniques and tools, raise awareness, and share experience related to security and
privacy. IEEE CNS seeks original high-quality technical papers from academia, government,
and industry. Topics of interest encompass all practical and theoretical aspects of
communications and network security, all the way from the physical layer to the various
network layers to the variety of applications reliant on a secure communication substrate.
Submissions with main contribution in other areas, such as information security, software security,
system security, or applied cryptography, will also be considered if a clear connection to
secure communications/networking is demonstrated. Particular topics of interest include,
but are not limited to:
- Security and Privacy in the Internet, peer-to-peer networks, overlay networks
- Security and Privacy in Wi-Fi, Wi-Max, ad hoc, mesh, sensor, and RFID networks
- Security and Privacy in emerging technologies: social networks, cognitive radio networks,
disruption/delay tolerant networks, vehicular networks, cloud computing, smart grid
- Cross-layer methods for enhancing security
- Information-theoretic security
- Anonymization and privacy in communication systems
- Traffic analysis, location privacy and obfuscation of mobile device information
- Physical layer security methods: confidentiality and authentication
- Secure routing, network management
- Intrusion detection
- Computer and network forensics
- Vulnerability, exploitation tools, Malware, Botnet, DDoS attacks
- Key management and PKI
- Security metrics and performance evaluation, traffic analysis techniques
- Web, e-commerce, m-commerce, and e-mail security
- Social, economic and policy issues of trust, security and privacy
- Ensuring the availability of communications, survivability of networks in
the presence of denial of service
- Jamming and jamming-resistance
- Multipath routing around network holes
For more information, please see
http://www.ieee-cns.org.
CRiSIS 2013
8th International Conference on Risks and Security of Internet and Systems,
La Rochelle, France, October 23-25, 2013.
[posted here 03/25/13]
The topics addressed by CRiSIS range from the analysis of risks, attacks to
networks and system survivability, as well as security models, security mechanisms
and privacy enhancing technologies. Prospective authors are invited to submit
research results as well as practical experiment or deployment reports. Industrial
papers about applications and case studies, such as tele medicine, banking,
e-government and critical infrastructure, are also welcome. The list of topics
includes but is not limited to:
- Analysis and management of risk
- Attacks and defenses
- Attack data acquisition and network monitoring
- Cryptography, Biometrics, Watermarking
- Dependability and fault tolerance of Internet applications
- Distributed systems security
- Embedded system security
- Empirical methods for security and risk evaluation
- Hardware-based security and Physical security
- Intrusion detection and Prevention systems
- Organizational, ethical and legal issues
- Privacy protection and anonymization
- Risk-aware access and usage control
- Security and risk assessment
- Security and risks metrics
- Security and dependability of operating systems
- Security and safety of critical infrastructures
- Security and privacy of peer-to-peer system
- Security and privacy of wireless networks
- Security models and security policies
- Security of new generation networks, security of VoIP and multimedia
- Security of e-commerce, electronic voting and database systems
- Security of social networks
- Smartphone security and privacy
- Traceability, metrology and forensics
- Trust management
- Use of smart cards and personal devices for Internet applications
- Web and cloud security
For more information, please see
http://secinfo.msi.unilim.fr/crisis2013/.
November 2013
CCS 2013
20th ACM Conference on Computer and Communications Security,
Berlin, Germany, November 4-8, 2013.
[posted here 03/18/13]
The ACM Conference on Computer and Communications Security (CCS) is the flagship
annual conference of the Special Interest Group on Security, Audit and Control (SIGSAC)
of the Association for Computing Machinery (ACM). The conference brings together
information security researchers, practitioners, developers, and users from all over the
world to explore cutting-edge ideas and results. It provides an environment to conduct
intellectual discussions. From its inception, CCS has established itself as a high standard
research conference in its area.
For more information, please see
http://www.sigsac.org/ccs/CCS2013/.
HST 2013
13th annual IEEE Conference on Technologies for Homeland Security,
Waltham, Massachusetts, USA, November 12 - 14, 2013.
[posted here 01/21/13]
The 13th annual IEEE Conference on Technologies for Homeland Security (HST '13), will be
held 12 - 14 November will bring together innovators from leading academic, industry, business,
Homeland Security Centers of Excellence, and government programs to provide a forum to
discuss ideas, concepts, and experimental results. Produced by IEEE with technical support
from DHS S&T, IEEE Boston Section, and IEEE-USA and organizational support from MIT
Lincoln Laboratory, Raytheon, Battelle, and MITRE, this year's event will once again showcase
selected technical paper and posters highlighting emerging technologies in the areas of Cyber
Security, Attack and Disaster Preparation, Recovery, and Response, Land and Maritime
Border Security and Biometrics & Forensics.
For more information, please see
http://www.ieee-hst.org.
IWSEC 2013
8th International Workshop on Security,
Okinawaken Shichouson Jichikaikan, Japan, November 18-20, 2013.
[posted here 03/18/13]
Original papers on the research and development of various security topics,
as well as case studies and implementation experiences, are solicited for
submission to IWSEC 2013. Topics of interest for IWSEC 2013 include but are
not limited to:
- Anonymity
- Application Security
- Authentication, Authorization and Access Control
- Biometrics
- Block/Stream Ciphers
- Cloud Computing Security
- Cryptographic Implementations and their Analysis
- Cryptographic Protocols
- Cryptanalysis
- Data and System Integrity
- Database Security
- Digital Forensics
- Digital Signatures
- E-business/e-commerce/e-government Security
- Hash Functions
- Information Hiding
- Information Law and Ethics
- Intellectual Property Protection
- Intrusion Prevention and Detection
- Malware Prevention and Detection
- Mobile System Security
- Network Security
- Privacy Preserving Systems
- Public Key Cryptosystems
- Quantum Security
- Risk Analysis and Risk Management
- Security Architectures
- Security for Consumer Electronics
- Security for Critical Infrastructures
- Security Management
- Secure Multiparty Computation
- Security for Ubiquitous/Pervasive Computing
- Smart Card and RFID Security
- Software Security
- System Security
- Web Security
For more information, please see
http://www.iwsec.org/2013/.
ICICS 2013
15th International Conference on Information and Communications Security,
Beijing, China, November 20-22, 2013.
[posted here 02/11/13]
The 2013 International Conference on Information and Communications Security
will be the 15th event in the ICICS conference series, started in 1997, that brings together
individuals involved in multiple disciplines of Information and Communications Security in
order to foster exchange of ideas.
Original papers on all aspects of Information and Communications Security are solicited for
submission to ICICS 2013. Areas of interest include, but are not limited to:
- Access control
- Information Hiding and Watermarking
- Anonymity
- Intellectual Property Protection
- Anti-Virus and Anti-Worms
- Intrusion Detection
- Authentication and Authorization
- Key Management and Key Recovery
- Biometric Security
- Language-based Security
- Cloud Security
- Network Security
- Computer / Digital Forensics
- Operating System Security
- Data and System Integrity
- Privacy Protection
- Database Security
- Risk Evaluation and Security Certification
- Distributed Systems Security
- Security for Mobile Computing
- Electronic Commerce Security
- Security Models
- Engineering issues of Crypto/Security Systems
- Security Protocols
- Fraud Control
- Smartphone Security
- Grid Security
- Trusted and Trustworthy Computing
For more information, please see
http://icsd.i2r.a-star.edu.sg/icics2013/.
