Call for Papers
****************************************************
Workshop on Specification and Automated Processing
of Security Requirements
SAPS'05
http://www.lcc.uma.es/SAPS
Long Beach, California, USA, November 7-8, 2005
part of the 20th IEEE International Conference on
Automated Software Engineering
http://www.ase-conference.org
Presentation
------------------------------------------------------
Security and reliability issues are rarely considered at
the initial stages of software development. The erroneous
consideration of security technology as supplementary, and
the lack of integration of security engineering techniques
within software engineering processes have very negative
consequences.
Approaches integrating security issues in software engineering
processes are especially relevant to SAPS. Good security
measures can fail due to errors in design or implementation.
Therefore, automated tools are essential for the analysis and
deployment of secure systems. Comprehensive approaches,
encompassing all phases of development are encouraged.
Furthermore, in the near future, the increasing dynamism,
heterogeneity and complexity of emerging computing paradigms
and environments such as grid computing, mixed-mode systems or
ambient intelligence, along with the disappearing notion of
system boundaries introduced by these paradigms, will make it
impossible for security engineers to foresee all possible
situations that may arise during system operation, therefore
increasing the need for automated support for the processing
of security.
The first edition of SAPS in 2004 focused on the development
of tools to automate software engineering processes with support
for security. Our focus in this edition will be on the tools to
automate processing, validation and monitoring of security
requirements, both during development and during operation of
the system.
The objective of this workshop is to foster exchange of
ideas among practitioners, researchers and industry involved
in the deployment of secure systems. Special emphasis will
be devoted to promote discussion and interaction between
researchers and practitioners focused on both areas
specification and processing of security aspects in software
development.
The exchange of concepts, prototypes, research ideas, and
other results which contribute to the academic arena and
also benefit business and industrial communities, is of
particular interest.
Original papers are solicited for submission to the
workshop related (but not limited) to the following topics
of interest:
- Security requirements specification and analysis
- Formal semantics for security requirements
- Integration of Security engineering into software
engineering processes
- Automated tools supporting integrated security
engineering and software engineering processes
- Security in programming languages
- Mechanisms, tools and models for automated analysis,
configuration and monitoring of security solutions
- Automatic tools for secure software development
- Automatic processing of security policies
- Definition and analysis of security-related semantic models
- Validation of different security properties
- Tools for formal analysis of security properties
- Specification, characterisation and integration of security
elements (patterns, components, mechanisms, etc.)
A volume containing the workshop proceedings with ISSN will
be edited (details TBD)
Important Deadlines
------------------------------------------------------
E-mail of interest by: August 19, 2005
Paper Submission due by: September 5, 2005
Accept/Reject Notification: September 23, 2005
Camera-ready manuscripts due: October 10, 2005
Program Committee
------------------------------------------------------
o Andrew Clark (Queensland University of Technology, Australia)
o Antonio Brogi (Univ. Pisa, Italy)
o Colin Boyd (Queensland University of Technology, Australia)
o Dieter Gollmann (TU Hamburg-Harburg, Germany)
o Fabio Martinelli (CNR - Inst. di Informatica e Telematica, Italy)
o Fabio Massacci (Univ Trento, Italy)
o Jan Jurjens (TU Munchen, Germany)
o Javier Lopez (Univ Malaga, Spain)
o John Mylopoulos (Univ. Toronto, Canada)
o Joseph Schmuller (Univ. of North Florida, USA)
o Juan J. Ortega (Univ Malaga, Spain)
o Kapali Viswanathan (SETS, India)
o Kurt Stirewalt (Michigan State Univ., USA)
o Mario Piattini (Univ. Castilla La Mancha, Spain)
o Matteo Melideo (Engineering Ingegneria Informatica, Italy)
o Ozelin Lopez (ATOS Origin, Spain)
o Sigrid Gurgens (Fraunhofer SIT, Germany)
o Sjouke Mauw (TU Eindhoven, NL)
o Theo Dimitrakos (British Telecom, UK)
o Volkmar Lotz (SAP Research, France)
o Werner Stephan (DFKI, Germany)
Detailed submission instructions
------------------------------------------------------
Submitted papers must not substantially overlap papers that
have been published or that are simultaneously submitted to
a journal or a conference with proceedings. Papers should be
at most 10 pages excluding the bibliography and well-marked
appendices (using 11-point font), and at most 12 pages
total. Committee members are not required to read the
appendices, and so the paper should be intelligible without
them.
To submit a paper, send a plain ASCII text email containing
the title and abstract of your paper, the authors' names,
email and snail mail addresses, phone and fax numbers, and
identification of the contact author to one of the Workshop
co-chairs. All author-related information should be ommitted
in the papers. Attach your paper (as a MIME attachment) in
PDF format to the same email. Do NOT send files produced
using word processing packages (e.g., Microsoft Word or
WordPerfect files). Submissions that do not meet these
guidelines risk rejection without consideration of their
merits.
Contact Information
Interested authors must submit their papers by email to
any of the Workshop Co-Chairs:
Dr. Antonio Mana [log in to unmask]
Dr. Carsten Rudolph [log in to unmask]
|