|
Sponsored by Purdue University CERIAS, in
cooperation with North Carolina State University eCommerce
Learning Center,
ACM SIGSOFT & SIGSAC & National Institute of Standards and
Technology.
Security requirements for new eCommerce and Internet applications exceed the
traditional requirements for network security and traditional software
systems. Security requirements are more complex and increasingly critical.
Informally stated and de facto requirements are often of critical importance
in the design and operation of these systems, but are frequently not taken
into account. The second symposium on requirements engineering for
information security invites papers on a diversity of topics, particularly
ones that point out new directions. Theoretical, experimental, and experience
papers are all welcome.
WHO SHOULD ATTEND?
SREIS provides researchers and practitioners from various disciplines with a
highly interactive forum to discuss security and privacy-related
requirements. Specifically, we encourage attendance from those in the fields
of requirements engineering, software engineering, information systems,
information and network security and trusted systems as well as those
interested in approaches to analyzing, specifying, and testing requirements
to increase the level of security provided to users interacting with
pervasive commerce, research and government systems. Some travel funding for
graduate students will be available.
FORMAT
The symposium will consist of a keynote address, presentations of papers,
panels, and tutorials. The goal is to stimulate interaction and thought about
intersecting areas of requirements engineering, security, and policy
research.
TOPICS OF INTEREST INCLUDE, BUT ARE NOT LIMITED TO:
- solutions to known RE problems as
applied to security and privacy
- RE for confidentiality, integrity, and
availability
- industrial problem statements
- generalizations from individual
industrial experiences
- RE for trusted Commercial Off-The-Shelf
(COTS) systems
- empirical studies of industrial RE
practice
- capture and expression of informal and
ad hoc requirements
- managing conflicting requirements of
operational effectiveness and security
- methods for the specification and
analysis of security requirements
- methods for ensuring compliance between
requirements and policies
In Cooperation
With
|
GENERAL
CHAIR
Annie I. Anton, North Carolina State University
PROGRAM CHAIR
Jens Palsberg, Purdue University, CERIAS
LOCAL ARRANGEMENTS CHAIR
Charlene Wallace, North Carolina State University
CORPORATE SPONSORS CHAIR
Julia B. Earp, North Carolina State University
PROGRAM COMMITTEE
Annie I. Anton,North Carolina State University
Martin Feather, NASA Jet Propulsion Laboratory
Cynthia Irvine, Naval Postgraduate School
Somesh Jha, University of Wisconsin
Axel van Lamsweerde, University of Louvain
Robyn Lutz, JPL, Iowa State University
Catherine A. Meadows, Naval Research Laboratory
Jens Palsberg, Purdue University, CERIAS
Colin Potts, Georgia Institute of Technology
Ron Ross,
NIST
Aviel Rubin,
AT&T Research
Eric Yu, University of Toronto
IMPORTANT DATES
- Submission deadline: May 3, 2002
- Notification of authors: June 20, 2002
Information
for authors about how to submit a paper will be available via the symposium
URL: http://www.sreis.org
For additional information contact: sreis-inf@cerias.purdue.edu
NIST NATIONAL FORUM TO FOLLOW SREIS
The SREIS will be followed by the Second Annual Government-Industry Forum on
Strategies for the Development of Security Requirements and Security
Specifications for Critical Information Technologies. The forum, hosted by
the National Institute of Standards and Technology (NIST) will take place on
October 17, 2002 from 9:00 A.M. to 5:00 P.M. For further information, please
contact Dr. Ron Ross at (301) 975-5390 or rross@nist.gov.
|
