COMPSAC 2007

COMPUTING, SOFTWARE, CRITICAL INFRASTRUCTURE AND APPLICATIONS

31st Annual IEEE International Computer Software and Applications Conference

Beijing, July 23-27, 2OO7

The Second International Workshop on Security, Trust and Privacy for Software Applications

2nd IEEE International Workshop on
Security, Trust, and Privacy for Software Applications (STPSA 2007)

in conjunction with IEEE COMPSAC 2007
Beijing, China , July 23-27, 2007

MOTIVATION

Information security has become a major concern for both pervasive and non-pervasive software applications. Software systems must be engineered with reliable protection mechanisms with respect to security, privacy, and trust, while still delivering the expected value of the software to their customers. The traditional approaches to secure a system (e.g., IDS, firewalls) are no longer sufficient to address many security, trust, and privacy (STP) issues. These issues should be addressed by building more effective STP-aware software applications. The principal obstacle in developing STP-aware software is that current software specification, design, implementation, and testing practices do not include adequate methods and tools to achieve security, trust, and privacy goals.

As most systems now are Internet-based, the number of attackers is increased dramatically and threat scenarios have changed. Traditional security measures do not fit well for the software of pervasive applications. Since location and contexts are key attributes of pervasive applications, the privacy issues need to be handled in a novel manner than traditional software applications. The devices in pervasive computing leave and join in ad hoc manner in the pervasive network. These create a need for new trust models for pervasive computing applications. In this workshop, we will also welcome papers on the challenges and requirements of security, privacy, and trust for pervasive software applications.

This workshop will focus on techniques, experiences and lessons learned with respect to the state of art for the security, trust, and privacy aspects of both pervasive and non-pervasive software applications along with some open issues.

SCOPE OF THE WORKSHOP

Topics of interest include, but are not limited to, the following:

Security, trust, and privacy specific software development practices
Security, trust, and privacy requirements elicitation and specification
Models and languages for STP-aware software specification and design
Architecture for STP-aware software development
STP challenges for pervasive software applications
Testing security, trust, and privacy properties of both pervasive and non-pervasive software
STP management and usability issues in software applications
User interfaces for STP-aware pervasive and non pervasive software
Software reengineering for security, trust, and privacy for both pervasive and non pervasive applications
Tradeoffs among security, privacy, trust, and other criteria
STP challenges in e-services, e.g. e-health, e-government, e-banking, e-commerce, e-marketing and other web-based and pervasive applications
STP challenges in mobile software applications
STP issues in sensor based software applications
User interfaces for secure and privacy-aware pervasive computing applications
STP-aware service discovery mechanisms for pervasive computing environments
Models for ensuring security, trust, and privacy in pervasive software applications
STP issues for handheld device software applications
Teaching STP-aware software development
Experience reports on developing STP-aware software

IMPORTANT DATES

March 20, 2007 deadline for paper submission
April 16, 2007 notification of acceptance
April 30, 2007 Camera-ready and author registration due date

SUBMISSION

Papers must be submitted electronically via the SPTPA 2007 Submission Page. The format of submitted papers should follow the guidelines for the IEEE conference proceedings. All papers will be carefully reviewed by at least three reviewers. Papers can be submitted as regular papers (six pages), and the acceptance will depend on reviewer feedback. Accepted papers will be published in the workshop proceedings of the 31st IEEE Computer Software and Applications Conference (COMPSAC 2007) by IEEE Computer Society Conference Publishing Services (CPS). All CPS Publications are captured in the online IEEE Digital Library, and professionally indexed through INSPEC and EI Index (Elsevier's Engineering Information Index). At least one of the authors of each accepted paper or fast abstract must register as a full participant of the workshop to have the paper or fast abstract published in the proceedings.

WORKSHOP ORGANIZERS

Program Co-Chairs

Sheikh Iqbal Ahamed
Dept. of Math, Statistics, and Computer Science, Marquette University
Milwaukee, Wisconsin 53201, USA

Mohammad Zulkernine
School of Computing, Queen's University, Kingston, Ontario,
Canada K7L 3N6

Program Committee

Umesh Bellur, IIT Bombay, India
John Buford, Panasonic, USA
Ying Cai, Iowa State University, USA
Tadashi Dohi, Hiroshima University, Japan
Philip Fong, University of Regina, Canada
Vahid Garousi, University of Calgary, Canada
Neelam Gupta, University of Arizona, USA
Christian Hauser, University of Stuttgart, Germany
Raquel L. Hill, Indiana University, USA
Andreas Holzinger, University of Graz, Austria
Patrick Hung, Univ. of Ontario Inst. of Tech., Canada
Min-Shiang Hwang. National Chung Hsing Univ., Taiwan
Anwar Haque, Bell Canada, Hamilton, Canada
Tom Karygiannis, NIST, USA
Achilles Kameas, Hellenic Open University, Greece
Mujtaba Khambatti, Microsoft Corporation, USA
Zakaria Maamar, Zayed University, UAE
Antonio Mana Gomez, University of Malaga, SPAIN
Kiran Mudiam, Motorola Corporation, USA
Jalal Al-Muhtadi, King Saud University, Saudi Arabia
Nanjangud Narendra, IBM Corporation , India
George Roussos, University of London, UK
Mukesh Singhal, University of Kentucky, USA
Issa Traore, University of Victoria, Canada
Miroslav Velev, Consultant, USA
George Yee, NRC Canada
Wang Yu, Auburn University, USA
Lingyu Wang, Concordia University, Canada
Stephen Weis, MIT, USA
Wensheng Zhang. Iowa State University, USA

GENERAL INQUIRIES

For updated information, please contact the Program Co-Chairs: iq@mscs.mu.edu or mzulker@cs.queensu.ca