-------- Original-Nachricht --------
Betreff: [WI] IEEE 2013 International Workshop on Service Security and Assurance Perspectives (WOSSAP) - DEADLINE EXTENSION: APRIL 1, 2013
Datum: Thu, 21 Mar 2013 18:53:28 +0100
Von: Fulvio Frati <fulvio.frati@unimi.it>
An: wi@lists.uni-karlsruhe.de


[Apologies if you receive multiple copies of this Call For Paper]

 

****************************************************************************************

IEEE 2013 International Workshop on Service Security and Assurance Perspectives (WOSSAP)

 

One day between June 27 and July 2, 2013,

at Santa Clara Marriott, CA, USA (Center of Silicon Valley)

within the 2013 IEEE 9th World Congress on Services.

 

ttp://proteus.lcc.uma.es/wossap13

****************************************************************************************

 

Call for Papers

Current trends in the IT industry suggest that future software systems will be very different

from their counterparts today, due to greater adoption of Service-Oriented Architectures (SOAs)

and the popularization of the Software-as-a-Service (SaaS) paradigm.

 

These trends point to large-scale, heterogeneous ICT infrastructures hosting applications that

are dynamically built from loosely-coupled, well-separated services, where key non-functional

properties like security, privacy, efficiency and reliability will be of increased and critical

importance.

 

Basic security protocols for Web Services, such as XML Security, the WS-* series of proposals,

SAML, and XACML, along with numerous on-going activities targeting new SaaS scenarios, can

provide a basic set of building blocks enabling Web Services and Cloud Computing to operate

securely. While some of these building blocks are now firmly in place and the on-going work

progresses at a fast pace, a number of challenges are still to be met for ensuring the security

and trust of these scenarios. One relevant aspect is the change in the underlying model of

application and service provision. Current trust models in relation to application provision,

deployment, operation and control are not well-adapted for these scenarios. Actors, stakeholders,

responsibilities, capabilities, liabilities of traditional computing scenarios, as well as their

relations, have changed in these new scenarios, requiring new trust relationships to be established

and verified at runtime during application set-up and operation.

 

In this line certification and other assurance approaches become crucial for establishing the

necessary trust relationships. Current certification schemes, however, are either insufficient

in addressing the needs of such scenarios or not applicable at all and thus, they cannot be

used to support and automate run-time security assessment.

 

Likewise, novel testing mechanisms, engineering approaches, formal modelling paradigms, monitoring

models, runtime support infrastructures, secure dynamic application building and service orchestration

approaches, etc. are needed in order to fill other gaps and to restore the missing trust links in these

new scenarios. The workshop will provide a forum for presenting research results, practical experiences,

and innovative ideas in web services security.

 

Topics of interests of WOSSAP 2013 include, but are not limited to:

 

- Security certification for services

- Assurance mechanisms for services

- The role of Trusted Computing in securing Web services

- Frameworks for managing, establishing and assessing inter-organizational trust relationships

- Inter-organizational security policy alignment and reconciling

- Trust negotiation mechanisms

- Testing mechanisms and techniques for web services

- Formal modeling of service-based systems

- Privacy certifications for services

- Secure and trusted service provisioning

- Support for assurance, certification and accreditation

- Secure dynamic application building and service orchestration approaches

- Semantics-aware Web service security and Semantic Web

- Secure orchestration of Web services

- Web services and cloud computing security

- Access control

- Engineering approaches

- Monitoring models

- Runtime support infrastructures

 

Important dates

 

- Full Paper Submission Due Date: April 1st, 2013

- Decision Notification (Electronic): April 10th, 2013

- Camera-Ready Copy Due Date & Pre-registration Due: April 15th, 2013

 

Paper submission

 

Authors are invited to submit full papers (about 8 pages) or short papers (about 4 pages) as per IEEE 8.5 x 11 manuscript guidelines (download Word templates or LaTeX templates). The submitted papers can only be in the format of PDF or WORD. Please follow the IEEE Computer Society Press Proceedings Author Guidelines to prepare your papers, respectively. At least one author of each accepted paper is required to attend the workshop and present the paper. All papers must be submitted via the confhub submission system for the SPE workshop.

 

First time users need to register with the system first (see these instructions for details). All the accepted papers by the workshops will be included in the Proceedings of the Ninth IEEE 2013 World Congress on Services (SERVICES 2013) which will be published by IEEE Computer Society.

 

Workshop chairs

 

      ERNESTO DAMIANI, Università degli Studi di Milano, Italy

      MICHELE BEZZI, SAP, France

      ANTONIO MANA, University of Malaga, Spain

 

Program committee

 

      ARDAGNA, CLAUDIO, Università degli Studi di Milano, Italy

      ABIE, HABTAMU, Norwegian Computing Center, Norway

      MICHELE BEZZI, SAP, France

      BOYD, COLIN, Queensland University of Technology, Australia

      CUELLAR, JORGE, Siemens, Germany

      DAMIANI, ERNESTO, Università degli Studi di Milano, Italy

      DAVIDS, CAROL, Illinois Institute of Technology, USA

      ENDICOTT-POPOVSKY, BARBARA, University of Washington, USA

      FERNANDEZ, EDUARDO B., Florida Atlantic University, USA

      GELENBE, EROL, Imperial College, United Kingdom_

      GIORGINI, PAOLO, University of Trento, Italy

      GRAWROCK, DAVID, Intel, USA

      GUERGENS, SIGRID, Fraunhofer SIT, Germany

      JUERJENS, JAN, TU of Dortmund, Germany

      KIYOMOTO, SHINSAKU, KDDI R&D Labs, Japan

      LAMBRINOUDAKIS, COSTAS, U. of Piraeus, Greece

      LE METAYER, DANIEL, INRIA, France

      LEVI, ALBERT, Sabanci University, Turkey

      LOSAVIO, MICHAEL, U. of Kentucky, USA

      LOTZ, VOLKMAR, SAP AG, France

      MANA, ANTONIO, University of Malaga, Spain

      MARTINELLI, FABIO, CNR-IIT, Italy

      MARTINEZ-PEREZ, GREGORIO, U. of Murcia, Spain

      MENICOCCI, RENATO, FUB, Italy

      POSEGGA, JOAQUM, U. of Passau, Germany

      PRESENZA, DOMENICO, Engineering, Italy

      QUISQUATER, JEAN-JACQUES, U. Catholique De Louvain, Belgium

      RAY, INDRAKSHI, Colorado State University, USA

      RUDOLPH, CARSTEN, Fraunhofer SIT, Germany

      SORIA-RODRIGUEZ, PEDRO, ATOS R&D, Spain

      SPANOUDAKIS, GEORGE, City University, United Kingdom

      STOELEN, KETIL, University of Oslo, Norway

      WASHIZAKI, HIRONORI, Waseda University, Japan

      WESPI, ANDREAS, IBM, Switzerland

      YOSHIOKA, NOBUKAZU, National Institute of Informatics, Japan

      ZULKERNINE, MOHAMMAD, Queen's University, Canada

 

 

========================================================

 

For additional information please visit

http://proteus.lcc.uma.es/wossap13

 

========================================================