Workshop program

Room: A101, first floor of the main building in Piazza Sernesi, 1 (Bolzano, IT)

9:00-10:00

Welcome and Keynote

• Stephan Neuhaus, University of Trento, Italy, Security Metrics for Business Processes in Context [detailed info]

10:00-10:30

Coffee Break

10:30-12:00 Session 1 - Measures

Session Chair: Stephan Neuhaus, University of Trento, Italy

• James Walden, Maureen Doyle, Rob Lenhof, John Murray, Andrew Plunkett. Impact of Plugins on the Security of Web Applications
• Kristof Verslype, Bart De Decker. Measuring the User's Anonymity When Disclosing Personal Properties
• Viet Hung Nguyen, Le Minh Sang Tran. Predicting Vulnerable Software Components with Dependency Graphs

12:00-13:30

Lunch

13:30-15:00 Session 2 - Methods

Session Chair: James Walden,Northern Kentucky University, USA

• Fabio Massacci, Viet Hung Nguyen. Which is the Right Source for Vulnerability Studies? An Empirical Analysis on Mozilla Firefox
• Elizabeth LeMay, Willard Unkenholz, Donald Parks, Carol Muehrcke, Ken Keefe, William H. Sanders. Adversary-Driven State-Based System Security Evaluation
• Christian Fruehwirth, Stefan Biffl, Mohammed Tabatabai, Edgar Weippl. Addressing Misalignment Between Information Security Metrics and Business-Driven Security Objectives

15:00-15:30

Coffee Break

15:30-17:00 Session 3 - Assessment

Session Chair: Riccardo Scandariato, Katholieke Universiteit Leuven, Belgium

• Todd Jackson, Babak Salamat, Gregor Wagner, Christian Wimmer, Michael Franz. On the Effectiveness of Multi-Variant Program Execution for Vulnerability Detection and Prevention
• Mathias Kohler, Achim D. Brucker. Access Control Caching Strategies: An Empirical Evaluation
• Reine Lundin, Stefan Lindskog. Security Implications of Selective Encryption