SecureCloud 2010 Call for Papers is Now Closed
About SecureCloud 2010
SecureCloud 2010 is a premier educational and networking event hosted by the European Network and Information Security Agency, the Cloud Security Alliance and ISACA, three of the leading organizations shaping the future of Cloud Computing Security. It is the first event to focus specifically on state of the art practices to promote security, privacy and trust within cloud computing from technical, assurance and governance perspectives. This event is a unique opportunity not only to learn, but to make important global contacts and participate in interactive strategy sessions
SecureCloud 2010 will feature presentations by thought leaders from industry, academia and government, including keynote speeches by Dave Cullinane, CISO at eBay, Inc., and Chairman of the Board of the CSA, and Dr Udo Helmbrecht Executive Director of ENISA.
SecureCloud 2010 Call for Papers
SecureCloud 2010 will feature presentations by thought leaders from industry, academia and government.
The target audience will be CEO, CTO, CISOs, business leaders, political and corporate decision-makers and information security practitioners. Given the target audience, submissions are strongly encouraged to focus on practical implications of security and privacy in the Cloud for these target groups and their stakeholder groups of service customers, developers and implementers in governments, business and academia.
Please note that each proposal should have specific focus on security and privacy aspects of Cloud Computing while providing a description of how the material being presented can be applied in a real-world environment – i.e. via a realistic application scenario or an analysis of the implications for business and governments.
Extended abstracts with presentation proposals will be peer-reviewed and should be submitted according to the guidelines and form template provided below.
Important Dates:
Submission of Abstracts: 15 of January 2010
Notification to Speakers: 1 February 2010
Submission of slides: 1 March 2010
Programme Committee
- Daniele Catteddu (ENISA)
- Ramses Gallego (ISACA / Entel IT Consulting)
- Ron Hale (ISACA),
- Brian Honan (CSA / BH Consulting)
- Giles Hogben (ENISA)
- Dr. Jesús Luna (CSA / Barcelona Digital Technology Centre)
- Steve Purser (ENISA)
- Dov Yoran (CSA / MetroSITE Group)
The SecureCloud 2010 program will feature two tracks and; the topics of interest include, but are not limited to:
| Track 1: Legal, Assurance & Compliance | Track 2: Security & Privacy |
|---|---|
| Certification and assurance frameworks for clouds | Resilience and cloud computing |
| Cloud specific provisions for governance standards | Edge networks and client-based cloud applications |
| Interoperability between cloud providers. | Resource management |
| Standardised API’s, virtual machine instances, data formats. | Resource isolation |
| Data and application portability | Identity and access management |
| Formats for security policies and security testing | Key management |
| Return on Security Investments (ROSI): what measures can cloud computing enable to improve the accuracy of ROI for security. | Metrics for security in cloud computing. |
| Financial metrics – are Cloud economics really true? | End-to-end data confidentiality in the cloud and beyond. |
| Breach reporting | Trusted computing in clouds |
| Data protection in large scale cross-organizational systems | Higher assurance clouds, virtual private clouds |
| Dispute resolution and rules of evidence. | Secure deletion and data lifecycle management. |
| International differences in relevant regulations including data protection and privacy | Forensics and evidence gathering mechanisms. |
| Incident handling - monitoring and traceability. | |
| Security in depth within large-scale distributed computer systems. | |
| Security services in the cloud – de-perimiterisation of security technologies and the adaptation of traditional security perimeter control technologies to the cloud. E.g. HSM's, web filters, firewalls, IDSs etc… | |
| Best practices in Cloud provider management | |
| Future threats in a Cloud environment | |
| Virtualization and mitigating threats |
Guidelines
- Submitted papers must be written in English and describe original work providing a learning opportunity for the conference attendees. Submissions should not be already published nor currently under review by other journals or conferences.
- Submissions that focus on marketing or directly promoting a company’s products or services will not be considered.
- In case of being accepted, at least one of the authors must attend SecureCloud2010 to present their paper.
- Submissions entered by marketing or PR professionals, either external or internal, will not be considered.
- Each Submission should include three key lessons that conference attendees can apply in their organisations.
- All accepted papers will be presented in English.