November 1st - 4th, 2010
San Jose, CA, USA
International Workshop on Risk and Trust in Extended Enterprises (RTEE’2010)
Important dates (Note - extended deadline)
Paper submission due: September 01, 2010 September 22, 2010
Notification to authors:September 15, 2010 October 4, 2010
Notification to authors:
Camera-ready due: September 22, 2010 October 11, 2010
Scope and Purpose
Increasingly, organizations are focusing on core business and relying on other organizations (suppliers, services companies, consultants, etc.) to deliver mission critical services and to handle business critical tasks. This is also the case in dependability systems context, such as those related to critical infrastructure, SCADA systems, real-time and embedded systems and other safety and security critical systems. An example is mission critical and organizational sensitive data which may not only be made accessible to third parties on-site but that may also be stored under the control of other parties.
The aim of this workshop is to examine the challenges involved in contexts of
completely intervened organizations; here referred to as extended enterprises. In extended enterprises it becomes difficult to determine organizational boundaries, and establish security perimeters. As a consequence, an enterprise-centric assessment of security risks is no longer enough, and a more holistic approach that extends across the whole extended enterprise is required. The emphasis of this workshop is on techniques and strategies for risk management in such context, as well as on the aspect of trust between the involved stakeholders. The goal is to bring together industry and researchers in a discussion of the challenges involved and potential ways to address them.
Topics of interest
RTEE’2010 invites, but do not limit, submissions on the following areas:
risk management
- risk identification and assessment (methods, models and techniques)
- risk mitigation (strategies, methods and models)
- risk controls (e.g., identity and access management)
- risk estimation in extended enterprises (methods and models)
- security assurance (e.g., SAS 70, ISO 14508, ISO 2700x)
- challenges and differences in risk management of extended enterprises compared to traditional enterprises
- risk governance in extended enterprises
- isks related to specific B2B relationships such as outsourcing, cloud computing XaaS (IaaS, PaaS, SaaS, BPaaS), and public-private partnerships
- different perspectives of risk (legal, IT, business
trust management
- trust models and their applicability in extended enterprises (e.g., reputation, recommendation, collaboration)
- measures of trust (methods and models)
- dynamics of trust in extended enterprises
- cross-organizational trust
Keynote speaker
To be announced.
To be announced.
Submission
Authors are invited to submit original, unpublished work which will be refereed by at least two members of the program committee. All accepted papers will be published by IEEE on the ISSRE 2010 Supplemental Proceedings, provided authors guarantee that their papers will be presented at the workshop. Submissions should be written in English (only pdf or ps file formats will be accepted), should be anonymous and comply with the IEEE Computer Society conference formatting guidelines (http://www.computer.org/portal/web/cscps/formatting).
Two types of submission are welcome: 8 pages (maximum) for full papers and 5 pages (maximum) for position papers and practitioners reports. Submission should be made electronically via EasyChair (http://www.easychair.org/conferences/?conf=rtee2010issre2010workshop).
Important dates
Paper submission due: September 01, 2010 September 22, 2010
Notification to authors:September 15, 2010 October 4, 2010
Camera-ready due:September 22, 2010 October 11, 2010
Notification to authors:
Camera-ready due:
Organization Committee
Siv Hilde Houmb (SecureNOK Ltd., Norway)
Virginia N.L. Franqueira (University of Twente, the Netherlands)
Andreas L. Opdahl (University of Bergen, Norway)
Christian Raspotnig (IFE, Norway)
Vikash Katta (IFE, Norway)
Roel Wieringa (University of Twente, Netherlands)
Program Committee
Ketil Stølen (University of Oslo, Norway)
Bjørn Axel Gran (Safetec Nordic, Norway)
Judith Rossebø (ABB, Norway)
Alan Karp (HP Labs, Palo Alto/USA)
Jun Li (HP Labs, Palo Alto/USA)
Wolter Pieters (University of Twente, Netherlands)
Chiang-Sheng Derrick Huang (Florida Atlantic University, USA)
Maarten Wedgam (Novay, Netherlands)
Ragnar Schierholz (ABB Switzerland Ltd.)
Sudipto Ghosh (Colorado State University, USA)
Dorina C. Petriu (Carleton University, Canada)
Gabriela Bodea (TNO, Netherlands)
Janusz Gorski (Gdansk University of Technology, Poland)
Geri Georg (Colorado State University, USA)
Jim Bieman (Colorado State University, USA)
Tor Stålhane (Norwegian University of Science and Technology, Norway)
Tim Kelly (University of York, UK)
Eric Dubois (CRP Henri Tudor, Luxembourg)
Thomas Ågotnes (University of Bergen, Norway)
Jorge Rady de Almeida Jr. (Polytechnic School of the University of São Paulo -USP, Brazil
Page Owner: Siv Hilde Houmb, SecureNOK (sivhoumb (@) securenok.com)