Scope:

Enterprise security is the key to achieving global information security in business and organizations. Cloud computing is a new paradigm for enterprise where businesses need to be secured. However, this new trend needs to be more systematic with respect to cloud security, which is a factor in sustaining cloud technology by building-in trust. For example, current challenges with cyber security and application security flaws are highlighting important lessons to be learned and also lead to the adoption of best practices. Similarly, as the demand for cloud services increases, the importance of security and privacy will also increase.

One solution is to develop a framework for enterprise security to analyze and model organizational security of the cloud and its data. In particular, cloud data and cloud storage technologies (Amazon s3, drop box, Google drive, etc.) have now become normal practice for almost every computing user. This can explain why building trust for cloud users is one of the main focuses of cloud computing research. On the other hand, the social, human and business aspects of enterprise security are essential to users to keep their skills, business concepts and policies up-to-date. By maintaining all these aspects of security, organizations can develop an enterprise security solution to work together with business models, such as cloud provider enterprise model and cloud consumer enterprise model. In this way, enterprise security can address technical and organizational aspects of security to provide added value and win-win situations for users, adopters and service providers.

By blending technical and organizational aspects of security, our workshop can provide a platform for intellectual discussions and interactions. To highlight the significance of enterprise security and disseminate research contributions in cloud community, we welcome papers addressing technical (implementations, algorithms, experiments, simulation, modeling and prototypes) and organizational (information system related issues, recommendation and best practices, frameworks, risks) issues.

Topics:

Algorithms, software engineering and development
System design and implementation
Testing (software; penetration; product development)
Encryption, access control, identity management
Experiments of using security solutions and proof-of-concepts
Large-scaled simulations in the Cloud and Big Data
Intrusion and detection techniques
Risk Modeling, business process modeling
Trust and privacy
Data security, disaster recovery
Data center management
Adoption challenges and recommendation
Risk management and control
Business models
Change management
Information systems related issues
Conceptual frameworks and models
Emerging issues and recommendations for organizational security
E-Commerce and online banking
Social network analysis, emerging issues in social networks
Education and e-Learning
Surveys and their quantitative analysis
Architecture (technical or organizational)
Case studies
The focus of this workshop is to present new techniques, demonstrations, innovative approaches and case studies related to Enterprise Security. The impacts of research contributions are as follows.

- Explain how to implement enterprise security and their added values.
- Demonstrate how enterprise security can be used in different case studies.
- Describe how to resolve challenges in each adoption scenario.
- Provide reproducible steps for anyone to follow, and support reproducibility, an important aspect in Cloud Computing science.
- Explain how their Cloud services can work effectively in production and real-time
- Present how their services can make contributions to users involved in the use of Cloud services and adoption.
- Sum up and disseminate all the lessons learned and recommendation to play an influential role in academia and industry.

The workshop chairs (Biographies at the end of the proposal):

Main chair:

Dr. Victor Chang, Leeds Metropolitan University and University of Southampton, UK

Co-chairs:

Dr. Muthu Ramachandran, Leeds Metropolitan University, UK
Dr. Gary Wills, University of Southampton, UK
Dr. Robert John Walters, University of Southampton, UK
Dr. Chung-Sheng Li, IBM, US
Prof. Wendy Currie, Audencia Nantes, France

Preliminary Program Committee:

Saad Alahmari, Princess Noura Bint Abdulrahman University, Saudi Arabia
Mitra Arami, American University of Middle East, Kuwait
Reinhold Behringer, Leeds Metropolitan University, United Kingdom
Tony Bryant, Leeds Metropolitan University, United Kingdom
K Chandrasekaran, National Institute of Technology Karnataka, India, India
David Chadwick, University of Kent, UK
Darren Chong, Singapore, Singapore
Lee Gillam, University of Surrey , United Kingdom
Takahiro Hirofuchi, National Institute of Advanced Industrial Science and Technology, Japan
Ching Hsien Robert Hsu, Chung Hua University, Taiwan
Mohamed Mohamed, Institut Mines-Telecom Telecom SudParis Evry, France
Siani Pearson, HP Labs, Bristol, United Kingdom
Muthu Ramachandran, Leeds Metropolitan University, United Kingdom
Z. Cliffe Schreuders, Leeds Metropolitan University, United Kingdom
Jose Simao, Instituto Superior de Engenharia de Lisboa, Portugal
Ian Sommerville, St Andrews University, United Kingdom
Luis Veiga, Inesc-id / Ist, Portugal
Tomasz Wiktor Wlodarczyk, University of Stavanger, Norway
Fan Zhang, MIT, United States

Important dates:
Paper Submissions: September 8, 2014
Notification of Acceptance: September 20, 2014
Camera Ready Versions: October 1, 2014
Other relevant information:

Objective:

Disseminate good practices and case studies offered by in the use of Enterprise Security.
Demonstrate the proof-of-concepts, prototypes, algorithms, software engineering and development.
Disseminate on how to resolve existing issues in Enterprise Security and the added value offered by Enterprise Security.
Present case studies, frameworks, recommendations and new research/enterprise contributions to the organizations that adopt and improve on their security policies, technologies and practices.
Workshop: We will select good papers demonstrating their merits in offering research/enterprise contributions. Each presentation will take around 25 minutes, and be followed by about 5 minutes of questions and answer session per talk. The chairs will also have a final discussion topic right before the end of the workshop. We welcome researchers in either technical or organizational aspects of Enterprise Security, as well as industrial practitioners in Enterprise Security to join our discussions and social interactions.

Submission Process

Authors are invited to submit papers containing unpublished, original work (not under review elsewhere) of up to 6 pages of double column text using single spaced 10 point size on 8.5 x 11 inch pages, as per IEEE 8.5 x 11 manuscript guidelines. Templates are available from (check on the website):

MS Word Template

LaTex Package

Authors should submit a PDF file. Papers conforming to the above guidelines can be submitted through the workshop's EasyChair submission system. At least one author of each accepted submission must attend the workshop and all workshop participants must pay at least the CloudCom 2014 workshop registration fee. All accepted papers will be published by the IEEE in the same volume as the main conference.

All presented papers will be undertaken with a double-blind review process, and extended versions of the workshop papers will be likely to be published in a special issue: Enterprise Security, International Journal of Organizational and Collective Intelligence (IJOCI).

Please submit your papers on EasyChair: https://www.easychair.org/conferences/?conf=es2014