================================================================================
CALL FOR PAPERS

MeSSa 2016

3rd International Workshop on Monitoring and Measurability of Software and Network Security
www.vtt.fi/messa2016

Copenhagen, Denmark, November 28 - December 2, 2016

Co-located with The 10th European Conference on Software Architecture (ECSA 2016) (http://ecsa2016.iku.edu.tr/)
================================================================================


TOPICS
Security-related incidents are increasing, and at the same time our society is increasingly relying on cyber-physical systems. Systematic approaches to monitor and measure security are needed to build secure systems, including IoT and cloud services, and to offer security evidence for system designers and users. Security analysis and measuring on software architecture level produces evidence of security in the design phase, to deal with requirement trade-offs. Architecture-level security analysis supports “security by design”. On the other hand, to understand overall security status and get a holistic view, architecture-level security analysis has to be extended to the operational system domain, and needs to include also the network level security monitoring and analysis. Thus, techniques to understand and scale the needs in both measurement and analytics are needed. Together these are able to provide the basis for security situational awareness in the modern complex software infrastructure. Security metrics also support security adaptation and architecture-based evolution.

MeSSa 2016 solicits security-enhancing contributions on the following issues (but not limited to):
* Security, trust and privacy metrics
* Measurement systems and architectures
* Securing Internet of Things
* Trusted cloud
* Situational awareness and threat intelligence
* Software Defined Networking and Network Function Virtualisation
* Self-adaptive and cognitive security
* Trade-off analysis and decision-making
* Evolutionary techniques
* Measuring at runtime
* Security visualisation and analytics
* Quality and uncertainty in security measurement and metrics
* Anomaly detection
* Forensics and data analytics
* Taxonomies and ontologies on security metrics
* Empirical case studies and pilots
* Risk-based security measurement and analysis
* Adaptive metrics
* Semantic provability


IMPORTANT DATES
Submission deadline: Aug 21, 2016 (Extended due to location change from Istambul to Copenhagen!)
Notification to authors: Aug 28, 2016
Camera-ready papers: Sep 2, 2016
Workshop TBD

SUBMISSION
The MeSSa 2016 invites submissions to following tracks:
* Regular papers that describe novel contributions to the MeSSa 2016 scope, maximum length 7 pages.
* Extended abstracts to describe research and industry ideas and demonstrations, maximum length 2 pages. Extended abstracts will be presented in dedicated poster / idea session.

Submissions must follow the ACM format and submission guidelines (http://www.acm.org/sigs/publications/proceedings-templates).

Submissions have to be made via EasyChair https://easychair.org/conferences/?conf=messa2016


ORGANISERS
Reijo Savola, VTT Technical Research Centre of Finland (Finland)
Habtamu Abie, Norwegian Computing Centre (Norway)
Antti Evesti, VTT Technical Research Centre of Finland (Finland)


PROGRAM COMMITTEE
Noureddine Boudriga, University of Carthage, Tunisia
Tapio Frantti, FRE, Finland
Teemu Kanstrén, VTT Technical Research Centre of Finland
Marina Krotofil, Hamburg University of Technology, Germany
Wolfgang Leister, Norwegian Computing Center, Norway
Mohammad Mozumdar, California State University, Long Beach, USA
Ebenezer Paintsil, Verifone, Norway
Stefan Poslad, Queen Mary University of London, UK
Eila Ovaska, VTT Technical Research Centre of Finland
Juha Röning, University of Oulu, Finland
Pekka Savolainen, VTT Technical Research Centre of Finland
Einar Snekkenes, Norwegian University of Science and Technology, Norway
Denis Treck, University of Ljubljana, Slovenia
Yan Zhang, Simula Research Laboratory, Norway