Scope:

Enterprise security is the key to achieving global information security in business and organizations. Cloud computing is a new paradigm for enterprise where businesses need to be secured. However, this new trend needs to be more systematic with respect to cloud security, which is a factor in sustaining cloud technology by building-in trust. For example, current challenges with cyber security and application security flaws are highlighting important lessons to be learned and also lead to the adoption of best practices. Similarly, as the demand for cloud services increases, the importance of security and privacy will also increase.

One solution is to develop a framework for enterprise security to analyze and model organizational security of the cloud and its data. In particular, cloud data and cloud storage technologies (Amazon s3, drop box, Google drive, etc.) have now become normal practice for almost every computing user. This can explain why building trust for cloud users is one of the main focuses of cloud computing research. On the other hand, the social, human and business aspects of enterprise security are essential to users to keep their skills, business concepts and policies up-to-date. By maintaining all these aspects of security, organizations can develop an enterprise security solution to work together with business models, such as cloud provider enterprise model and cloud consumer enterprise model. In this way, enterprise security can address technical and organizational aspects of security to provide added value and win-win situations for users, adopters and service providers. Following the successful delivery of our workshop in 2014, we oversee the importance of enterprise security as a unique and rising field to ensure all aspects of security and risks can be identified, surveyed, tested, prototyped and minimized with recommendations and lessons learned disseminated.

By blending technical and organizational aspects of security, our workshop can provide a platform for intellectual discussions and interactions. To highlight the significance of enterprise security and disseminate research contributions in cloud community, we welcome papers addressing technical (implementations, algorithms, experiments, simulation, modeling and prototypes) and organizational (information system related issues, recommendation and best practices, frameworks, risks) issues. We offer the best paper awards and winners will be invited to contribute to high-quality journals.

Topics:

Algorithms, software engineering and development
System design and implementation
Testing (software engineering; penetration; product development)
Encryption (all aspects)
Firewall, access control, identity management
Experiments of using security solutions and proof-of-concepts
Large-scale simulations in the Cloud, Big Data and Internet of Things
Intrusion and detection techniques
Social engineering and ethical hacking: techniques and case studies
Risk Modeling, business process modeling and analytics
Trust and privacy
Data security, data recovery, disaster recovery
Data center management
Adoption challenges and recommendation
Risk management and control
Business and economic models
Change management and continuous service improvement
Information systems related issues
Conceptual frameworks and models
Emerging issues and recommendations for organizational security
E-Commerce and online banking
Social network analysis, emerging issues in social networks
Education and e-Learning
Surveys and their quantitative analysis
Architecture (technical or organizational)
Case studies

Important dates (submission https://easychair.org/conferences/?conf=es20150):
Paper Submissions: July 15, 2015
Notification of Acceptance: August 3, 2015
Camera Ready Versions: August 16, 2015

The focus of this workshop is to present new techniques, demonstrations, innovative approaches and case studies related to Enterprise Security. The impacts of research contributions are as follows.

- Explain how to implement enterprise security and their added values.
- Demonstrate how enterprise security can be used in different case studies.
- Describe how to resolve challenges in each adoption scenario.
- Provide reproducible steps for anyone to follow, and support reproducibility, an important aspect in Cloud Computing science.
- Explain how their Cloud services can work effectively in production and real-time
- Present how their services can make contributions to users involved in the use of Cloud services and adoption.
- Sum up and disseminate all the lessons learned and recommendation to play an influential role in academia and industry.

Detailed Schedule

TBD

The workshop chairs (Biographies at the end of the proposal):

Main chair:

Dr. Victor Chang, Leeds Beckett University, UK

Co-chairs:

Dr. Muthu Ramachandran, Leeds Beckett University, UK
Mr. Mario Hoffmann, Fraunhofer Institute for Applied and Integrated Security (AISEC), Germany
Dr. Gary Wills, University of Southampton, UK
Dr. Robert John Walters, University of Southampton, UK
Dr. Neil N. Yen, University of Aizu, Japan
Prof. Laurence T. Yang, St. Francis Xavier University, Canada
Dr. Chung-Sheng Li, IBM, US
Prof. Wendy Currie, Audencia Nantes, France

Preliminary Program Committee:

Omar Abdul-Rahman, National Institute of Informatics, Japan
Saad Alahmari, Princess Noura Bint Abdulrahman University, Saudi Arabia
Naif Aljohani, King Abdulaziz University, Saudi Arabia
Mitra Arami, American University of Middle East, Kuwait
Khin Mi Mi Aung, Agency for Science, Technology and Research (A*STAR), Data Storage Institute, Singapore
Reinhold Behringer, Leeds Beckett University, United Kingdom
Tony Bryant, Leeds Beckett University, United Kingdom
K Chandrasekaran, National Institute of Technology Karnataka, India, India
Tzu-chun Chen, TU Darmstadt, Germany
Darren Chong, Singapore Government, Singapore
Lee Gillam, University of Surrey , United Kingdom
Takahiro Hirofuchi, National Institute of Advanced Industrial Science and Technology, Japan
Guy-Bertrand Kamga, Alcatel-Lucent, France
Ryan Ko, University of Waikato, New Zealand
Natalia Kushik, Tomsk State University, Russian Federation
Mohamed Mohamed, Institut Mines-Telecom Telecom SudParis Evry, France
Siani Pearson, HP Labs, Bristol, United Kingdom
Muthu Ramachandran, Leeds Beckett University, United Kingdom
Shuqin Ren, Data Storage Institute, Singapore
Z. Cliffe Schreuders, Leeds Beckett University, United Kingdom
Jose Simao, Instituto Superior de Engenharia de Lisboa, Portugal
Luís Veiga, Inesc-id / Ist, Portugal
Yun Wan, University of Houston, United States
Tomasz Wiktor Wlodarczyk, University of Stavanger, Norway
Fan Zhang, MIT, United States

Other relevant information:

Objective:

- Disseminate good practices and case studies offered by in the use of Enterprise Security.
- Demonstrate the proof-of-concepts, prototypes, algorithms, software engineering and development.
- Disseminate on how to resolve existing issues in Enterprise Security and the added value offered by Enterprise Security.
- Present case studies, frameworks, recommendations and new research/enterprise contributions to the organizations that adopt and improve on their security policies, technologies and practices.

Workshop: We will select good papers demonstrating their merits in offering research/enterprise contributions. Each presentation will take around 25 minutes, and be followed by about 5 minutes of questions and answer session per talk. The chairs will also have a final discussion topic right before the end of the workshop. We welcome researchers in either technical or organizational aspects of Enterprise Security, as well as industrial practitioners in Enterprise Security to join our discussions and social interactions.

Submission Process

Authors are invited to submit papers containing unpublished, original work (not under review elsewhere) of up to 6 pages of double column text using single spaced 10 point size on 8.5 x 11 inch pages, as per IEEE 8.5 x 11 manuscript guidelines. Templates are available from:

http://www.ieee.org/conferences_events/conferences/publishing/templates.html.

Authors should submit a PDF file. Papers conforming to the above guidelines can be submitted through the workshop's EasyChair submission system. At least one author of each accepted submission must attend the workshop and all workshop participants must pay at least the CloudCom 2015 workshop registration fee. All accepted papers will be published by the IEEE in the same volume as the main conference.


All presented papers will be undertaken with a double-blind review process, and extended versions of the workshop papers will be likely to be published in a special issue: Enterprise Security, International Journal of Organizational and Collective Intelligence (IJOCI) and Open Journal of Big Data (OJBD). We plan to set up a special issue with leading journals for top paper CloudCom delegate winners. A Cloud security book by Springer edited by the main chair will be available for workshop/conference delegates. We have a special section in International Journal of Information Management (IJIM). The best paper based on the review maybe invited to submit one article. Please submit your papers on EasyChair: https://easychair.org/conferences/?conf=es20150