XDOM0 2017 : [Extended submission deadline: March 7] First International Workshop on Security and Dependability of Multi-Domain Infrastructures
Call For Papers
*** The paper submission deadline has been extended to March 7, 2017 ***
CALL For PAPERS
*** EXTENDED DEADLINE ***
XDOM0 2017: First International Workshop on Security and Dependability of Multi-Domain Infrastructures
April 23, 2017
In conjunction with EuroSys 2017
Multi-domain infrastructures are increasingly imposing themselves as leading architectures for distributed systems. They achieve effective convergence of cloud systems and networks through virtualization. They allow federating resource-specialized infrastructures into unified control and data planes for computing, storage, networking, and device resources, their architectures ranging from centralized to fully distributed (also known as cloud-of-clouds, edge, fog, etc.). One central property of such infrastructures is also being software-defined: the domain abstraction plays a central role for resource control, either shallow, or reaching deep in multiple infrastructure layers. The control capabilities are more extensive for private infrastructures where security services may be selectively added at low-level, SDN also enabling full network control. In public networks, on the other hand, control is much reduced, as the hardware remains out of reach, visible only as a "big-switch" abstraction.
Due to their heterogeneity and complexity, such infrastructures raise acute security and dependability challenges. The potential of (insider) attacks renders many central software layers, such as the hypervisor, untrustworthy. This calls for primitives for secure isolated computation, and strong system mechanisms for trust guarantees across layers and domains. Similarly, making the infrastructure immune to cloud or network availability zone outage in a multi-provider setting, in order to avoid Internet-scale single point of failures, calls for fault-tolerant, replicated, and distributed control architectures. Lack of control on the infrastructure also prevents building user-centric clouds and networks and full customization of security and their related benefits, e.g., overcoming vendor lock-ins, choosing best-of-breed providers (price, performance, etc.). Heterogeneity of system abstractions and mechanisms in the virtualization infrastructure remains a major barrier towards such goals.
The XDOM0 2017 workshop focuses on new system architectures and mechanisms for security and availability of multi-domain infrastructures. The aim is to explore how such system-level solutions could allow the user to regain control over such infrastructures and address the previous security and resilience challenges. Platforms that include hybrid clouds, and SDN-based virtualized networks require novel models, architectures, designs, security and resilience mechanisms that go beyond traditional virtualization and networking architectures. Finding the right abstraction and system mechanisms can help enforce control at all (necessary) levels, both across domains and layers to enhance security and dependability of such infrastructures. Additionally, infrastructures of such complexity require holistic automation of security and dependability, posing new research problems on specification, enforcement, and management of policies and SLAs.
TOPICS OF INTEREST
XDOM0 invites submissions focusing on advanced virtualization systems for secure and resilient multi-domain infrastructures, but not exclusively:
* Open, minimal, or modular hypervisor architectures
* Lightweight virtualization platforms
* VM, container, or unikernel isolation and protection across heterogeneous clouds
* Hardware security mechanisms in virtualized environments
* Trusted execution and trustworthy infrastructures
* Distributed secure computation in multi-clouds
* Multi-cloud storage systems
* Resilient database systems
* Network virtualization for multi-clouds
* Network embedding techniques
* Network slicing for multi-domains
* Resilient virtualized network functions
* Secure and dependable software-defined computing, storage, or networking
* Automation of security management for multi-clouds and virtualized networks
* Specification, negotiation, enforcement, monitoring, auditing of security policies
Authors are invited to submit original papers of up to 6 pages, with 10-point font, in two-column ACM format (including figures, tables and references).
The accepted papers will be published in the Proceedings of XDOM0 in the ACM Digital Library.
Paper submission: March 7, 2017
Paper notification: March 22, 2017
Camera-ready version: April 4, 2017
Workshop: April 23, 2017
Marc Lacoste, Orange Labs, France
Fernando Ramos, University of Lisbon, Portugal
Hervé Debar, Télécom SudParis, France
Ahmad-Reza Sadeghi, TU Darmstadt, Germany
Barbara Gaggl, Technikon, Austria
Max Alaluna, University of Lisbon, Portugal