HotSoS 2014 Agenda

2014 Symposium and Bootcamp on the Science of Security (HotSoS) Program Agenda

The 2014 Symposium and Bootcamp on the Science of Security (HotSoS) was held April 8-9, 2014 in Raleigh, North Carolina. 

Over 130 leaders from government, industry, and the academic community met to discuss new and ongoing programs in security science. The presentations emphasized a broad range of topics including computing architectures, networks, software engineering practices, models of human interaction and behavior, organizational models, and evaluation methodologies.

Artifacts from Hot SoS 2014 include presentations and posters that are linked to the agenda below. The call for papers can be found at http://cps-vo.org/hotsos2014/cfp

Monday, April 7, 2014

5:00 - 9:00

Registration - Esplanade Gallery

6:00 - 9:00pm

Welcome Reception
Hannover I
(hors d'oeuvre available 6:30 - 7:30)

Tuesday, April 8, 2014

7:30 - 5:00

Registration - Esplanade Gallery

8:00 - 9:00

Breakfast
Esplande (sit in Oak Forest Ballroom to eat)

9:00 - 10:30

Welcome, Announcements
Laurie Williams, North Carolina State University
Gilbert (Gil) C. Nolte, NSA, Chief Trusted Systems Research
Location: Oak Forest Ballroom

Keynote: The Science of Computer Security Perspectives and Prospects
John McLean, Naval Research Laboratory

10:30 - 11:00

Break
Hannover I Prefunction

11:00 - 12:30

Research Paper Session: Architecture and Analysis
Session Chair: Ehab Al-Shaer, UNC Charlotte
Location: Hannover I

Tutorial: Engineering Privacy: Example Challenges of Transitioning Science to Practice
Travis Breaux, CMU
Location: Hannover II

In-Nimbo Sandboxing
Michael Maass, Jonathan Aldrich and William Scherlis

Architecture-Based Self-Protection: Composing and Reasoning about Denial-of-Service Mitigations
Bradley Schmerl, Javier Cámara Moreno, Jeffrey Gennari, David Garlan, Paulo Casanova, Gabriel Moreno, Thomas Glazier and Jeffrey Barnes

A Rewriting-based Forwards Semantics for Maude-NPA
Santiago Escobar, Catherine Meadows, Jose Meseguer and Sonia Santiago

12:30 - 1:30

Lunch
Esplande (sit in Oak Forest Ballroom to eat)

1:30 - 3:00

Industry Panel: Our Perspective on the Science of Security
Steve Lipner, Director of Program Management, Trustworthy Computing Security, Microsoft
Ed Paradise, Vice President of Engineering for Threat Response, Intelligence and Development Group, Cisco.
Neal Ziring, NSA Technical Director for the Information Assurance Directorate
David Hoffman, Director of Security Policy and Global Privacy Officer, Intel
Moderator: Bill Scherlis, CMU
Location: Oak Forest Ballroom

3:00 - 3:30

Break
Hannover I Prefunction

3:30 - 5:00

Research Paper Session: Sociotechnical Systems
Session Chair: Travis Breaux, CMU
Location: Hannover I

Research Work in Progress
Session Chair: Huaiyu Dai, NCSU
Location: Hannover III

International Research Network for the Science of Security (IRN-SoS) -- Kick-off Meeting
Jeff Carver, University of Alabama
Location: Hannover II

Open vs. Closed Systems for Accountability
Joan Feigenbaum, Aaron D. Jaggard and Rebecca Wright

Log Your CRUD: Design Principles for Software Logging Mechanisms
Jason King and Laurie Williams

A New Approach to Modeling and Analyzing Security of Networked Systems
Gaofeng Da, Maochao Xu and Shouhuai Xu

6:00 - 9:00

Poster Session and Reception
Conference Dinner
North Carolina Museum of Natural Sciences
11 W. Jones St. Raleigh, NC 27602

Wednesday, April 9, 2014

8:00 - 10:30

Registration - Esplanade Gallery

8:00 - 9:00

Breakfast
Esplande (sit in Oak Forest Ballroom to eat)

9:00 - 10:30

Announcements
Location: Oak Forest Ballroom

Keynote: What the Science of Security might learn from the Evolution of the Discipline of Empirical Software Engineering
Vic Basili, Professor Emeritus, University of Maryland

10:30 - 11:00

Break
Hannover I Prefunction

11:00 - 12:30

Research Paper Session: Human Aspects
Session Chair: Robert Proctor, Purdue
Location: Hannover I

Tutorial: Let's Play Poker: Effort and Software Security Risk Estimation in Software Engineering
Laurie Williams, NCSU
Location: Hannover II

Less is More? Investigating the Role of Examples in Security Studies using Analogical Transfer
Ashwini Rao, Hanan Hibshi, Travis Breaux, Jean-Michel Lehker and Jianwei Niu

Phishing in International Waters: Exploring Cross-Cultural Differences in Phishing Conceptualizations between Chinese, Indian, and American Samples
Rucha Tembe, Olga Zielinska, Yuqi Liu, Kyung Wha Hong, Emerson Murphy-Hill, Chris Mayhorn and Xi Ge

Human Factors in Webserver Log File Analysis: A Controlled Experiment on Investigating Malicious Activity
Lucas Layman, Sylvain David Diffo and Nico Zazworka

12:30 - 1:30

Lunch
Esplande (sit in Oak Forest Ballroom to eat)

1:30 - 2:45

Invited Talks

Location: Oak Forest Ballroom

2:45 - 3:15

Break
Hannover I Prefunction

3:15 - 4:45

Research Paper Session: Adaptivity and Dynamics
Session Chair: Kevin Sullivan, University of Virginia
Location: Hannover I

Tutorial: Authentication and Access-Control in Distributed Systems
Mike Reiter, UNC
Location: Hannover III

Tutorial: Understanding the 'H' in Science of Security HCI Research: Methods and Lessons Learned from Investigations of Phishing
Chris Mayhorn, NCSU
Location: Hannover II

Characterizing the Power of Moving Target Defense via Cyber Epidemic Dynamics
Yujuan Han, Wenlian Lu and Shouhuai Xu

Analyzing an Adaptive Reputation Metric for Anonymity Systems
Anupam Das, Nikita Borisov and Matthew Caesar

Proving Abstractions of Dynamical Systems through Numerical Simulations
Sayan Mitra

Hot SoS