HotSoS 2014 Agenda

2014 Symposium and Bootcamp on the Science of Security (HotSoS) Program Agenda

The 2014 Symposium and Bootcamp on the Science of Security (HotSoS) was held April 8-9, 2014 in Raleigh, North Carolina. 

Over 130 leaders from government, industry, and the academic community met to discuss new and ongoing programs in security science. The presentations emphasized a broad range of topics including computing architectures, networks, software engineering practices, models of human interaction and behavior, organizational models, and evaluation methodologies.

Artifacts from Hot SoS 2014 include presentations and posters that are linked to the agenda below. The call for papers can be found at http://cps-vo.org/hotsos2014/cfp

Monday, April 7, 2014

5:00 - 9:00

Registration - Esplanade Gallery

6:00 - 9:00pm

Welcome Reception

Hannover I

(hors d'oeuvre available 6:30 - 7:30)

Tuesday, April 8, 2014

7:30 - 5:00

Registration - Esplanade Gallery

8:00 - 9:00

Breakfast

Esplande (sit in Oak Forest Ballroom to eat)

9:00 - 10:30

Welcome, Announcements

Laurie Williams, North Carolina State University

Gilbert (Gil) C. Nolte, NSA, Chief Trusted Systems Research

Location: Oak Forest Ballroom

Keynote: The Science of Computer Security Perspectives and Prospects

John McLean, Naval Research Laboratory

10:30 - 11:00

Break

Hannover I Prefunction

11:00 - 12:30

Research Paper Session: Architecture and Analysis

Session Chair: Ehab Al-Shaer, UNC Charlotte

Location: Hannover I

Tutorial: Engineering Privacy: Example Challenges of Transitioning Science to Practice

Travis Breaux, CMU

Location: Hannover II

In-Nimbo Sandboxing

Michael Maass, Jonathan Aldrich and William Scherlis

Architecture-Based Self-Protection: Composing and Reasoning about Denial-of-Service Mitigations

Bradley Schmerl, Javier Cámara Moreno, Jeffrey Gennari, David Garlan, Paulo Casanova, Gabriel Moreno, Thomas Glazier and Jeffrey Barnes

A Rewriting-based Forwards Semantics for Maude-NPA

Santiago Escobar, Catherine Meadows, Jose Meseguer and Sonia Santiago

12:30 - 1:30

Lunch

Esplande (sit in Oak Forest Ballroom to eat)

1:30 - 3:00

Industry Panel: Our Perspective on the Science of Security

Steve Lipner, Director of Program Management, Trustworthy Computing Security, Microsoft

Ed Paradise, Vice President of Engineering for Threat Response, Intelligence and Development Group, Cisco.

Neal Ziring, NSA Technical Director for the Information Assurance Directorate

David Hoffman, Director of Security Policy and Global Privacy Officer, Intel

Moderator: Bill Scherlis, CMU

Location: Oak Forest Ballroom

3:00 - 3:30

Break

Hannover I Prefunction

3:30 - 5:00

Research Paper Session: Sociotechnical Systems

Session Chair: Travis Breaux, CMU

Location: Hannover I

Research Work in Progress

Session Chair: Huaiyu Dai, NCSU

Location: Hannover III

International Research Network for the Science of Security (IRN-SoS) -- Kick-off Meeting

Jeff Carver, University of Alabama

Location: Hannover II

Open vs. Closed Systems for Accountability

Joan Feigenbaum, Aaron D. Jaggard and Rebecca Wright

Log Your CRUD: Design Principles for Software Logging Mechanisms

Jason King and Laurie Williams

A New Approach to Modeling and Analyzing Security of Networked Systems

Gaofeng Da, Maochao Xu and Shouhuai Xu

6:00 - 9:00

Poster Session and Reception

Conference Dinner

North Carolina Museum of Natural Sciences

11 W. Jones St. Raleigh, NC 27602

Wednesday, April 9, 2014

8:00 - 10:30

Registration - Esplanade Gallery

8:00 - 9:00

Breakfast

Esplande (sit in Oak Forest Ballroom to eat)

9:00 - 10:30

Announcements

Location: Oak Forest Ballroom

Keynote: What the Science of Security might learn from the Evolution of the Discipline of Empirical Software Engineering

Vic Basili, Professor Emeritus, University of Maryland

10:30 - 11:00

Break

Hannover I Prefunction

11:00 - 12:30

Research Paper Session: Human Aspects

Session Chair: Robert Proctor, Purdue

Location: Hannover I

Tutorial: Let's Play Poker: Effort and Software Security Risk Estimation in Software Engineering

Laurie Williams, NCSU

Location: Hannover II

Less is More? Investigating the Role of Examples in Security Studies using Analogical Transfer

Ashwini Rao, Hanan Hibshi, Travis Breaux, Jean-Michel Lehker and Jianwei Niu

Phishing in International Waters: Exploring Cross-Cultural Differences in Phishing Conceptualizations between Chinese, Indian, and American Samples

Rucha Tembe, Olga Zielinska, Yuqi Liu, Kyung Wha Hong, Emerson Murphy-Hill, Chris Mayhorn and Xi Ge

Human Factors in Webserver Log File Analysis: A Controlled Experiment on Investigating Malicious Activity

Lucas Layman, Sylvain David Diffo and Nico Zazworka

12:30 - 1:30

Lunch

Esplande (sit in Oak Forest Ballroom to eat)

1:30 - 2:45

Invited Talks

Location: Oak Forest Ballroom

2:45 - 3:15

Break

Hannover I Prefunction

3:15 - 4:45

Research Paper Session: Adaptivity and Dynamics

Session Chair: Kevin Sullivan, University of Virginia

Location: Hannover I

Tutorial: Authentication and Access-Control in Distributed Systems

Mike Reiter, UNC

Location: Hannover III

Tutorial: Understanding the 'H' in Science of Security HCI Research: Methods and Lessons Learned from Investigations of Phishing

Chris Mayhorn, NCSU

Location: Hannover II

Characterizing the Power of Moving Target Defense via Cyber Epidemic Dynamics

Yujuan Han, Wenlian Lu and Shouhuai Xu

Analyzing an Adaptive Reputation Metric for Anonymity Systems

Anupam Das, Nikita Borisov and Matthew Caesar

Proving Abstractions of Dynamical Systems through Numerical Simulations

Sayan Mitra

Hot SoS