1st Workshop on Safety & Security aSSurance
Critical Infrastructures Protection
conjunction with the 7th International Conference on Ambient Systems, Networks
Madrid, Spain (May 23-26 2016)
Aims & scope
Modern society heavily relies on large, heterogeneous and complex
software-intensive systems to support all kinds of daily activities.
Services such as urban transportation, logistics, health-care, data
communication, railway, aerospace, and power distribution, to name a
few, are becoming more and more dependent on the availability of such
infrastructures. Any discontinuity of service may lead to serious
problems, from severe financial losses to fatalities or injuries; the
causes have different natures, either human errors, unexpected acts of
nature, or intentional attacks like sabotage. Safety and security
(S&S) assessments in critical infrastructures measure how these
disruptions are handled and what is the impact suffered by the critical
infrastructure under stress. These assessments are normally performed
using analytical or simulation-based techniques often addressing one
single specific aspect at a time rather than studying these
infrastructures in a holistic manner.
This workshop aims at providing a forum for people from academia and
industry to communicate their latest results on theoretical advances,
industrial case studies, practical scenarios, and lessons learned in
the assurance of S&S for critical infrastructures. Since the
special interest on S&S assurance, a special focus will be put on
model-based approaches; to the joint modelling and analysis of both
cyber and physical aspects of critical infrastructures; and to the
definition of unifying modelling and analysis methodologies. Research
papers focused on safety or security assurance only are also welcome.
Topics of interest:
- Methods and Methodologies: Threat, Vulnerability and Risk Assessment; Model-Based Penetration Testing; Security Metrics Definition and
Evaluation; RAMSS Analysis; Crisis and Emergency Management; Unifying
Modelling Methodologies for Cyber and Physical Security; Resilience
Stochastic Modeling; Formal Methods; Domain Specific Languages and
Model-Driven Engineering; Multi-Level Hierarchical Modeling;
Quantitative & Qualitative Evaluation; Interconnections Among
Non-Functional Aspects (e.g., Reliability vs. Safety, Security vs.
Performance); Multisolution Processes; Resilience Analysis.
Cyber-Physical Systems; Critical Infrastructure Protection; SCADA and
Control Systems Security; Homeland Security; Transport, Manufacturing,
Energy, Health and Banking Applications; Computer Networks and Cloud
We are happy to host Boris Köpf as an invited speaker.
Boris is currently an assistant research professor at the IMDEA
Software Institute. Boris joined IMDEA after completing his Ph.D. in
the Information Security group of ETH Zurich and working as a postdoc
in the Information Security and Cryptography Group of the Max Planck
Institute for Software Systems. Before that, he studied mathematics at
the Universidad de Chile, the Universidade Federal de Campinas, and the
University of Konstanz, from which he received a M.Sc.
Reasoning about the trade-off between security and performance
Today’s software systems employ a wide variety of techniques for
minimizing the use of resources such as time, memory, and energy. While
these techniques are indispensable for achieving competitive
performance, they can pose a serious threat to security: By reducing
the resource consumption on average (but not in the worst case), they
introduce variations that can be exploited by adversaries for
recovering private information about users, or even cryptographic keys.
In this talk I will give examples of attacks against a number of
performance-enhancing features of software and hardware, and I will
present ongoing work on techniques for quantifying the resulting threat
and for choosing the most cost-effective defense.
Important dates (final)
- Paper Submission: January 28, 2016
- Notification of Acceptance: February 21, 2016
- Camera-ready Paper: March 10, 2016
Submission guidelinesAccepted papers will be included in
the ANT proceedings published by Elsevier Science in the open-access
Procedia Computer Science series on-line. At least one of the
(co)author(s) of each accepted paper is required to register and attend
the conference to present the work. PDF versions of papers should be
submitted through EasyChair submission system. The maximum length is 6 pages formatted according to the guidelines
of Procedia Computer Science: two additional pages may be added for a
price. Please refer to the pages of ANT 2016 for more detail on this.
Submitted papers will be reviewed by three members of Program Committee
(or their sub-reviewers) and selection of accepted papers will based on
relevance, quality and originality. After the conference, extended
versions of selected contributions will be consider for publication in
a Special Issue of the International Journal of Critical Computer-Based Systems.
- Stefano Marrone,
Dip. di Matematica e Fisica, Seconda Unviersità di Napoli (Italy),
- Ricardo J.
Rodríguez, Dept. of Computer Science and Systems Engineering,
University of Zaragoza (Spain), rjrodriguez[at]unizar[dot]es
Technical Programme Committee
- Simona Bernardi, Centro Univesitario de la Defensa, Universidad de
- Tomas Bures, Charles University in Prague (Czech Republic)
- Xiaolin Chang, Beijing Jiaotong University (China)
- Francesco Flammini, AnsaldoSTS, Naples (Italy)
- Juan Felipe García, Research Institute of Applied Sciences in
Cybersecurity, University of León (Spain)
- Ugo Gentile, Università di Napoli ``Federico II'', Naples
- Silvio La Porta, EMC2, Cork (Ireland)
- Anne Koziolek, Institute for Program Structures and Data Organization,
Karlsruhe Institute of Technology (Germany)
- Stefano Marrone, Seconda Università di Napoli (Italy)
- Roberto Nardone, Università di Napoli ``Federico II'', Naples
- Ehsan Noroozinejad, Kerman Graduate University of Advanced Technology (Iran)
- Giuseppe Primiero, Middlesex University, London (United Kingdom)
- Guillermo Rodriguez-Navas, Mälardalen University (Sweden).
- Ricardo J. Rodríguez, University of Zaragoza (Spain)
- Kristin Rozier, NASA/Cincinnati University (USA)
- Kumiko Tadano, NEC Corporation (Japan)
- Stefano Tonetta, Fondazione Bruno Kessler (Italy)
- Catia Trubiani, Gran Sasso Science Institute (GSSI), L'Aquila
- Valeria Vittorini, Università di Napoli ``Federico II'', Naples
- Accepted papers:
- Special Issue announcement: we are happy to announce that a call
for paper for a special issue in the International Journal of Critical
Computer-Based Systems is available here: submission deadline 15th of October 2016.