Network of Excellence in Internet Science

[External Event] MetriSec 2012: 8th International Workshop on Security Measurements and Metrics: Call for Papers

September 21, 2012, Lund, Sweden

Workshop overview

Quantitative assessment is a major stumbling block for software and system security. Although some security metrics exist, they are rarely adequate. The engineering importance of metrics is intuitive: you cannot consistently improve what you cannot measure. Economics is an additional driver for security metrics: customers are unlikely to pay a premium for security if they are unable to quantify what they receive.

The goal of the workshop is to foster research into security measurements and metrics and to continue building the community of individuals interested in this field. This year, MetriSec continues its co-location with ESEM, which offers an opportunity for the security metrics folks to meet the metrics community at large.

The organizers solicit original submissions from industry and academic experts on the development and application of repeatable, meaningful measurements in the fields of software and system security. The topics of interest include, but are not limited to:

  • Security metrics
  • Security measurement and monitoring
  • Development of predictive models
  • Experimental validation of models
  • Formal theories of security metrics
  • Security quality assurance
  • Empirical assessment of security architectures and solutions
  • Mining data from attack and vulnerability repositories: e.g. CVE, CVSS
  • Software security metrics
  • Static analysis metrics
  • Simulation and statistical analysis
  • Security risk analysis
  • Industrial experience

Important dates

Submission of papers: May 30

Notification to authors: June 24

Submission of camera-ready: July 1

Workshop: September 21

The page limit for the final proceedings version is 10 pages in double-column format; short papers are limited to 4 pages. Authors should use the ACM Conference Proceedings Template when preparing their submission. Only PDF files are accepted.

Authors of accepted papers must present their work at the workshop. The proceedings of the workshop will be electronically published by the ACM.