| Organizer |
|
China Information Technology Security Evaluation Center
|
|
|
Host
|
| Key Laboratory for Information System Security of Ministry of Education, Tsinghua University |
|
| Important dates |
|
Paper submission deadline: Aug 15th, 2009
|
| Notification of paper acceptance: Nov 15th, 2009 |
|
Final paper submission deadline: Dec 8th, 2009
|
|
| Prize manuscript |
| |
|
|
|
Scope and Topics |
|
|
About the Conference
| |
|
Information technologies of computer, network communication, and software are developing rapidly. While the technological advancement and extensive application of these technologies are promoting the pace toward the information society, large amount of vulnerabilities hidden in these technologies are posing increasingly greater threats to the current information security situation. Therefore, it is of great importance to carry out research on vulnerability analysis and risk assessment. Conference on Vulnerability Analysis and Risk Assessment (VARA) 2009 will serve as a platform for information security professionals to exchange the latest achievements in methodologies, approaches, technologies, and practices in scopes of vulnerability analysis and risk assessment, shedding a light on the trends of technology exploration and information security assurance measures. VARA 2009 will feature keynote speeches, thesis speeches and workshops.
|
| |
|
|
| |
|
| |
Authors are invited to submit original unpublished research papers to VARA 2009. Topics include, but are not limited to |
|
| |
Software security analysis technology |
|
| |
|
Software security analysis theory, model, method, and practice
Software development lifecycle based flaw analysis and detection
Software security metrics and assessment |
|
| |
Risk assessment |
|
| |
|
Risk assessment theory, approach, technology, and tool
Security threat analysis and modeling
Information system risk trend analysis and prediction
Risk assessment data analysis, transfer modeling, and realization |
|
| |
Information security vulnerability analysis technology |
|
| |
|
Description methods, categorization and management strategies of vulnerabilities
Vulnerability interrelationship analysis and threat analysis
Exploit technique |
|
| |
New technology security highlights |
|
| |
|
New operating system security study
3G technology security
Web 2.0 technology security
Cloud computing security |
|
| |
Other relevant technologies |
|
| |
|
Trustworthy software
Malicious code analysis
Internet security analysis
Network security technology study |
|
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
|
