Information security has become a crucial concern for the commercial
deployment of almost all applications and middleware. Although this is
commonly recognized, the incorporation of security requirements in the
software development process is not yet well understood. The
deployment of security mechanisms is often ad hoc, without a formal
security specification or analysis, and practically always without a
formal security validation of the final product. Progress is being
made, but there remains a wide gap between high-level security models
and actual code development.
We aim to bring together researchers and practitioners from both the
security and the software engineering communities, from academia and
industry, who are working on applying formal methods to the design and validation of
large-scale systems.
We seek original research papers addressing foundational issues in formal
methods in security engineering. Topics covered include, but are not
limited to:
security specification techniques;
formal trust models;
combination of formal techniques with semi-formal techniques such as UML;
formal analyses of specific security properties relevant to software development;
security-preserving composition and refinement of processes;
symbolic and computational models of security protocols;
integration of security aspects into formal development methods and tools;
access control policies;
information flow;
risk management and network security;
formal analysis of firewalls and intrusion detection systems;
trusted computing;
case studies.
All the FMSE workshops have been co-located with CCS, with proceedings
published by the ACM. FMSE 2006 is the fourth in the series.
(Previous proceedings).
All submissions will be peer-reviewed.
Authors of accepted papers must guarantee that their paper
will be presented at the workshop. Final proceedings will be published
by ACM.
Program Chairs
Andrew D. Gordon, Microsoft Research, UK
David Sands, Chalmers University of Technology, Sweden
Michael Waidner, IBM Zurich Research Lab, Switzerland
Submission Guidelines
Submissions must be received by June 16, 2006 to be considered. If you
have problems, please contact the program chairs.
Submissions must not substantially overlap papers that have been
published or that are simultaneously submitted to a journal or a
conference with proceedings.
The paper must list all authors and their
affiliations. It should begin with a title, a short abstract, and a
list of key words, and its introduction should summarize the
contributions of the paper at a level appropriate for a non-specialist
reader. The paper should be at most 12 pages excluding the
bibliography and clearly marked appendices, and at most 15 pages in
total, using at least 11-point font, reasonable margins, and page
numbers on each page. Committee members are not required to read
appendices; the paper should be intelligible without them. The
document must be in Acrobat PDF format, and must be legible after
printing on standard grayscale printers, both those that use A4 and
those that use 8-1/2x11" paper. Submissions not meeting these
guidelines risk rejection without consideration of their
merits.
Papers must be submitted via the electronic submission
page: