Nippon-European Cyberdefense-Oriented Multilayer threat Analysis

Student internship at IBM Research Zurich

23 April 2015

Intern Position Available in Systems Security for Cloud Storage systems

The cloud storage & security research team at IBM Research - Zurich is looking for outstanding graduate students in the area of systems security. Candidates should have a good understanding of Operating Systems architecture, distributed systems and C/C++ system programming skills. Knowledge of memory corruption prevention and fuzz testing techniques is beneficial. During the  six month internship the successful candidate will develop novel techniques for vulnerability detection in distributed operating system components.

Contact for more information.


Professor in Cyber Security and Privacy at Edinburgh

21 April 2015

Informatics at Edinburgh is recruiting a new (full) professor in the general area of Cyber Security and Privacy.  Specific topics of interest include systems security, network security, applied cryptography, but experts in other areas are encouraged to apply.

Starting date: 1st October 2015 or later by negotiation.
Closing date:  11th May 2015.
Full details

The department is the largest, most research productive Informatics and Computer Science department in the UK; we are also one of the top places for undergraduate teaching.  We are looking for an outstanding research leader and educator who can help us grow our expertise in the security and privacy area.

Call for Papers: QASA 2014

05 May 2014

3rd International Workshop on Quantitative Aspects in Security Assurance
Affiliated workshop with ESORICS 2014
Wroclow, Poland, September 10-11, 2014


There is an increasing demand for techniques to deal with quantitative aspects of security assurance at several levels of the development life-cycle of systems & services, e.g., from requirements elicitation to run-time operation and maintenance. The aim of this workshop is to bring together researchers and practitioners interested in these research topics with a particular emphasis techniques for service oriented architectures. The scope of the workshop, is intended to be broad, including aspects as dependability, privacy, risk and trust.

The list of topics includes, but it is not limited to:

  •         Probabilistic/stochastic model checking
  •         Quantitative information flow analysis
  •         Quantitative issues in access and usage control
  •         Security testing techniques
  •         Static/Dynamic code analysis techniques
  •         Metrics for security, trust and privacy
  •         Incremental/modular security assurance analysis
  •         Process compliance assurance techniques
  •         Tool support for quantitative techniques for security assurance
  •         Simulation techniques
  •         Model-driven techniques for security, trust, risk and privacy
  •         Assurance cases modelling and analysis

Important dates:

Submission deadline for paper:        June 21 2014
Notification:                                         July 28 2014

Workshop Organizers:

  •     Alessandro Aldini, U. of Urbino
  •     Fabio Martinelli, IIT-CNR
  •     Neeraj Suri, TU Darmstadt

Program Committee:

  •     Lujo Bauer, CMU
  •     Frédéric Cuppens, ENST-Bretagne
  •     Jesus Luna, CSA
  •     Charles Morisset, U. of Newcastle
  •     Pierangela Samarati, U. of Milan
  •     Andrei Sabelfeld, Chalmers
  •     Herbert Wiklicky, ICL
  •     Jorge Cuellar, SIEMENS
  •     Javier Lopez, U. of Malaga
  •     Cathy Meadows, NRL
  •     Flemming Nielson, DTU
  •     Reijo Savola, VTT
  •     Ketil Stoelen, SINTEF
  •     Lorenzo Strigini, City Univ. London

Programme and Proceedings:

The program will consist of invited speakers as well as of submitted papers. The workshop post-proceedings will be published with LNCS Springer, in cooperation with DPM/SETOP workshops.


The workshop is sponsored by the EU FP7 projects Network of Excellence



The SPECS project started

28 November 2013

The SPECS project started on 1st November 2013, aiming at developing and implementing an open source framework to offer Security-as-a-Service, by relying on the notion of security parameters specified in Service Level Agreements (SLA), and also providing the techniques to systematically manage their life-cycle.

The kick off meeting was held on 25th and 26th November 2013 in Naples (Italy).