Software security is about protecting information and ensuring that systems continue to function correctly even when under malicious attack. The traditional approach of securing a system has been to create defensive walls such as intrusion detection systems and firewalls around it, but there are always cracks in these walls, and thus such measures are no longer sufficient by themselves. We need to be able to build better, more robust and more “inherently secure” systems, and we should strive to achieve these qualities in all software systems, not just in the ones that “obviously” need special protection.
This workshop will focus on techniques, experiences and lessons learned for engineering secure and dependable software using the DevOps paradigm, as well as other forms of agile development.
Suggested topics include, but are not limited to:
Security in DevOps
Security aspects of software deployment
Security in Continuous Deployment
Security Architecture in Agile Development
Security testing in DevOps
Container security for DevOps
Security automation tools
Security in agile software development
Agile security requirements
Risk management in software projects
Agile testing for security
Quantitative measurement of security properties
Static and dynamic analysis for security
Verification and assurance techniques for security properties
Security and usability
Design and deployment of secure services
Secure composition and adaptation of services
Teaching secure software development
Experience reports on successfully attuning developers to secure software engineering
Industry experience talks
Sep 14
2017
Conference Date
Draft paper submission deadline
Draft Paper Acceptance Notification
Registration deadline
Final Paper Deadline
Submit Comment