CALL FOR PRESENTATIONS FOR
			Sixth Annual Workshop
	    On DISTRIBUTED OBJECTS and COMPONENTS SECURITY
	http://www.omg.org/news/meetings/docsec2002/call.htm

March 18-21, 2002

Baltimore, Maryland, USA

Hosted by 
The Object Management Group

Co-sponsored By: Promia and NSA

Index Program Registration Hotel Demo
(will be available by February 8th, 2002)

INTRODUCTION

For the past five years, the Distributed Object and Components
Security (DOCSec) workshop has provided a forum for discussing the
issues associated with integrating security into Application
Middleware. Each year, the program that has emerged has focused on the
practical technical problems of integrating separately chosen security
technologies and changing middleware & platform choices. This problem
is especially acute for organizations that use more than one
middleware platform.

For this Sixth DOCSec Workshop, the program committee solicits both
case studies from enterprises and vendors who have had to confront
these problems and speculative or available techniques and tools for
effectively constructing an operational system using (nearly)
arbitrary security technologies and one or more middleware platforms
and architectures. Of special interest would be such techniques or
tools that use modeling technologies such as UML, which would fit into
the OMG's Model Driven Architecture initiative.

The Workshop is open to anyone who is building - or trying to build -
security products or secure applications that are, or can be, used in
a Distributed Objects and Components environment. Continuing with the
program that has proven successful in past year, the four-day workshop
will start with two days of tutorials. The first tutorial will be a
survey of existing and emerging Distributed Object and Component
Application Middleware technologies and specifications. The second
tutorial will be a survey of existing and emerging security
technologies and how they can be integrated with DOC middleware. The
final two days will consist of sessions that explore user, developer
and researcher experiences with specifying, designing, developing, and
deploying secure DOC products and systems.

***Attention***

A limited number of low-fee ($100) registrations are now available to
full-time students studying at accredited institutions.

These will be initially available to students who submit abstracts
that are accepted by the Program Committee and placed in the workshop
program.

Any remaining discounted registrations slots will then be made
available on a first- come, first-served basis to qualified student
registrants for the workshop.

CALL FOR PRESENTATIONS

The Workshop Program Committee is seeking proposals for presentations
or panels addressing any of the following topics:

    * Summary presentations of existing and emerging DOC application
	middleware with specific emphasis on the security aspects;
    * Summary presentations relevant to the relationship of DOC
	applications and secure online identity (e.g., Liberty Alliance,
	Hailstorm/Passport, etc.)
    * Summary presentations or case studies related to modeling and
	deploying flexible DOC security solutions
    * Summary presentations of existing and emerging security
	technologies and specifications that have been (are being) developed
	as to provide or integrate security into one or more middleware
	architectures (for example, federated identity);
    * User case studies describing problems encountered and lessons
	learned as DOC middleware was integrated with security technologies to
	produce operational systems;
    * User case studies describing approaches to, or problems with,
	specifying and then verifying the security requirements for DOC
	systems - especially ones based on more than one kind of middleware;
    * Vendor case studies describing technical development and
	marketing problems with secure DOC middleware technologies and
	standards;
    * Academic or industrial research or advanced development in the
	areas of specifying, designing, or developing secure DOC middleware -
	especially through the use of models and modeling languages;
    * Research into techniques and technologies for specifying and
	verifying security requirements for distributed security technologies
	and integration of those technologies with both homogeneous and
	heterogeneous DOC middleware environments;
    * Realization of security architectures. User experiences on what
	compromises had to be made to paper security models when faced with
	commercial product reality;
    * Integration from a reliance and not just an interoperability
	perspective. How a middleware security system can rely on existing
	infrastructures (e.g., PKI, X.500 directory, Kerberos, etc.) to
	provide functionality.
    * Security validation: How do fielded system meet requirements?
	How do users gain and maintain confidence in systems?
    * Management: How can DOC security systems be effectively managed?
	What are the best strategies for ensuring the integrity of
	authentication and authorization data that prevent security breaches
	due to attacks on the data or configuration management failures.

INSTRUCTIONS

Interested individuals or organizations are invited to submit, via
email, a brief (one printed page or 60 to 80-character email lines of
text) abstract of the presentation/position they are proposing for the
Workshop to secws@omg.org.

Abstract Submission due: January 26, 2002
Authors of selected presentations notified February 4,  2002
Final workshop program available on web site February 8, 2002
Deadline for final presentations: February 25, 2002
Workshop:  March 18-21, 2002

 
INFORMATION

If you have any questions or require additional information about the
workshop program or venue, please send email to secws@omg.org.