Twelfth Annual IFIP WG 11.3 Working Conference on Database Security


For more information about the location, check out
http://www.med.auth.gr/localsrv/medical/conference/mie97/

-------------------------------------------------------------------
Call for Papers
Twelfth Annual IFIP WG 11.3 Working Conference on Database Security
Porto Carras Complex, Chalkidiki, Greece
July 15--17, 1998
--------------------------------------------------------------------

The conference provides a forum for presenting original unpublished
research results, practical experiences, and innovative ideas in
database security.  Papers and panel proposals are
solicited. Submissions will be refereed by the members of the Working
Group and selected based on technical merit and their relevance to the
aim of the IFIP Working Group 11.3.

The conference is limited to about forty participants so that ample
time for discussion and interaction may occur. Preliminary conference
proceedings will be distributed to participants; revised papers and an
account of the discussions at the meeting will be published by IFIP as
the next volume in the ``Database Security: Status and Prospects''
series.

The conference will be held in Porto Carras Complex in Sithonia
slope on a coast of unique natural beauty in Sithonia, a place
combining pine forests and vineyards with golden sandy beaches and
clear sea water.  The Porto Carras Resort Centre is located
approximately 100 kilometres south east of Thessaloniki; transfer time
from the Thessaloniki international airport is about one and a half
hours by fast roads. It is often used as conference centre and it
offers full facilities for conferences and similar events

Instruction for Authors:

Authors are invited to submit five copies of their papers to the
program chair. Manuscripts must be in English, typed in double spaced
format in 12 point font, and not more than 5000 words. Each copy
should have a cover page with name, title, and address (including
e-mail address) of authors, and an abstract of no more than 200
words. Electronic or fax submissions will not be accepted.

Proposals for panels should include a one-page description of the
subject matter and should be submitted electronically.


Program Chair:  

Professor Sushil Jajodia,
Mail Stop 4A4,
George Mason University, Fairfax, VA 22030-4444, USA
Tel: 703-993-1653, Fax:   703-993-1638, email: jajodia@gmu.edu
http://www.isse.gmu.edu/~csis/faculty/jajodia.html

Important Dates

Submissions must be received by: March 10, 1998
Notification of acceptance/rejection:  May 10, 1998
Final papers for conference proceedings:  June 10, 1998

Conference Organizers:

General Chair:  George Pangalos  Univ. of Thessaloniki
Organising Committee:  Socratis Katsikas  Univ. of the Aegean
                       Lefteris Bozios  AHEPA Univ. Hospital
                       Giannis Mavridis  Univ. of Thessaloniki
IFIP WG11.3 Chair:  David L. Spooner  Rensselaer Poly. Inst.



Summary of IFIP WG 11.3 Issues:

The following is a list of questions and issues of current interest to
WG 11.3:

1. What are good techniques for describing the various factors
involved in designing secure database systems, such as:

o security and privacy policy requirements
o threats to security
o costs/benefits of meeting security and privacy requirements (or
  risks of not meeting them)?

What relationships should exist between these descriptions and those
already associated with database systems, such as queries, views and
schemas?

2. What are good methodologies for:

o obtaining these descriptions

o using them in developing secure database systems (including
  associated applications)

o determining with high assurance that the implemented systems are
  consistent with their descriptions and specifications?


3. What are the security issues associated with the organization of
components (architectures) of database systems, such as networked
systems (e.g., the WWW), client/server architectures, and
layered/modular internal system architectures?  How does the
integration, interconnection, and interoperation of heterogeneous
database systems impact the security of components and the overall
system?

4. What are the interactions and tradeoffs between functionality,
performance, and security, in various technical features of database
systems, such as query processing, data/object model, integrity
maintenance, concurrency control/recovery facilities, and
inference/deduction capabilities?

5. What information can be maintained or generated by a database
system to assist in maintaining security or privacy, and what are good
techniques for using such information, either at run-time or in
subsequent analysis, to detect, discourage, and prevent security
violations?


More information about the conference and about IFIP WG 11.3 can be
found at URL: http://www.cs.rpi.edu/ifip/.