Second Workshop on Quality of Protection Workshop co-located with CCS-2006 Mon. Oct. 30 - Alexandria VA, USA

Home Programme Invited Speaker Panel Session QoP 2005 Proceedings Call For Papers Call For Participation Registration Committees Acknowledgments QoP 2005 QoP 2007 QoP 2008 MetriSec 2009

Workshop Programme 09:00 - 09:15 Opening Fabio Massacci (chair) Guenter Karjoth (chair) Foreword 09:15 - 10:45 Session 1: Software security metrics Pratyusa K. Manadhata, Jeannette M. Wing, Mark A. Flynn and Miles A. McQueen - Measuring the Attack Surfaces of Two FTP Daemons Abstract Gyrd Brændeland and Ketil Stølen Using model-based security assessment in component-oriented system development. A case-based evaluation Abstract Jari Råman Contracting over the Quality aspect ofSecurity in Software Product Markets Abstract 10:45 - 11:00 Coffee Break 11:00 - 12:00 Invited Talk John McHugh - Quality of Protection: Measuring the Unmeasurable? 12:00 - 12:20 Session 1. Continuation Riccardo Scandariato, Bart De Win and Wouter Joosen - Towards a measuring framework for security properties of software (Short) Abstract 12:20 - 13:30 Lunch 13:30 - 15:00 Session 2: Network security metrics Jelena Mirkovic, Peter Reiher, Sonia Fahmy, Roshan Thomas, Alefiya Hussain, Stephen Schwab and Calvin Ko - Measuring Denial of Service Abstract Joseph Pamula, Paul Ammann, Sushil Jajodia and Vipin Swarup - A Weakest-Adversary Security Metric for Network Configuration Security Analysis Abstract Hanno Langweg - Framework for Malware Resistance Metrics Abstract 15:00 - 15:15 Coffee Break 15:15 - 16:00 Session 2. Continuation Ho Chung and Clifford Neuman - Modelling the Relative Strength of Security Protocols (short) Abstract Muhammad Abedin, Syeda Nessa, Ehab Al-Shaer and Latifur Khan - Vulnerability Analysis For Evaluating Quality of Protection of Security Policies (short) Abstract 16:00 - 17:30 Panel Session: Is risk analysis a good system security metric? O. Sami Saydjari (moderator) Virgil D. Gligor Deb Bodeau Alessandro Acquisti Roy Maxion 17:30 - 17:45 Conclusion