Call for papers: First International Workshop on Agile Development of
Secure Software (ASSD’15)
to be held in conjunction with the 10th International Conference on
Availability, Reliability and Security (ARES'15)

Université Paul Sabatier
Toulouse, France


Submission Deadline: April 15, 2015 (Extended to 22/4/2015)


Scope
=====
Most organizations use the agile software development methods, such as
Scrum and XP for developing their software. Agile software development
methods are not well aligned with the traditional security-related
development activities that were developed with waterfall in mind; they
allow change of requirements,prefer frequent deliveries, use lightweight
documentation, and their practices do not include security engineering
activities. These characteristics limit their use for developing secure
software. For instance, they do not consider conflicting security
requirements that emerge in different iterations.

The goal of the workshop is to bring together security and software
development researchers to share their finding, experiences, and
positions about developing secure software using the agile methods. The
workshop aims to encourage the use of scientific methods to investigate
the challenges related to the use of the agile approach to develop
secure software. It aims also to increase the communication between
security researchers and software development researchers to enable the
development of techniques and best practices for developing secure
software using the agile methods.

Topics of interest
==================
The list of topics that are relevant to the ASSD workshop includes the
following, but is not limited to:
• Challenges for agile development of secure software
• Processes for agile development of secure software
• Incremental development of cyber-physical systems
• Secure software development training and education
• Tools supporting incremental secure software development
• Usability of agile secure software development
• Security awareness for software developers
• Security metrics for agile development
• Security and robustness testing in agile development


Important dates
===============
Submission Deadline: April 15, 2015 (Extended to 22/4/2015)
Author Notification: May 11, 2015
Proceedings version: June 8, 2015
Conference: August 24-28, 2015

Workshop Chairs
===============
Juha Röning
University of Oulu, Finland

Lotfi ben Othmane
Fraunhofer SIT, Germany


Program committee
=================
Benjamin Aziz, University of Portsmouth, UK
Bharat Bhargava, Purdue University, USA
Eric Bodden, TU Darmstadt, Germany
Mark van den Brand, The Eindhoven University of Technology, The Netherlands
Daniela Soares Cruzes, SINTEF ICT, Trondheim, Norway
Brian Fitzgerald, Lero, Ireland
Andrey Hoursanov, SAP AG, Germany
Martin Gilje Jaatun, SINTEF ICT, Trondheim, Norway
Igor Kotenko, Russian Academy of Sciences, Russia
Lotfi ben Othmane, Fraunhofer SIT, Germany
Andreas Poller, Fraunhofer SIT, Germany
Juha Röning, University of Oulu, Finland
Klaas-Jan Stol, Lero, Ireland
Sven Türpe, Fraunhofer SIT, Germany
Antti Vähä-Sipilä, F-Secure, Finland
Michael Waidner, Fraunhofer SIT, Germany
Mohammad Zulkernine, Queen's University, Canada


Submission
==========
Authors are invited to submit research and case studies papers (maximum
length is 8 pages) according the following guidelines: two columns,
single-spaced, including figures and references, using 10 pt fonts and
number each page. The selected papers will be published in the ARES
proceedings by the Conference Publishing Services (CPS) of IEEE.

Submitted papers will be carefully evaluated based on originality,
significance, technical soundness, presentation and clarity of exposition.

Workshop website
================
http://www.ares-conference.eu/conference/workshops/assd-2015/