Dear all, for your information. Please excuse possible cross-postings. --------------------------------------------------------------------------- CALL FOR PAPERS IMF 2006 International Conference on IT-Incident Management & IT-Forensics Stuttgart, Germany October 18 - 19, 2006 http://www.imf-conference.org/ mailto:imf2006@gi-fg-sidar.de --------------------------------------------------------------------------- Information technology has become crucial to almost every part of society. IT infrastructures have become critical in the world-wide economy, the financial sector, the health sector, the government's administration, the military, and the educational sector. Due to its importance the disruption or loss of IT capabilities results in a massive reduction of operability. Hence, IT security is continously gaining importace. Although security usually gets integrated into the design process of IT systems nowadays, the process of maintaining security in the operation of IT infrastructures still lacks the appropriate attendance in most cases. Especially the capability to manage and respond to IT security incidents and their forensic analysis is established in the rarest cases. The quickly rising number of security incidents worldwide makes the implementation of incident management capabilities essential. In order to advance the fields of IT-Incident Management and Forensics the special interest-group Security - Intrusion Detection and Response (SIDAR) of the German Informatics Society (GI) organises an annual conference, bringing together experts from throughout the world, to discuss state of the art in the areas of Incident Management and IT-Forensics (IMF). IMF promotes collaboration and exchange of ideas between industry, academia, law-enforcement and other government bodies. IMF invites to submit: - Full papers of up to 20 pages, presenting novel and mature research results. Full papers will be reviewed, and papers accepted for presentation at the conference will be included in the proceedings. - Practice papers of up to 12 pages, describing best practices, case studies, lessons learned, or latest product developments. Practice papers will be reviewed. The papers will be reviewed, and papers accepted for presentation at the conference will be included in the proceedings, which are planned to appear in Springer's Lecture Notes in Computer Science (LNCS) series (approval pending) The scope of IMF 2006 is broad and includes, but is not restricted to the following areas: IT-Incident Management: Purposes of IT-Incident Management Trends, Processes and Methods within IT-Incident Management Formats and Standardisation in the IT-Incident Management Tools for the IT-Incident Management: Education and Training in the field of IT-Incident Management Awareness Determination, Detection and Evaluation of Incidents and Sensors Procedures for Handling Incidents Problems and Challenges while establishing CERTs/ CSIRTs Sources of Information/ Information Exchange/ Communities Dealing with Vulnerabilities (vulnerability response) Current Threats Early Warning System Organisations (Nat. CERT-Associations, FIRST, TERENA/ TI, TF-CSIRT) IT-Forensics: Trends and Challenges within IT-Forensics Methods, Processes and Applications for IT-Forensics ( Networks, Operating Systems, Storage Media, ICT-Systems etc.) Evidence Protection in IT-Environments Standardisation of Evidence Protection Processes Data Protection- and other legal implications for IT-Forensic Investigations Juristic Relevance of IT-Forensic Investigations Tools for IT-Forensics Forensic readiness ORGANIZING COMMITTEE -------------------- General Chair: Hardo G. Hase, Hase IT GmbH, Germany, imf2006 @ hase-bexbach.de Sandra Frings, Fraunhofer IAO, Germany Oliver Goebel, RUS-CERT, Stuttgart University, Germany Detlef Guenther, Volkswagen AG, Germany Jens Nedon, Consecur GmbH, Germany Dirk Schadt, Computer Assiociates, Germany Program Chair: Oliver Goebel, RUS-CERT, Stuttgart University, Germany, Goebel @ CERT.Uni-Stuttgart.DE Sponsor Chair: Dirk Schadt, Computer Associates, Germany, dirk.schadt @ gmail.com PROGRAM COMMITTEE ----------------- Henrik Becker Kanzlei Becker, Germany Vlasti Broucek University of Tasmania, Australia Ian Bryant NISCC, UK Brian Carrier CERIAS, USA Andrew Cormack JANET-CERT, UK Herve Debar France Telecom, France Ralf Doerrie Telekom-CERT, Germany Maximilian Dornseif University of Mannheim, Germany Ulrich Emmert esb Rechtsanwaelte Stuttgart, Germany Guenther Ennen BSI/CERT-Bund, Germany Christoph Fischer BFK-Consulting, Germany Sandra Frings Fraunhofer IAO, Germany Oliver Goebel RUS-CERT, Germany Dieter Gollmann TU Hamburg-Harburg, Germany Detlef Guenther Cert-VW, Volkswagen AG, Germany Bernhard Haemmerli ACRIS GmbH, Switzerland Hardo G. Hase Hase IT GmbH, Germany Mark Hoestra IT Forensic BV, Nethlerlands Klaus Peter Kossakowski DFN-CERT, Germany Thorsten Lieb Avocado Rechtsanwaelte Frankfurt, Germany Jim Lyle NIST CFTT, USA Neil Mitchison Joint Reseach Centre, EU Jens Nedon Consecur, Germany Jason Rafail CERT/CC, USA Damir Rajnovic CISCO-PSIRT, USA Gavin Reid CISCO-INFOSEC, USA Dirk Schadt CA, Germany Christian Schaller SIEMENS-CERT Germany Rolf Schulz gnsec, Germany Marco Thorbruegge IT Security Expert, Germany Helmut Ujen Bundeskriminalamt, Germany Andreas Wagner Frontrunner FZ LLC, Dubai Stephen Wolthusen Gjovik University College, Norway IMPORTANT DATES --------------- - April 17, 2006: Deadline for submission of full and practice papers. - June 19, 2006: Notification of acceptance or rejection. - August 7, 2006: Final paper camera ready copy due. - October 18-19, 2006: IMF 2006 conference. PAPER SUBMISSIONS AND CONFERENCE REGISTRATION --------------------------------------------- All submissions must be in English, and in either postscript or PDF format. Authors of accepted papers must ensure that their papers will be presented at the conference. Presentations should be held in English. Submitted full papers must not substantially overlap papers that have been published or that are simultaneously submitted to a journal or a conference with proceedings. Details on the electronic submission procedure as well as detailed registration information will be provided by end of 2005 on the conference Web site. SPONSORSHIP OPPORTUNITIES ------------------------- We solicit interested organizations to serve as sponsors for IMF 2006; please contact the Sponsor Chair, Dirk Schadt, for information regarding corporate sponsorship (mailto: dirk.schadt @ gmail.com). _________________________________________________________________________ Regards -- Oliver Goebel mailto:Goebel@CERT.Uni-Stuttgart.DE RUS-CERT Stuttgart University Tel:+49 711 121-3678 / -3688 (fax) Breitscheidstr. 2, 70174 Stuttgart http://CERT.Uni-Stuttgart.DE/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/