From ses at ll.mit.edu Fri Oct 13 16:43:29 2006 From: ses at ll.mit.edu (Stuart E. Schechter) Date: Fri, 13 Oct 2006 16:43:29 -0400 Subject: [EIS] WESII Registration Deadline - Monday@11:59PM EDT Message-ID: If you are planning to attend WESII, but have not yet registered, please do so by Monday night. Registration is free thanks to sponsorship by the Institute for Information Infrastructure Protection (I3P - ). While walk-ins will be welcomed on a space-available basis, we are nearing the capacity constraints of our conference room. We strongly encourage you to register in advance. ======================================================================== The Workshop on the Economics of Securing the Information Infrastructure http://wesii.econinfosec.org/ October 23-24, 2006 Washington, DC FINAL CALL FOR PARTICIPATION ======================================================================== Preliminary Program ======================================================================== For updates, see Monday, October 23, 2006 9:00AM Panel Economic Barriers and Incentives for DNSSEC Deployment Moderator: Andy Ozment Panelists: Sam Weiler (SPARTA) Steve Crocker (Shinkuro) Matt Larson (VeriSign) 11:00AM Session 1 * Comparing the Costs of Public Key Authentication Infrastructures Patroklos Argyroudis (University of Dublin, Trinity College) Robert McAdoo (University of Dublin, Trinity College) Donal O'Mahony (University of Dublin, Trinity College) * Economics of Internet Security Outsourcing: Simulation Results Based on the Schneier Model William Yurcik (University of Illinois) Wen Ding (University of Illinois) * The Effect of Information Security Incidents on Corporate Values in the Japanese Stock Market Masaki Ishiguro (Mitsubishi Research Institute) Hideyuki Tanaka (The Graduate School of Interdisciplinary Information Studies), Kanta Matsuura (Institute of Industrial Science, University of Tokyo), Ichiro Murase (Mitsubishi Research Institute) 1:30PM Panel Empirical research: obstacles and solutions Moderator: Allan Friedman Panelists: Ramona Rantala (Bureau of Justice Statistics) Scott Dynes (Dartmouth Tuck School of Business) Larry Gordon (University of Maryland) Patrick J. Kelly (George Washington University) 3:30PM Session 2 * Toward A Dynamic Modeling Of The Vulnerability Black Market Jaziar Radianti (Agder University College) Jose. J. Gonzalez (Agder University College) * Toward One Strong National Breach Disclosure Law - Justification and Requirements William Yurcik (University of Illinois) Ragib Hasan (University of Illinois at Urbana-Champaign) * Using Self-interest to Prevent Malice; Fixing the Denial of Service Flaw of the Internet Bob Briscoe (BT & UCL) Tuesday, October 24, 2006 9:00AM Session 3 * A Closer Look at Attack Clustering Rainer B?hme (TU Dresden) Gaurav Kataria (Carnegie Mellon University) * Predictive Modelling for Security Operations Economics Mike Yearworth (HP Labs) Brian Monahan (HP Labs) David Pym (HP Labs) * Assessing Trusted Network Access Control Cost-Benefit Factors Susmit Panjwani (Deviant Intelligence LLC) Stephanie Tan (IBM) 11:00AM Session 4 * The Statistical Value of Information Luther Martin (Voltage Security) * On the Economic Placement of Monitors in Router Level Network Topologies Yongping Tang (Iowa State University) Thomas E. Daniels (Iowa State University) 1:00PM Work-in-Progress (WIP) Session * An Example Collaborative Exercise for Decision Making in Investment in Cyber Security Jonathan Crawford (University of Virginia) Kenneth G. Crowther (University of Virginia) Barry Horowitz (University of Virginia) James Lambert (University of Virginia) * Securing Our Data Storage Infrastructures Bob Mungamuru (Stanford University) Hector Garcia-Molina (Stanford University) * A Neo-institutional Perspective on Cyber Attacks Nir Kshetri (University of North Carolina--Greensboro) * Beyond Media Hype: Empirical Analysis of Disclosed Privacy Breaches 2005-2006 and a DataSet/Database Foundation for Future Work Ragib Hasan (University of Illinois at Urbana-Champaign) William Yurcik (University of Illinois) * Securing the Process of Insurance Application Vincent Wolff-Marting (University of Leipzig) Andr? K?hler (University of Leipzig) Volker Gruhn (University of Leipzig) * Evaluation of Information Security Investment Portfolios: A Probabilistic Approach Tae-Sung Kim (Chungbuk National University) Chandrasekhar Subramaniam (UNC Charlotte), Sungjune Park (UNC Charlotte), Ram Kumar (UNC Charlotte) * Direct measurement of spam zombie activity in a residential broadband network Geoff Bennett (StreamShield) Brian Webb (BT Retail) ======================================================================== Workshop Organizers ======================================================================== General Chair: Eric Goetz I3P Program Chair: Stuart Schechter MIT Lincoln Laboratory Program Committee: Alessandro Acquisti Carnegie Mellon University Heinz School of Public Policy & Management Ross Anderson University of Cambridge Jean Camp Indiana University Huseyin Cavusoglu University of Texas at Dallas Richard Clayton University of Cambridge Steve Crocker Shinkuro / DNSSEC Deployment Working Group Ben Edelman Harvard University Department of Economics Allan Friedman Harvard University Kennedy School of Government Adam M. Golodner Cisco Systems Larry Gordon University of Maryland Smith School of Business Yacov Haimes University of Virginia Cathy Handley U.S. Department of Commerce, National Telecommunications & Information Administration Barry Horowitz University of Virginia Richard Hovey U.S. Federal Communications Commission (FCC) Jeff Hunker Carnegie Mellon University Heinz School of Public Policy & Management M. Eric Johnson The Tuck School of Business at Dartmouth College Jeffrey M. Kopchik U.S. Federal Deposit Insurance Corporation (FDIC) Technology Supervision Branch Steve Lipner Microsoft Marty Loeb University of Maryland Smith School of Business Doug Maughan U.S. Department of Homeland Security (DHS) Science and Technology Directorate Doug Montgomery U.S. National Institute of Standards & Technology Internetworking Technologies Group Milton Mueller Syracuse University School of Information Studies Andrew Odlyzko University of Minnesota Andy Ozment MIT Lincoln Laboratory / University of Cambridge Shari Lawrence Pfleeger RAND Corporation Bruce Schneier Counterpane Internet Security Rahul Telang Carnegie Mellon University Heinz School of Public Policy & Management Andrew Wyckoff Organisation for Economic Cooperation and Development (OECD) Bill Yurcik National Center for Supercomputing Applications (NCSA)