Ravaudeuse a la fenetre
STAST2013
3rd Workshop on Socio-Technical Aspects in Security and Trust
Tulane University, New Orleans, LA, USA

Co-located with
26th IEEE Computer Security Foundations Symposium (CSF)

Important Dates

    Papers due:
    14 April 2013
    28 April 2013 (extended)
  • Notification:
    15 May 2013
  • Pre-proceeding version due:
    10 June 2013
  • Final version due:
    14 July 2013
    (after the workshop)
  • Workshop:
    29 June 2013

Other Editions

STAST 2018:
stast2018.uni.lu

STAST 2017:
stast2017.uni.lu

STAST 2016:
stast2016.uni.lu

STAST 2015:
stast2015.uni.lu

STAST 2014:
stast2014.uni.lu

STAST 2012:
stast2012.uni.lu

STAST 2011:
stast2011.uni.lu

Supported by

SnT

SnT

UNILU

UNICT

DTU

DMU

Proceedings

Proc. of 3rd Int. Worshop on Socio-Technical Aspects in Security and Trust (STAST)

G. Bella and G. Lenzini (eds.), IEEE, 2013
are available at IEEEXplore digital library
IEEE Catalogue Number CFP1370P-ART (ISBN-13: 978-0-7695-5065-7)

Motivation

Today, security threats are hardly sheer technical. They are rather socio-technical threats and come from adversaries who combine social engineering practices with technical skills to circumvent the defenses of information systems. Socio-technical attacks often succeed by exploiting the users' ill-understanding of security mechanisms or loopholes in poorly designed user interfaces and unclear security policies. In securing systems against these threats, humans obviously cannot be treated as machines. Humans have peculiar decision making. But they actions and behavioural patterns, despite apparently irrational, are perfectly justifiable from a cognitive and a social perspective. Computer security hence appears to acquire more and more the facets of an interdisciplinary science with roots in both interpretive and positivist research traditions.

Goals

The workshop intends to foster an interdisciplinary discussion on how to model and analyse the socio-technical aspects of modern security systems and on how to protect such systems from socio-technical threats and attacks. It aims to stimulate an active exchange of ideas and experiences from different communities of researchers in order to identify weaknesses potentially emerging from poor usability designs and policies, from social engineering, and from deficiencies hidden in flawed interfaces and implementations. It will bring together experts in computer security and in cognitive, social, and behavioral sciences; it will collect the state of the art, identify open and emerging problems, and propose future research directions.

Duration

STAST2013 is a one day workshop.

Acknowledgement

Supported by the National Research Fund Luxembourg C11/IS1183245/STAST.