[comp.org.usenix] UNIX Security Workshop

ellie@usenix.ORG (Ellie Young) (02/10/90)

Call for Papers:  USENIX UNIX Security Workshop

Marriott Hotel, Portland, OR, August 27-28, 1990

     The Second UNIX Security Workshop is to be held in Portland, Oregon, on
Monday and Tuesday, August 27 and 28, 1990.  Matt Bishop will again be
chairing this workshop.  It will bring together researchers in computer
security dealing with UNIX and system administrators trying to use UNIX in
environments where protection and security are of vital importance.  It is
intended to provide an environment where researchers can discuss their latest
results, where researchers and practitioners can discuss the applicability of
those results to practical problems, and where system administrators can share
their unique solutions and techniques for dealing with problems.  The topics
covered by this workshop include both theoretical topics and everyday
problems.  We expect each participant to present unique attributes of his/her
environment and/or research and contribute a short (five minute) discussion
(and paper) detailing some result or solution from their environment or work.

Some topics to be considered include:

  o modeling the UNIX operating system theoretically
  o password security (password file integrity, enforcing choice of a safe
      password, spotting and handling crackers)
  o network security (problems arising from logins over an unprotected
      Ethernet, containing a break-in to one machine in a networked
      environment)
  o security in a distributed system or environment
  o file system security (auditing packages, security in an NFS environment)
  o computer worms, viruses, and other phenomena
  o new designs to obtain C-level (or better) certification
  o making existing UNIX systems more secure, and locating and fixing UNIX
      security problems
  o any other problem or contribution that participants make.

Workshop Format

     This gathering will follow a ``workshop'' format rather than a ``paper
presentation'' format.  Please submit a one or two page summary describing a
problem and, if you have one, a solution or if not, a possible approach or
approaches which looked promising but failed (or which you have not yet
tried).  Also, be sure to include with your submission a set of five (or so)
topics that you'd like to hear about.  It is possible that some participants
will not present their papers at this workshop.

     The workshop chairman will collate the papers to schedule sessions which
have appropriate audiences.  It is anticipated that some sessions will include
all participants though others may require breaking into smaller groups.  Send
your submissions to the address below by May 22, 1990.

For further information, contact:

Matt Bishop
Dept. of Mathematics and Computer Science
Bradley Hall
Dartmouth College
Hanover, NH  03755

(603) 646-3267
decvax!dartvax!Matt.Bishop
Matt.Bishop@dartmouth.edu

carolyn@usenix (Carolyn Carr) (07/09/90)

U N I X    S E C U R I T Y    W O R K S H O P

August 27 - 28, 1990, Portland Oregon


The Second USENIX UNIX Security Workshop will be held in Portland,
Oregon on Monday and Tuesday, August 27-28, 1990.  The workshop is
organized to bring researchers, system administrators and others
together to discuss their needs and interests in the many aspects
of computer security as they relate to the UNIX Operating
System.

This meeting will have elements of both a conference and a workshop; the former
in that there will be presentations, the latter in that discussion and audience
participation are expected.  Speakers will discuss work
in progress and/or work that is planned and will solicit opinions, comments and
suggestions from other participants.
There will be at least three panel sessions .

                        TENTATIVE PROGRAM

Sunday, August 26 - Opening Reception & Registration

Monday, August 27

9:00 - 10:30	AUTHENTICATION I
		How Crackers Crack Passwords
	 	Ana Maria De Alvare, Lawrence Livermore National Laboratory

		A Survey of, and Improvements to, Password Security
	 	Daniel Klein, Software Engineering Institute, CMU

		Password Security in a Large Distributed Environment
	 	 Michele Crabb, NASA Ames Research Center