|
1st
International Conference on Information Systems Security (ICISS 2005) |
|||||||||||
|
Tutorials
There will be four tutorials of three hour each organized in two tracks on 18 December 2005.
Tutorials will be organized at the Kolkata Extension Center of Birla Institute of Technology, Mesra, Ranchi, India (Address: Southend Conclave, 1582, Rajdanga Main Road, Kolkata - 700 107). It is located opposite Siemens Building, on the Gariahat - EM Bypass Connector.
Participants who have registered for the conference will have complimentary registration for the tutorials. Since seats are limited, participants are requested to indicate their choice of tutorials latest by 7th December, 2005.
Special registration for "tutorials only" (for resident Indians) is offered, on a first come first served basis, with the following fees:
For students (recommended by the Head of the Dept./Institution): INR 200.00 per student
For others: INR 800.00 per person
For tutorials, please contact the tutorial chairs:
Mrs. Sarmistha Neogy (Email: sarmisthaneogy@computer.org)
Mr. R.T. Goswami (Email: rtgoswami@bitmesra.ac.in).
Tentative Schedule
Tutorial -T11: 10:00 - 13:00 hrs
 |
Dr. Indrajit Ray
|
Assistant
Professor, Computer Science Department Colorado State University |
|
Digital forensics: Cyber sleuthing solves the case Abstract At the outer fringes of the Internet, usage is increasingly driven by devices beyond the computer. A plethora of audio, video and communication devices are becoming closely associated with the computer and are gradually converging with it. This has resulted in more and more information being stored, transmitted and processed in digital form than ever before. At the same time this connectivity is also enabling criminals to act trans-jurisdictionally with ease. It is estimated that over 85% of all crimes committed today leave a trail of digital evidence. Digital Forensics is the scientific study of the processes involved in the recovery, preservation and examination of digital evidence, including audio, imaging and communication devices with the ultimate goal of ensuring that the evidence is admissible in court. Increasingly we are witnessing that a perpetrator of a crime is being brought to justice in one jurisdiction while the digital evidence needed to prosecute the perpetrator residing in other jurisdictions. This requires that all nations have the ability to collect, preserve and examine digital evidence for their own needs as well as for the potential needs of other nations. In this tutorial we will introduce the audience to the fast emerging discipline of digital forensics. Topics that we will cover are: · What is digital forensics? · General digital forensic process · The law enforcement response to electronic evidence · The latent nature of electronic evidence · The forensic process · Legal issues with emphasis on Indian laws · Digital forensic techniques · Electronic devices – types and potential evidence · Investigative tools and equipments · Securing and evaluating the scene of crime · Evidence collection by crime category · Media analysis · Email tracing · How does digital forensics fit into the information security framework · (Unexpected) attributes of digital forensics · Digital forensic challenges for the future
Tutorial -T12: 14:00 - 17:00 hrs |
||
| Mr. Goutam Bhattacharya | General Manager, IT Department, Calcutta Stock Exchange Association | |
|
Information and Systems Security in Financial Services: The Indian Scenario Abstract The importance of Financial Services including Banking, Mutual Funds, Capital and other Markets, Insurance has undergone rapid growth in the last decade. To deliver the effective services at place and time convenient to customers spread all over this huge country and to reduce transaction cost, the Finance Sector has embraced Information Technology as a key business driver. Naturally, these institutions use advanced computing and communication technology over private and public networks for multi-location multi-function service delivery. The Government of India, through various regulatory bodies, plays an important role in promoting the smooth transition of these institutions from pre-dominantly manual and isolated operations to networked and automatic mode. The related concerns and issues are now being addressed by both the Govt. and the Industry. This talk will focus on the kinds of IT enabled services offered by the various financial service industries. Related IT risks and security implications will also be discussed with Indian and International perspectives. The various Technical and Managerial measures proposed by the regulatory bodies will be analyzed in the light of the emerging national and international standards. Finally the talk will close with the current issues and research pointers from the point of view of the industry.
Tutorial -T21: 10:00 - 13:00 hrs |
||
| Prof. Chandan Mazumdar | Centre for Distributed Computing, Dept. of Computer Science and Engineering, Jadavpur University, Kolkata, India | |
| Mr. Anirban Sengupta | ||
|
Enterprise Information Security Management Abstract As our information infrastructure is becoming more
and more complex, and connected, properties like confidentiality,
integrity and availability of Information and Systems are becoming
more and more difficult to protect in the context of Enterprise. The
adoption of Information Technology Act in different countries
provide the legal validity to electronic documents in business and
governance, while providing legal framework to deter the
wrong-doers. Also, the international community is adopting Standards
such as ISO 17799 and CoBIT for best practices in security
management and Common Criteria for security certification of
products. All these standards have evolved from the knowledge,
experience and expertise of international experts. It has been
recognized that the security of enterprise Information and Systems
have to be tackled from the point of view of a management structure
than from a purely technological angle.
Tutorial -T22: 14:00 - 17:00 hrs |
||
| Prof. Sushil Jajodia | George Mason University, USA | |
| Prof. Aditya Bagchi |
Indian Statistical Institute, Calcutta, India
|
|
|
Recent Advances in Access Control Models Abstract Past generations of access control models, when faced with an
access request, have issued a simple yes or no answer to the access
request resulting in access being granted or denied. Recent advances
in application areas have introduced new dimensions to access
control needs, and for many applications such as
business-to-business (B2B) applications and auctions yes/no
responses are just not enough. |
||
|
Home Call For Papers Registration Author Instructions Committees Tutorials Proceedings Location Accommodation Sponsors |
|
Center For
Distributed Computing Jadavpur University
Center for Secure Information Systems, George Mason University, Fairfax, VA
Mesra Ranchi |
