Safety and Security

Track: Quality Aspects in Safety and Security

Software safety and security are increasingly important as more and more software is embedded into our homes, cars, trains, airplanes and hospitals each day.

Most software developers have to consider safety and security requirements in their work these days to ensure that the systems around us will support our everyday lives and not harm us.

This Thematic Track focuses on the safety and security aspects of complex software systems. Papers describing how to effectively implement safety and/or security aspects to software system are invited.

The authors are invited to submit research results as well as practical experiment or deployment reports. Industrial papers about applications or case studies are also welcomed in different domains (e.g., telemedicine, critical infrastructures, mobile networks, embedded applications, etc.).

The safety related topics of the track include but are not limited to software safety, interoperability, processes and process models, and agile methods in safety-critical domains such as automotive, aviation, health and medical devices.

Safety topics

Software safety and risk management

Software safety regulations and standards

Agile development in safety-critical software systems

Methods and tools in safety-critical software systems

The security related topics addressed by this track range from the detection of intrusions and attack detection to networks and system reciliency, to security models, security and safety metrics , risk assesment and distributed systems security.

Security topics

Quality metrics for safety and security

Security models and security policies

Intrusion detection

Security testing and monitoring

Cloud, IoT and Big Data security

Attacks tolerance and resiliency

Security and risk assesment

Distributed systems security

SLAs for safety and security

Case studies

Track Committee

Track Chairs

Ana Cavalli, TELECOM & Management SudParis, France
Marion Lepmets , SoftComply, Estonia and Ireland

Program Committee

Joaquin Alfaro, Telecom SudParis, France

Valentina Casola, University of Napoli Federico II , Italy

Sherman Eagles, SoftwareCPR, USA

Giuseppe Lami, ISTI - CNR , Italy

Wissam Mallouli, Montimage Research & Development, France

Johny Marques, EMBRAER / Faculdade Anhanguera de Taubaté, Brazil

Mercedes Merayo, Universidad Complutense de Madrid, Spain,

Timo Varkoi, spinet.fi, Finland

Franz Wotawa, Graz University, Austria

Fatiha Zaidi, Université Paris-Sud LRI, France

Ana Cavalli

Professor and Head of Department of Network Software, TELECOM & Management SudParis.

She is Full Professor at TELECOM & Management SudParis (ex Institut National des Telecommunications) since 1990. She is the director of the Software for Networks department. She is also responsible of the research team "Verification and test of services and protocols" and the AVERSE team, in the CNRS research laboratory SAMOVAR.

Her research interests are on specification and verification, testing methodologies for conformance and interoperability testing, active testing and monitoring techniques, the validation of security properties and their application to services and protocols. She is the leader of the European Marie Curie network TAROT (Training and Research on Testing) and participates to several national and international projects: ASK IT, NetLab, POLITESS, WebMov, SHIELDS, CARRIOCAS, Robust Testing.

She is member of the Steering Committee of the IFIP TESTCOM conference and also member of the Program Committee of numerous international conferences : IFIP FORTE, IEEE ICNP, IEEE ICST, IFIP CFIP, SARSII, AMOST-T, SETOP, IEEE ICST, QESS. She has been co-chair of TESTCOM'95, SDL'97, PSTV/FORTE'98, ICNP'2002 et CFIP'2003. She will be domain chair of ICNP 2009, and co-chair of the IEEE ICST 2010 and SETOP 2010 conferences.

She has published more than 120 papers in journals and international conferences of high quality.

Marion Lepmets

Dr. Marion Lepmets is a Senior Research Fellow at the Regulated Software Research Centre in Dundalk Institute of Technology, Ireland. Her research focuses on the software development processes and their compliance to regulatory requirements in the medical device software domain. She has co-authored the Process Reference Model for IEC 62304 (IEC TR 80002-3), which was published in 2014. Her postdoctoral research, funded by the National Research Fund of Luxembourg, addressed process improvement impact on IT service quality. She has conducted research in process improvement and process assessment since 2000, graduated from Tampere University of Technology (Finland) with Dr. of Technology in 2007, and has been teaching process management courses in both Tallinn University of Technology and Tartu University in Estonia. She has been involved in the development of software engineering standards in the International Standardization Organization (ISO/IEC JTC1 SC7) for the last 10 years as a national delegate of Estonia, Luxembourg and Ireland. For the last three years, she has also been involved in the IEC SC62A JWG3 working group that is responsible for development and maintenance of the International standard for medical device software lifecycle processes (IEC 62304). Marion started her own company, SoftComply, 2 years ago. SoftComply helps medical device companies speed up their regulatory compliance process for FDA approval and CE marking process by providing software tools integrated to Jira and Confluence.