This workshop, the second in an ongoing annual series, will bring together leading figures from academia, government, and industry to discuss state-of-the-art intrusion detection technologies, and paradigms and issues from the research and commercial perspectives.
The RAID International Workshop series is intended to further progress in intrusion detection by promoting the exchange of ideas in a broad range of topics among researchers, system developers, and users and by encouraging links between these groups. RAID'98, held in Louvain-la-Neuve, Belgium, was the first in an anticipated annual series of international workshops that has brought together leading figures from academia, government, and industry to ponder the current state of intrusion detection technologies and paradigms from the research and commercial perspectives. More than 130 participants attended RAID'98, with nearly 50% from outside Europe, reflecting the international nature of the meeting.
RAID'99 is being hosted by the Purdue University CERIAS, in West Lafayette, Indiana, USA. The program committee invites submission of both technical and general interest papers and panels from those interested in formally presenting their ideas during the workshop. This year, we are emphasizing following topic areas:
- Accuracy and reliability measurements, requirements, and technologies
- Benchmarking techniques and technologies
- Relations to Risk Assessment and Risk Management Plans
IDS in High Performance and Real-Time Environments
- Large-scale/enterprise IDS
- High-Speed networks
- Managing high-volume data
- Highly distributed and heterogeneous environments
Vulnerabilities and Attacks
- New vulnerability or attack databases
- Vulnerability or attack taxonomies
- Using vulnerability databases
- IDS interoperability Standards and Standardization progress and assessment
- Integration with the system/network management framework
- Combining different "styles" of IDS
- Adaptive IDS solutions
- Survivability and Dependability
- Data mining, intelligent agents
- New results related to innovative ways of thinking about IDS, new IDS methodologies and technologies
- Automated responses
- Combining IDS and system/network management
- Case studies
- IDS in heterogeneous environments
- Unique/emerging IDS operating environments, including CORBA, NT, X.509 and VPN.
- Legal issues (IDS reports as "evidence")
- Commercial intrusion detection systems and their directions
- Real-time versus Post-mortem IDS
- IDS integration with business process
General Chair: Gene Spafford (Purdue
Program Chair: Deborah Frincke (University of Idaho, USA)
Program Co-Chair: Ming-Yuh Huang (Boeing Applied Research and Technology, USA)
Papers and panels which fall into the topic areas outlined above are particularly welcome, although contributions outside those topics may also be of interest. Each submission must contain:
1. A separate title page with:
2. A brief biography of each author or panel participant as appropriate
3. The subject category (see topic list) most appropriate for the paper or panel
Paper submissions must include an abstract that is a maximum of 600 words in length on a separate page. This abstract may be accompanied by a lengthier paper, which should be no more than ten pages (12 point font). Although encouraged, it is not necessary to submit a full paper for consideration as a speaker or for inclusion in the proceedings; however, potential speakers providing full paper submissions will be given preference in cases of equal quality. The program committee will allocate each accepted presenter up to 30 minutes for the talk, based on the complexity and interest of the proposed topic and the wishes of the speaker. The presenter will be informed of the presentation slot length when notified of acceptance.
Panel submissions must include a description that is a maximum of 300 words. The description should include both an outline of the format of the panel and a short rationale for the panel. The program committee will allocate one to two-hour time slots to each panel, based on the proposed topic, the number of panelists, and the wishes of the panel chair. The panel chair will be informed of the slot length when notified of acceptance. Panels which include time for general discussion and questions/answers for the panelists and the attendees are preferred to those which do not.
All proposals must be in English. Plan to give all panels and talks in English.
All submissions must be received on or before May 21. We strongly prefer they be submitted electronically to firstname.lastname@example.org or email@example.com using one of these formats: ASCII, postscript, Word, or LaTex. All abstracts will be made available on the web. For those submitting full papers, these submissions should be in a format which can be translated to PDF . Full papers will also be made available on the web, and possibly by CD-ROM. If necessary, hardcopy may be sent to the nearest of the following locations (please allow sufficient time for arrival by May 21):
Global Security Analysis Lab
IBM Zurich Research Laboratory
CH-8803 Rueschlikon Switzerland
Each submission will be acknowledged by e-mail. If acknowledgment is not received within seven days, please contact firstname.lastname@example.org.
A preliminary program will be available at the RAID web site, http://www.raid-symposium.org, by July 21, 1999. Last year's proceedings are available online as well.
We solicit interested organizations to become sponsors for RAID '99, particularly in sponsorship of student travel and other expenses for RAID. Please contact Deborah Frincke for information regarding corporate sponsorship of RAID.
Detailed registration information (including fees, suggested hotels, and travel directions) will be provided at the RAID'99 web site .
On-line workshop proceedings will be posted on the RAID web site immediately following the workshop. It will include:
Last year's most outstanding workshop participants were invited to submit an analogous formal paper to a special RAID edition of the refereed journal "Computer Networks and ISDN Systems." Proceedings from last year may be found at online at www.raid-symposium.org/raid98/Prog_RAID98/Table_of_content.html.
|Deadline for paper, panel submission||May 21, 1999|
|Notification of acceptance or rejection||July 7, 1999|
|Registration opens||July 15, 1999|
|Preliminary program posted to web||July 15, 1999|
|Final full paper due (optional)||August 7, 1999|
|On-time Registration closes||August 21, 1999|
|.RAID dates||September 7-9, 1999|
For further information: