Workshop on Cybersecurity Risk and Trust Management across Supply Chains
Scope and Purpose
Cost optimisation programmes championed by chief officers in companies are increasingly pushing organizations towards establishing supply chains to deliver their core missions, and to maintain their business advances. This is also the case for security and safety-critical organizations, such as critical infrastructure companies – which traditionally were very cautious about engaging in supply chains involving critical systems. This creates networks of entangled organizations where it becomes difficult to determine boundaries, establish security perimeters, and prevent cascading risks.
The goal of this workshop is to bring together researchers and practitioners from a range of sectors to open up discussions and exchange of ideas related to risk and trust management in supply chains with focus on cybersecurity. We are particularly interested in supply chains involving security or safety-critical organizations.
We encourage submissions from multiple perspectives regarding risk and trust in supply chains, such as the technology, stakeholders, and business perspectives affecting cybersecurity.
Topics of interest comprise, but are not limited to:
- risk identification and assessment (methods, models and techniques) in supply chains
- risk mitigation (strategies, methods and models) in supply chains
- risk controls (e.g., identity and access management) in supply chains
- risk estimation (methods and models) in supply chains
- security assurance (e.g., SAS 70, ISO 14508, ISO 27k, ISO 28k) in supply chains
- new challenges in supply chains involving critical systems
- risk governance in supply chains
- risks related to different B2B relationships in supply chains
- cascading risks and analysis of impact in supply chains
- modelling of dependencies and simulations in supply chains
- trade-off analysis between risk and trust in supply chains
- trust models (e.g., reputation, recommendation, collaboration) and their effectiveness
- measures of trust (methods and models) in supply chains
- dynamics of trust in supply chains
- cross‐organizational trust management in supply chains
- Paper submission: 17 May 2016
- Notification of acceptance: 07 June 2016
- Camera-ready submission: 20 June 2016
- CYBERSUP’16 workshop: 20 September 2016
- SAFECOMP conference: 20-23 September 2016
Virginia N. L. Franqueira
University of Derby, UK
Siv Hilde Houmb
Secure-NOK & NTNU, NO
University of Twente, NL
Authors are invited to submit original, unpublished work which will be reviewed by three committee members. Submission should be blind, i.e., with no stated authors, or self-references. All accepted papers will be published in the workshop proceedings – a complementary proceedings of SAFECOMP – provided they are presented at the workshop. Papers should comply with the Springer’s LNCS format.
Types of paper submission:
- Full papers/Technical papers (max 12 pages), including literature reviews, evaluation research, solution proposals, and validation research.
- Industrial experience reports (max 12 pages) describing challenges encountered in real-life organizations, or positive and negative experiences.
- Vision papers (max 8 pages) stating where the research in the field should be heading towards.
- Problem statements (max 6 pages) describing open issues of practical or theoretical nature.
- Research previews (max 6 pages) reporting research results at an early stage.
All papers should be submitted through Easychair.