The U. S. Department of Agriculture is sponsoring a computer security
conference entitled: Practical Security for Sensitive Systems, to be
held 29 - 31 October 1997 in Williamsburg, VA. This is a conference for
security officers, managers, and system administrators to offer specific
advice on protecting their systems in 1998. We will issue invitations
for attendence in mid-August, if you want to be added to that list, let
The purpose of this messsage is that we are issuing a call for papers
and speakers to participate in this conference. Responses to this call
are requested not later than 1 August 1997. Please respond with a short
(1 page or so) summary of the topic with significant points, a 50 word
summary of related experience, and contact information. We will notify
selected speakers by 5 August. If you need help with logistics, please
let me know when you submit.
Topics of specific interest include the following:
Case studies of significant security incidents: how was the attack
detected, investigated, terminated, what worked, what didn't work,
countermeasures implemented to prevent a future similar successful
attack, (e.g., firewall(s))
Recovery from significant security incidents: focus on the measures in
place prior to the attack and how they enabled/hindered recovery. What
worked, what didn't work, and countermeasures implemented to facilitate
future recovery efforts.
A survey of vulnerabilities associated with popular countermeasures
Network security architectures with layered countermeasures (e.g.,
internal firewalls) to limit penetration of networks once the front line
countermeasure has failed.
Use of firewalls with other types of countermeasures (e.g., intrusion
detection systems, access control lists, one time password systems,
encryption) to address specific threats.