Data-driven Vulnerability Repair in Programs with a Cloud Analytics Architecture for Practical Deployment

Abstract

The 2020 IEEE Secure Development (SecDev) Conference will be held at Atlanta, GA from September 28, 2020 to September 30, 2020. I currently serve as the steering committee chair of the conference. The SecDev conference continues to establish itself as a venue for promoting constructive and in-depth defense solutions. The scope of the conference is extremely broad. It is a platform for any work that ~builds security in~ to systems. The strong emphasis thatSecDev places on ~building security in~ means that~unlike most other security conferences~it is not enough for a paper to simply describe an attack or discover a novel vulnerability. Rather, work at SecDev builds systems that have strong security guarantees.The organizers have been constantly improving SecDev~s format in order to best engage the community. In 2018, we started a call for best practices (BP) papers, seeking work that systematizes the knowledge, experiences, and tools related to cyber defense. Another change started in 2018 was the new practitioners~ session abstracts (PSA). We seek presentations from cybersecurity professionals working in industry or government, including Office of NavalResearch (ONR). IEEE SecDev is the first such call among IEEE or ACM security conferences. The practitioners~ session program committee consisted of 20 experts, mostly from industry and government. Both improvements help establish SecDev as the venue for building an informed research community that works together to bridge the gap between theory and practice. In 2019, we started the call for systematization of knowledge (SoK) papers that aim to organize, compare, and contextualize the existing cybersecurity research findings and solutions.The SecDev organizers are extremely grateful for ONR~s $5,000 grant support in 2018. That fund allowed the organizers to cover various conference operational costs, including reimbursement for invited speakers and waivers of registration fees for SecDev awardees. SecDev 2018 had around 150 participants. We sincerely thank ONR~s generous support for growing the SecDev community.In this current grant request, we ask for $5,000 to cover the operational costs of SecDev 2020. We plan to use the fund to cover the registration costs of invited speakers and some of their travel costs. Similar to 2018, Virginia Tech has made an exception for this request and will not charge any indirect costs to this grant, if received. Therefore, the entirety of the fund, if received, will be used on SecDev expenses. Virginia Tech Continuing and Professional Education (CPE) will help the PI process the necessary reimbursement requests from attendees.For SecDev 2020, the steering committee has decided to increase the number of invited talks from industry and government researchers and practitioners. Invited speakers will not need to submit full papers. Simplifying this written requirement will enable more practitioners to easily participate in the SecDev conference. Strongly engaging industry and government individuals will be the main new focus of SecDev 2020, while continuing the existing success ofbuilding the academic research track. This $5,000 grant will substantially help the conference organizers to improve the technical program, defray the conference operational costs, and better serve the security community in the long run. We greatly appreciate ONR~s support for SecDev and will ensure that the donation will be properly recognized at the conference.

Document Details

Document Type

DoD Grant Award

Publication Date

Feb 17, 2020

Source ID

N000142012131

Entities

Tags