Software security is about protecting information and ensuring that systems continue to function correctly even when under malicious attack. The traditional approach of securing a system has been to create defensive walls such as intrusion detection systems and firewalls around it, but there are always cracks in these walls, and thus such measures are no longer sufficient by themselves. We need to be able to build better, more robust and more “inherently secure” systems, and we should strive to achieve these qualities in all software systems, not just in the ones that “obviously” need special protection.
This workshop will focus on techniques, experiences and lessons learned for engineering secure and dependable software using the DevOps paradigm, as well as other forms of agile development.
- New way of contributing: Ignite Talks! We will have a session of 5-minute ignite talks (a variant of PechaKucha) as part of the workshop. An ignite talk is perfect for industrial experience reports! Ignite talks are meant to present ideas and generate discussion. Share with us your novel, ground breaking software security related message as an Ignite presentation. Tell us about tools, processes, tips, tricks, war stories, etc. Submit proposals of an Ignite Talk as a Title and Abstract (500 words maximum) by email to sos-agile (at) sintef (dot) no. The contributions are less scientific in their nature but should be argued in a compelling way accompanied by 20 auto-advance slides.
- Experience talks! We are aiming for a full-day workshop, and we are therefore adding a session of software security industry experience talks - come on and share your Successes and Horror Stories!