C A L L  F O R  P A R T I C I P A T I O N
======================================================================

                               DIMVA 2009

                   Sixth International Conference on
     Detection of Intrusions and Malware & Vulnerability Assessment


                       Organized by GI SIG SIDAR

                              Como, Italy
                            July 9-10, 2009

                    http://www.dimva.org/dimva2009
                         mailto:info@dimva.org
======================================================================

The annual  DIMVA conference serves  as a premier forum  for advancing
the state  of the art  in intrusion detection, malware  detection, and
vulnerability   assessment.    Each   year   DIMVA   brings   together
international  experts  from  academia,  industry  and  government  to
present and discuss novel research  in these areas. DIMVA is organized
by  the special  interest  group Security  -  Intrusion Detection  and
Response  (SIDAR) of  the  German  Informatics  Society (GI) and takes
place 9/10-07-2009 in Como, Italy.

This year's program features a single technical track with 13 papers
DIMVA 2009 will also feature two invited talks by renowned experts:

* Henry Stern, Ironport / Cisco:
   A New Era in Security Collaboration: Turning the Tables on Botnets

* Richard Kemmerer, University of California Santa Barbara
   How to Steal a Botnet and What Can Happen When You Do

The conference program will be complemented by

* a Rump Session: a series of short and entertaining talks where
   attendees can present recent research results, work in progress,
   or other topics of interest to the community.

   Please contact the Rump Session Chair, Sven Dietrich, at
   rump-chair@dimva.org for submission questions.

* CIPHER 5: a "Capture The Flag"-style contest in IT security for
   teams of students from universities around the world. CIPHER is
   co-arranged by the Special Interest Group SIDAR (Security - Intrusion
   Detection and Response) of the German Informatics Society (GI).
   (More information on http://www.cipher-ctf.org)

Registration and Travel
=======================

The  DIMVA  2009  conference  will   be  held  in  Como (Italy).   The
registration  is  now  open.  Please  check  the  DIMVA  web  site for
information on the rates, registration, travel and accommodation:

                 !!!Early Bird Rates available now!!!

                   http://www.dimva.org/dimva2009


Conference Program (preliminary)
================================

Thursday, July 9th
------------------

Welcome Opening Remarks

Session 1: Malware and SPAM

   A Case Study on Asprox Infection Dynamics

   How good are malware detectors at remediating infected systems?

   Towards Proactive Spam Filtering


Session 2: Emulation-based Detection

   Shepherding Loadable Kernel Module through On-demand
   Emulation

   Yataglass: Network-level Code Emulation for Analyzing
   Memory-scanning Attacks

   Defending Browsers against Drive-by Downloads: Mitigating
   Heap-spraying Code Injection Attacks

Keynote

   How to Steal a Botnet and What Can Happen When You Do
     Richard Kemmerer, University of California Santa Barbara

Session 3: Software Diversity

   Polymorphing Software by Randomizing Data Structure Layout

   On the Effectiveness of Software Diversity: A Systematic
   Study on Real-World Vulnerabilities

SIG SIDAR Open Meeting

Friday, July 10th
-----------------

Keynote

   A New Era in Security Collaboration: Turning the Tables on
   Botnets
     Henry Stern, Ironport / Cisco

Session 4: Harnessing Context

   Using Contextual Information for IDS Alarm Classification

   Browser Fingerprinting from Coarse Traffic Summaries:
   Techniques and Implications

   A Service Dependency Modeling Framework for Policy-based
   Response Enforcement

Rump Session

Session 5: Anomaly Detection

   Learning SQL for Database Intrusion Detection using
   Context-Sensitive Modelling

   Selecting and Improving System Call Models for Anomaly
   Detection

CIPHER 5 Capture the Flag

Farewell - Concluding Remarks


Corporate Sponsors
==================
We  solicit  interested  organizations  to serve as sponsors for DIMVA
2009, particularly in sponsorship of student travel and other expenses
for  DIMVA. Please  contact  the  Sponsorship  Chair  for  information
regarding corporate sponsorship of DIMVA 2009.

Organizing Committee
====================
  General Chair: Danilo M. Bruschi,
                 Università degli Studi di Milano,
                 Italy (info@dimva.org)
  Program Chair: Ulrich Flegel, SAP Research CEC Karlsruhe,
                 Germany (pc-chair@dimva.org)
  Rump Session Chair: Sven Dietrich,
                 Stevens Institute of Technology,
                 U.S.A. (rump-chair@dimva.org)
  Sponsorship Chair: Thorsten Holz, University of Mannheim,
                 Germany (sponsor-chair@dimva.org)
  Publicity Chair: Sebastian Schmerl,
                 Technical University of Cottbus,
                 Germany (publicity-chair@dimva.org)

Program Committee
=================
Thomas Biege, Novell, Germany
Gunter Bitz, SAP AG, Germany
Herbert Bos, Vrije Universiteit Amsterdam, Netherlands
Danilo Bruschi, Università degli Studi di Milano, Italy
Roland Büschkes, RWE, Germany
Marc Dacier, Symantec Research, France
Hervé Debar, France Télécom, France
Sven Dietrich, Stevens Institute of Technology, U.S.A.
Toralv Dirro, McAfee, Germany
Thomas Dullien, Zynamics, Germany
Ulrich Flegel, SAP Research, Germany
Bernhard Hämmerli, Acris GmbH & HSLU Lucerne, Switzerland
Marc Heuse, Baseline Security, Germany
Thorsten Holz, University of Mannheim, Germany
Erland Jonsson, Chalmers University, Sweden
Klaus Julisch, IBM Zurich Research Laboratory, Switzerland
Engin Kirda, Eurecom, France
Christian Kreibich, International Computer Science Institute,
   U.S.A.
Christopher Kruegel, University of California in Santa Barbara,
   U.S.A
Pavel Laskov, University of Tuebingen, Germany
Wenke Lee, Georgia Institute of Technology, U.S.A.
Javier Lopez, University of Malaga, Spain
John McHugh, University of North Carolina and Dalhousie
   University Halifax, Canada
Michael Meier, Technical University of Dortmund, Germany
George Mohay, Queensland University of Technology, Australia
Martin Rehák, Czech Technical University, Czech
Konrad Rieck, Technical University of Berlin, Germany
Sebastian Schmerl, Technical University of Cottbus, Germany
Robin Sommer, ICSI/LBNL, U.S.A.
Salvatore Stolfo, Columbia University, U.S.A
Peter Szor, Symantec, U.S.A.
Bernhard Thurm, SAP Research, Germany
Al Valdes, SRI International, U.S.A.

Steering Committee
==================
  Chairs:
  * Ulrich Flegel, SAP Research CEC Karlsruhe
  * Michael Meier, Technical University of Dortmund

Members:
  * Roland Büschkes, RWE
  * Hervé Debar, France Telecom R&D
  * Bernhard Hämmerli, Acris GmbH, HSLU
  * Marc Heuse, Baseline Security Consulting
  * Klaus Julisch, IBM Zurich Research Lab
  * Christopher Kruegel, UC Santa Barbara
  * Pavel Laskov, University of Tuebingen
  * Robin Sommer, ICSI/LBNL
  * Diego Zamboni, IBM Zurich Research Lab




-- 
_____________________________________________________________________
Sebastian Schmerl                          Tel: +49 (0) 355 69 20 29
sbs@informatik.tu-cottbus.de               Fax: +49 (0) 355 69 21 27
                                BTU Cottbus

                Computer Networks and Communication System
                 P.O.Box 10 13 44, 03013 Cottbus, Germany
                 http://www-rnks.informatik.tu-cottbus.de
_____________________________________________________________________






--0-558047052-1243465023ยก6161--