*ISPEC 2009*: Fifth Information Security Practice and Experience Conference, Xi'an, China, April 13-15, 2009. (Submissions due 20 November 2008). As applications of information security technologies become pervasive, issues pertaining to plicatiotheir deployment and operation are becoming increasingly important. ISPEC is an annual conference that brings together researchers and practitioners to provide a confluence of new information security technologies, their applications and their integration with IT systems in various vertical sectors. In 2005, 2006, 2007 and 2008, the first, second, third and fourth conferences were successfully held in Singapore, Hangzhou, China, Hongkong, China and Sydney, Australia respectively. The conference proceedings were published by Springer as Lecture Notes in Computer Science. This fifth conference ISPEC 2009 will be held in Xi'an, China, April 13-15, 2009. Again, we plan to publish the conference proceedings in a volume of Springer LNCS. Topics (Topics of interest include, but are not limited to): Applications of cryptography Critical infrastructure protection Digital rights management Information security in vertical applications Legal and regulatory issues Network security Privacy and anonymity Privacy issues in the use of smart cards and RFID systems Risk evaluation and security certification Resilience and availability Secure system architectures Security in e-commerce and e-business and other applications Security policy Security standards activities Trusted Computing Trust model and management Usability aspects of information security systems For more information, please see http://www.ispec2009.net/ ------------------------------------------