May 12-15,2002
The Claremont Resort
Oakland, California, USA

2002 IEEE Symposium on

Security and Privacy

sponsored by
IEEE Computer Society Technical Committee on Security and Privacy
in cooperation with
The International Association for Cryptologic Research (IACR)

Symposium Committee:
General Chair: Heather Hinton (IBM Software Group - Tivoli Systems, USA) (
Vice Chair: Bob Blakley (IBM Software Group - Tivoli Systems, USA) (
Program Co-Chairs: Martin Abadi (UC Santa Cruz, USA)
 Steven M.  Bellovin (AT&T Research, USA)

Since 1980, the IEEE Symposium on Security and Privacy has been the premier forum for the presentation of developments in computer security and electronic privacy, and for bringing together researchers and practitioners in the field.

Previously unpublished papers offering novel research contributions in any aspect of computer security or electronic privacy are solicited for submission to the 2002 symposium. Papers may represent advances in the theory, design, implementation, analysis, or empirical evaluation of secure systems, either for general use or for specific application domains. Topics of interest include, but are not limited to, the following:
Commercial and Industrial Security Electronic Privacy
Mobile Code and Agent Security Distributed Systems Security
Network Security Anonymity
Data Integrity Access Control and Audit
Information Flow Security Verification
Viruses and Other Malicious Code Security Protocols
Authentication Biometrics
Smartcards Electronic Commerce
Intrusion Detection Database Security
Language-Based Security Denial of Service

Program Committee:
Ross Anderson (University of Cambridge, UK) Andrew Appel (Princeton University, USA)
William Arbaugh (University of Maryland, USA) Dominique Bolignano (Trusted Logic, France)
Simon Foley (University College Cork, Ireland) Cedric Fournet (Microsoft Research, UK)
Dan Geer (@Stake, USA) Ian Goldberg (Zero-Knowledge Systems, Canada)
Stephen Kent (BBN, USA) Hugo Krawczyk (Technion, Israel)
Wenke Lee (Georgia Institute of Technology, USA) Vern Paxson (ACIRI, USA)
Greg Rose (Qualcomm, Australia) Fred Schneider (Cornell University, USA)
Dan Simon (Microsoft Research, USA) Leendert Van Doorn (IBM Research, USA)
Avishai Wool (Lumeta, USA)




Submitted papers must not substantially overlap papers that have been published or that are simultaneously submitted to a journal or a conference with proceedings. Papers should be in Portable Document Format (.pdf) or Postscript (.ps), at most 15 pages excluding the bibliography and well-marked appendices (using 11-point font, single column format, and reasonable margins on 8.5"x11" or A4 paper), and at most 25 pages total. Committee members are not required to read the appendices, so the paper should be intelligible without them. Papers should be submitted in a form suitable for anonymous review: remove author names and affiliations from the title page, and avoid explicit self-referencing in the text.  The first step in the submission process is paper registration, at; after registration, papers should be uploaded by ftp to (with user name "anonymous"). For any questions, please contact the program chairs, at

Paper submissions due: November 6, 2001

Acceptance notification: January 29, 2002

Submissions received after the submission deadline or failing to conform to the guidelines above risk rejection without consideration of their merits.  Authors are responsible for obtaining appropriate clearances; authors of accepted papers will be asked to sign IEEE copyright release forms. Where possible all further communications to authors will be via email.


The conference may include panel sessions addressing topics of interest to the computer security community. Proposals for panels should be no longer than five pages in length and should include possible panelists and an indication of which of those panelists have confirmed participation. Please submit panel proposals by email to

Panel proposals due: November 6, 2001

Acceptance notification: January 29, 2002

Where possible all further communications to authors will be via email.


A continuing feature of the symposium will be a session of 5-minute talks, where attendees can present preliminary research results or summaries of works published elsewhere. Poster presentations related to these talks are also possible. Abstracts for 5-minute talks should fit on one 8.5"x11" or A4 page, including the title and all author names and affiliations. Please submit abstracts by email to

5-minute abstracts due: March 18, 2002

Acceptance notification: April 1, 2002

Where possible all further communications to authors will be via email.