IMF 2007 May 16 2007 04:50PM
hardo hase hase-bexbach de
Please excuse possible cross postings.


IMF 2007

3rd International Conference on
IT-Incident Management & IT-Forensics

Stuttgart, Germany
September 11 - 12, 2007
mailto:2007 (at) imf-conference (dot) org [email concealed]

TO JUNE 4, 2007


Information technology has become crucial to almost every part of
society. IT infrastructures have become critical in the world-wide
economy, the financial sector, the health sector, the government's
administration, the military, and the educational sector.

Due to its importance the disruption or loss of IT capabilities results
in a massive reduction of operability. Hence, IT security is
continously gaining importance.

Although security usually gets integrated into the design process of IT
systems nowadays, the process of maintaining security in the operation
of IT infrastructures still lacks the appropriate attendance in most
cases. Especially the capability to manage and respond to IT security
incidents and their forensic analysis is established in the rarest
cases. The quickly rising number of security incidents worldwide makes
the implementation of incident management capabilities essential.

In order to advance the fields of IT-Incident Management and Forensics
the special interest-group Security - Intrusion Detection and Response
(SIDAR) of the German Informatics Society (GI) organises an annual
conference, bringing together experts from throughout the world, to
discuss state of the art in the areas of Incident Management and
IT-Forensics (IMF). IMF promotes collaboration and exchange of ideas
between industry, academia, law-enforcement and other government bodies.

IMF invites to submit:

- Full papers of up to 20 pages, presenting novel and mature research

- Practice papers of up to 20 pages, describing best practices, case
studies, lessons learned, or latest developments in technology.

All submissions must be in English, and in either postscript or PDF
format. Authors of accepted papers must ensure that their papers will
be presented at the conference. Presentations should be held in

Submitted full papers must not substantially overlap papers that have
been published or that are simultaneously submitted to a journal or a
conference with proceedings.

All submissions will be reviewed by the program committee and papers
accepted to be presented at the conference will be included in the
conference proceedings.

Details on the electronic submission procedure are provided on the
conference Web site at:

The scope of IMF 2007 is broad and includes, but is not restricted to,
the following areas:

IT-Incident Management:

- Purposes of IT-Incident Management
- Trends, Processes and Methods of IT-Incident Management
- Formats and Standardization for IT-Incident Management
- Tools for the IT-Incident Management:
- Education and Training in the field of IT-Incident Management Awareness
- Determination, Detection and Evaluation of Incidents
- Procedures for Handling Incidents
- Problems and Challenges while establishing CERTs/ CSIRTs
- Sources of Information/ Information Exchange/ Communities
- Dealing with Vulnerabilities (vulnerability response)
- Current Threats
- Early Warning Systems
- Organizations (Nat. CERT-Associations, FIRST, TERENA/ TI, TF-CSIRT)


- Trends and Challenges of IT-Forensics
- Methods, Processes and Applications for IT-Forensics
(Networks, Operating Systems, Storage Media, ICT Systems etc.)
- Evidence Protection in IT-Environments
- Standardization of Evidence Protection Processes
- Data Protection- and other legal implications for IT-Forensics
- Investigations
- Legal Relevance of IT-Forensics Investigations
- Tools for IT-Forensics
- Forensics readiness

Important Dates:
******************* DEADLINE EXTENDED ******************
- JUNE 4, 2007: Deadline for Submissions
- June 26, 2007: Notification of acceptance or rejection
- July 17, 2007: Final paper camera ready copy due
- September 11-12, 2007: IMF 2007 Conference

General Chair:
Oliver Goebel, RUS-CERT, Universitaet Stuttgart
goebel (at) cert.uni-stuttgart (dot) de [email concealed]

Program Chair:
Sandra Frings, Fraunhofer IAO
Sandra.Frings (at) iao.fraunhofer (dot) de [email concealed]

Sponsor Chair:
Dirk Schadt, SPOT Consulting
dirk.schadt (at) spot (dot) net [email concealed]

Program Committee
Susan Brenner, University of Dayton - School of Law, USA
Klaus Brunnstein, University of Hamburg, Germany
Brian Carrier, Basis Technology, USA
Jack Cole, US Army Research Laboratory, USA
Andrew Cormack, UKERNA, UK
Ralf Doerrie, Telekom-CERT, Germany
Sandra Frings, Fraunhofer IAO, Germany
Oliver Goebel, RUS-CERT, Germany
Dieter Gollmann, TU Hamburg-Harburg, Germany
Detlef Guenther, CERT-VW, Volkswagen AG, Germany
Bernhard Haemmerli, ACRIS GmbH, Switzerland
Hardo G. Hase, IT-Security Expert, Germany
Alexander Herrigel, Schweizerische Nationalbank, Switzerland
Thorsten Lieb, Avocado Rechtsanwälte, Germany
Klaus Peter Kossakowski, DFN-CERT, Germany
Robert A. Martin, MITRE Corporation, USA
Neil Mitchison, European Commission
Jens Nedon, Consecur, Germany
Bernhard Otupal, Interpol
Jason Rafail, CERT/CC, USA
Dirk Schadt, SPOT Consulting, Germany
Carlos Solari, Bell Laboratories, USA
Marco Thorbruegge, ENISA, EU
Stephen Wolthusen, Gjovik University College, Norway
Steven Wood, Alste-Tech GmbH, Germany

Organizing Committee:
Sandra Frings, Fraunhofer IAO
Oliver Goebel, RUS-CERT, Universitaet Stuttgart
Detlef Guenther, CERT-VW, Volkswagen AG
Hardo G. Hase, IT-Security Expertt
Jens Nedon, Consecur GmbH
Dirk Schadt, SPOT Consulting

IMF 2007 is presented by

Gesellschaft für Informatik e.V. (GI)
Fachgruppe SIDAR

In Cooperation with

Universität Stuttgart - Stabsstelle DV-Sicherheit (RUS-CERT)

Fraunhofer-Institut für Arbeitswirtschaft und Organisation (IAO)

Best Regards

Hardo G. Hase

Post Box 10 50
D-66441 Bexbach

[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus