Phishing & BotNets
IMF 2006- Call for Papers Dec 06 2005 10:16PM
Oliver Goebel (Goebel CERT Uni-Stuttgart DE)
Dear all,

for your information.

Please excuse possible cross-postings.



IMF 2006

International Conference on
IT-Incident Management & IT-Forensics

Stuttgart, Germany
October 18 - 19, 2006
mailto:imf2006 (at) gi-fg-sidar (dot) de [email concealed]


Information technology has become crucial to almost every part of society.
IT infrastructures have become critical in the world-wide economy, the
financial sector, the health sector, the government's administration, the
military, and the educational sector.

Due to its importance the disruption or loss of IT capabilities results in
a massive reduction of operability. Hence, IT security is continously
gaining importance.

Although security usually gets integrated into the design process of IT
systems nowadays, the process of maintaining security in the operation of IT
infrastructures still lacks the appropriate attendance in most cases.
Especially the capability to manage and respond to IT security incidents and
their forensic analysis is established in the rarest cases. The quickly
rising number of security incidents worldwide makes the implementation of
incident management capabilities essential.

In order to advance the fields of IT-Incident Management and Forensics the
special interest-group Security - Intrusion Detection and Response (SIDAR)
of the German Informatics Society (GI) organises an annual conference,
bringing together experts from throughout the world, to discuss state of the
art in the areas of Incident Management and IT-Forensics (IMF). IMF
promotes collaboration and exchange of ideas between industry, academia,
law-enforcement and other government bodies.

IMF invites to submit:

- Full papers of up to 20 pages, presenting novel and mature research
results. Full papers will be reviewed, and papers accepted for
presentation at the conference will be included in the proceedings.

- Practice papers of up to 12 pages, describing best practices, case
studies, lessons learned, or latest product developments. Practice papers
will be reviewed.

The papers will be reviewed, and papers accepted for presentation at the
conference will be included in the proceedings, which are planned to appear
in Springer's Lecture Notes in Computer Science (LNCS) series (approval

The scope of IMF 2006 is broad and includes, but is not restricted to the
following areas:

IT-Incident Management:

Purposes of IT-Incident Management
Trends, Processes and Methods within IT-Incident Management
Formats and Standardisation in the IT-Incident Management
Tools for the IT-Incident Management:
Education and Training in the field of IT-Incident Management Awareness
Determination, Detection and Evaluation of Incidents and Sensors
Procedures for Handling Incidents
Problems and Challenges while establishing CERTs/ CSIRTs
Sources of Information/ Information Exchange/ Communities
Dealing with Vulnerabilities (vulnerability response)
Current Threats
Early Warning System
Organisations (Nat. CERT-Associations, FIRST, TERENA/ TI, TF-CSIRT)


Trends and Challenges within IT-Forensics
Methods, Processes and Applications for IT-Forensics
( Networks, Operating Systems, Storage Media, ICT-Systems etc.)
Evidence Protection in IT-Environments
Standardisation of Evidence Protection Processes
Data Protection- and other legal implications for IT-Forensic
Juristic Relevance of IT-Forensic Investigations
Tools for IT-Forensics
Forensic readiness

General Chair: Hardo G. Hase, Hase IT GmbH, Germany,
imf2006 @

Sandra Frings, Fraunhofer IAO, Germany
Oliver Goebel, RUS-CERT, Stuttgart University, Germany
Detlef Guenther, Volkswagen AG, Germany
Jens Nedon, Consecur GmbH, Germany
Dirk Schadt, Computer Assiociates, Germany

Program Chair: Oliver Goebel, RUS-CERT, Stuttgart University, Germany,
Goebel @ CERT.Uni-Stuttgart.DE

Sponsor Chair: Dirk Schadt, Computer Associates, Germany,
dirk.schadt @


Henrik Becker Kanzlei Becker, Germany
Vlasti Broucek University of Tasmania, Australia
Ian Bryant NISCC, UK
Brian Carrier CERIAS, USA
Andrew Cormack JANET-CERT, UK
Herve Debar France Telecom, France
Ralf Doerrie Telekom-CERT, Germany
Maximilian Dornseif University of Mannheim, Germany
Ulrich Emmert esb Rechtsanwaelte Stuttgart, Germany
Guenther Ennen BSI/CERT-Bund, Germany
Christoph Fischer BFK-Consulting, Germany
Sandra Frings Fraunhofer IAO, Germany
Oliver Goebel RUS-CERT, Germany
Dieter Gollmann TU Hamburg-Harburg, Germany
Detlef Guenther Cert-VW, Volkswagen AG, Germany
Bernhard Haemmerli ACRIS GmbH, Switzerland
Hardo G. Hase Hase IT GmbH, Germany
Mark Hoestra IT Forensic BV, Nethlerlands
Klaus Peter Kossakowski DFN-CERT, Germany
Thorsten Lieb Avocado Rechtsanwaelte Frankfurt, Germany
Neil Mitchison Joint Reseach Centre, EU
Jens Nedon Consecur, Germany
Jason Rafail CERT/CC, USA
Damir Rajnovic CISCO-PSIRT, USA
Dirk Schadt CA, Germany
Christian Schaller SIEMENS-CERT Germany
Rolf Schulz gnsec, Germany
Marco Thorbruegge IT Security Expert, Germany
Helmut Ujen Bundeskriminalamt, Germany
Andreas Wagner Frontrunner FZ LLC, Dubai
Stephen Wolthusen Gjovik University College, Norway

- April 17, 2006: Deadline for submission of full and practice papers.
- June 19, 2006: Notification of acceptance or rejection.
- August 7, 2006: Final paper camera ready copy due.
- October 18-19, 2006: IMF 2006 conference.

All submissions must be in English, and in either postscript or PDF format.
Authors of accepted papers must ensure that their papers will be presented
at the conference. Presentations should be held in English.

Submitted full papers must not substantially overlap papers that have been
published or that are simultaneously submitted to a journal or a conference
with proceedings.

Details on the electronic submission procedure as well as detailed
registration information will be provided by end of 2005 on the conference
Web site.

We solicit interested organizations to serve as sponsors for IMF 2006;
please contact the Sponsor Chair, Dirk Schadt, for information regarding
corporate sponsorship (mailto: dirk.schadt @



Oliver Goebel mailto:Goebel (at) CERT.Uni-Stuttgart (dot) DE [email concealed]
RUS-CERT Stuttgart University Tel:+49 711 121-3678 / -3688 (fax)
Breitscheidstr. 2, 70174 Stuttgart http://CERT.Uni-Stuttgart.DE/

[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus