4th International Conference on
Trust, Privacy & Security in Digital Business
September 3 – 7, 2007,  Regensburg, Germany


Program Find Here Program in PDF file

Tuesday, 4 September 2007

09:00 – 09:10 Opening – Welcome
Günther Pernul, A Min Tjoa, Costas Lambrinoudakis
09:10 – 11:10 Session 1: Secure and Trusted Virtual Organisations
Chair: A Min Tjoa

Recognition of Authority in Virtual Organisations
Tuan-Anh Nguyen, David Chadwick, Bassem Nasser

Securing VO Management
Florian Kerschbaum, Rafael Deitos, Philip Robinson

Addressing Cultural Dissimilarity in the Information Security Management Outsourcing Relationship
Aggeliki Tsohou, Marianthi Theoharidou, Spyros Kokolakis, Dimitris Gritzalis

Specification of the TrustMan System for Assisting Management of VBEs
Simon Samwel Msanjila, Hamideh Afsarmanesh
11:10 11:30 Coffee Break
11:30  12:30 Keynote talk
12:30  14:00 Lunch
14:00  15:30 Session 2: Privacy in Digital Business
Chair: Jan Eloff

A Privacy-Preserving Buyer-Seller Watermarking Protocol with Semi-Trust Third Party
Min-Hua Shao

Towards Automatic Assembly of Privacy-Preserved Intrusion Signatures
Zhuowei Li, Amitabha Das, Jianying Zhou

Privacy Assurance: Bridging the Gap between Preference and Practice
Tariq Ehsan Elahi, Siani Pearson
15:30 – 16:00 Coffee Break
16:00 – 17:30 Panel Discussion “Managing Digital Identities – Challenges and Opportunities”
Chair: Günther Pernul


Marco Casassa Mont (Hewlett-Packard Laboratories, UK)
Eduardo B. Fernandez (Florida Atlantic University, USA)
Socrates Katsikas (University of Piraeus, Greece)
Alfred Kobsa (University of California, Irvine, USA)
Rolf Oppliger (Informatikstrategieorgan Bund, ISB, Switzerland).

Wednesday, 5 September 2007
09:00  11:00 Session 3: Identity Management and Usage Control
Chair: Socrates Katsikas

Enhancing Optimistic Access Controls with Usage Control
Keshnee Padayachee, J.H.P Eloff

Usage Control in Service-Oriented Architectures
Alexander Pretschner, Fabio Massacci, Manuel Hilty

On Device-based Identity Management in Enterprises
Marco Casassa Mont, Boris Balacheff

Analysis-Level Classes from Secure Business Processes through Model Transformations Alfonso Rodríguez, Eduardo Fernández-Medina, Mario Piattini
11:00 – 11:30 Coffee Break
11:30  12:30 TrustBus'07 Keynote Talk
Chair: Costas Lambrinoudakis

Privacy-Enhanced Personalization
Alfred Kobsa, University of California, Irvine, USA
12:30 – 14:00 Lunch
14:00 – 15:30 Session 4: Authentication and Access Control
Chair: Eduardo B. Fernandez

A Trust and Context Aware Access Control Model for Web Services Conversations
Marijke Coetzee, J. H. P. Eloff

Design and Implementation of Distributed Access Control Infrastructures for Federations of Autonomous Domains
Petros Belsis, Stefanos Gritzalis, Christos Skourlas, Vassilios Tsoukalas

On Device Authentication in Wireless Networks: Present Issues and Future Challenges
Georgios Kambourakis, Stefanos Gritzalis
15:30 – 16:00 Coffee Break
16:00 – 17:30 Session 5: Compliance and User Privacy
Chair: Günther Pernul

The Meaning of Logs
Sandro Etalle, Fabio Massacci, Artsiom Yautsiukhin

Data Protection and Privacy Laws in the Light of RFID and Emerging Technologies
Gerald Quirchmayr , Christopher C. Wills

Consistency of User Attribute in Federated Systems
Quan Pham, Adrian McCullagh, Ed Dawson
17:30 – 22:00 Gala Dinner
Thursday, 6 September 2007
09:00 – 11:00 Session 6: Policy Management
Chair: Marco Casassa Mont

Pre-Execution Security Policy Assessment of Remotely Defined BPEL-Based Grid Processes
Klaus-Peter Fischer, Udo Bleimann, Steven M. Furnell

Situation-based Policy Enforcement
Thomas Buntrock, Hans-Christian Esperer, Claudia Eckert

Using Purpose Lattices to Facilitate Customisation of Privacy Agreements
Wynand van Staden, Martin S Olivier

A Pattern-Driven Framework for Monitoring Security and Dependability
Christos Kloukinas, George Spanoudakis
11:00 – 11:30 Coffee Break
11:30 – 12:30 Keynote Talk
12:30 – 14:00 Lunch
14:00 – 15:30 Session 7: Secure System Management
Chair: Christian Schläger

Security Aspects for Secure Download of Regulated Software
Sibylle Hick, Christoph Ruland

Using the Lens of Circuits of Power in Information Systems Security Management
Christos Fragos, Maria Karyda, Evangelos Kiountouzis

Fuzzy Service Selection and Interaction Review in Distributed Electronic Markets
Stefan Schmidt, Robert Steele, Tharam Dillon
15:30 – 16:00 Coffee Break
16:00 – 18:00 Session 8: Security and Trust
Chair: Costas Lambrinoudakis

X316 Security Toolbox for New Generation of Certificate
Rachid Saadi, Jean Marc Pierson, Lionel Brunie

Detecting Malicious SQL
José Fonseca, Marco Vieira, Henrique Madeira

Trusted Code Execution in JavaCard
Antonio Maña, Antonio Muñoz

How to Use ISO/IEC 24727-3 with Arbitrary Smart Cards
Detlef Hühnlein, Manuel Bach
18:00 – 18:15 Conference Closing