As opposed to software engineering to provide principles, methodologies, and tools for designing, developing, operating, and maintaining reliable software systems, security engineering intended to provide principles, methodologies, and tools for designing, developing, operating, and maintaining secure software systems.

An intrinsic difficulty in ensuring security of information systems is that assailants (crackers) are active persons who can get knowledge and skills day after day and then continuously attack target information systems always with new techniques. Therefore, designers, developers, users, and maintainers of information systems that require high security need continuous supports for their tasks to protect the system from assailants.

A Security Engineering Environment is an engineering environment that integrates various tools and provides comprehensive facilities to designers, developers, users, and maintainers of software systems such that the designers, developers, users, and maintainers of any target system can use the tools and facilities to ensure the whole security of the target system anytime consistently and continuously.

The SecTech 2008 special session "Security Engineering Environment" aims to provide a forum for computer scientists, computer engineers, software engineers, and application developers who are required to design and develop software systems with high security to discuss and exchange ideas and research results on Security Engineering Environment.

Topics of interest include but are not limited to:

• Fundamentals of security engineering
  
• Methodologies for security engineering
  
• Information security standards
  
• Assurance, privacy, security, and trust issues in software systems
  
• Integration of security engineering tools
  
• Methodologies and tools for security requirement analysis
  
• Methodologies and tools for security specification
  
• Methodologies and tools for monitoring and measurement
  
• Run-time supporting environment for security engineering
  
• Case studies of security engineering
  

Papers are invited from prospective authors with interests in the indicated session topics and related areas of application. All contributions must be original and high quality, should not have been published elsewhere and should not be intended for publication elsewhere during the review period or time of the conference. Submitted papers will be thoroughly reviewed by members of the Special Session Program Committee for originality, significance, and relevance. All accepted and presented conference papers will be included in IEEE CS Proceedings. And selected papers will be included in some international journals.

Submitted papers should strictly follow the instructions in IEEE CS format files (http://www.sersc.org/IEEE_CS_Latex.zip or http://www.sersc.org/instruct.doc). Please note that the paper length is at least 4 pages and not longer than 6 pages in IEEE CS format. Papers longer than this will be subject to a penalty charge. Papers much longer or shorter than the required length may be directly rejected without review. All accepted papers must be presented by one of the authors, who must register the conference.

All papers should be submitted by PDF files to session chairs.

• Paper submission: August 15, 2008 (Extended)
  
• Notification of acceptance: September 10, 2008
  
• Camera-ready paper due: September 25, 2008
  
• Conference: December 13-15, 2008
  

Jingde Cheng, Dr.
Professor of Computer Science
Department of Information and Computer Sciences
Saitama University
255 Shimo-Okubo, Sakura-Ku, Saitama, 338-8570, Japan
E-mail: cheng@ics.saitama-u.ac.jp
URL: http://www.aise.ics.saitama-u.ac.jp/~cheng/index.html


Yuichi Goto, Dr.
Assistant Professor of Computer Science
Department of Information and Computer Sciences
Saitama University
255 Shimo-Okubo, Sakura-Ku, Saitama, 338-8570, Japan
E-mail: gotoh@aise.ics.saitama-u.ac.jp
URL: http://www.aise.ics.saitama-u.ac.jp/~gotoh/index.html