ESC 2013 - International Workshop on Economics of Security in the Cloud (ESC)

Cloud computing has emerged as a new paradigm for deploying technological resources across industries. Economic forecasts show that cloud computing will enable efficient, competitive and cost-effective deployments of computational resources in order to accommodate emerging user needs.
Alongside many business benefits both for consumers and providers of information services, cloud computing presents new challenges in terms of security and trust. Personal data is duplicated across cloud resources making them more accessible and less subject to loss, but also more exposed to security threats and lack of trust across the supply chain of cloud computing than centralized and proprietary Information and Communication Technology (ICT).
The emergence of cloud computing is providing new opportunities for business development. Unfortunately, it is exposing both users and providers to new challenges (e.g. in terms of data management), which require a shift in the way ICT is deployed in business contexts. Most economics aspect of cloud computing are still vaguely understood. It is clear that new business models are emerging. Although there are many benefits, there are security drawbacks too.
This workshop intends to support discussions on the economics aspects of security in the cloud. It aims to stimulate a debate on emerging business models, economics and opportunities (e.g. security as a service) in the provision and deployment of security mechanisms in the cloud. This would enable stakeholders to enhance their understandings of the costs involved in moving to the cloud in order to have an informed choice about return of investment (ROI) in the cloud.
Moreover, it is an opportunity to debate new business models underpinning cloud services and their securities offered to cloud consumers. The multidisciplinary nature of the economics of security in the cloud complements technical tracks of the main CloudCom conference.
This workshop invites submissions that are concerned with the economics of security in the cloud ? relevant topics are:
? Behavioural security and privacy
? Economics models (for security in the cloud)
? Cyber-defence strategy and game theory
? Cyber-security policy
? Economics of privacy and anonymity
? Economics of information security
? Economics of trust in the cloud
? Cost reduction (e.g. for infrastructure maintenance and acquisition)
? Improved time to market
? Incentives for information security sharing and cooperation
? Information stewardship economics
? Insurance in the cloud
? Models and analysis of security in the cloud
? Optimal investment in information security
? Policy and regulation in the cloud
? Return of information security investment
? Risk management and cyber-insurance
? Security models and metrics
? Security risk and threat modelling for the cloud
Paper Submissions:
We invite papers (up to 6 pages), not previously published or concurrently submitted elsewhere, in IEEE Proceedings format on all dimensions, but not limited, of the workshop topics. Extended and revised versions of selected papers will be invited for publication in a journal special issue on the economics of security in the cloud. Authors of accepted papers will be asked to prepare the final manuscript in time for inclusion in the proceedings and to present the paper at the workshop.
Papers need to be prepared according to the IEEE CS format (the page limit is 6 pages):
http://www.computer.org/portal/web/cscps/formattin...