ICT systems are becoming increasingly complex. New approaches to virtualization, dynamic service delivery and adaptation of these services to different execution contexts also increase this already difficult to apprehend complexity, while near real-time components make them non-controllable by a human being. These technological evolutions require the implementation of automation tools, but also generate obligations to control and master the environments because of the user’s assets and their exposure to regulations.

The European regulation framework is being reinforced in terms of insurance and security guarantees, but also in terms of certifications. Providing proof that the conditions of use and service delivery (in terms of regulations, contracts, SLAs and KPIs) are respected has become mandatory. Mathematical methods and tools are crucial to alleviate and even enable the collection of evidence, and could provide security guarantees by design. In the near future, these mathematical approaches could become an integral part of the certification systems required by European regulations.

Call for Participation

The workshop welcomes 20 minutes presentation proposals on the following (non-exhaustive) topics:

  • Mathematical tools for virtualized infrastructure security and resilience
  • Insurance, guarantees and assessments, undesirable event probability,
  • propagation models over infrastructures for : risks analysis, security objectives / properties and impacts
  • Resilience of e2e services
  • Mathematical and Legal aspects (Legal benefit ofsolutions backed by theorem-based results / explainable algorithms, duality between theorem-based results and Certification Insurance Level, security benefit of formal proof)
  • Open research questions: Ethics, energy consumption, deviance of uses, scalability,  explainability, …
  • Risk and insurance management: mathematical results versus AI, safe and controlled things
  • Optimization models and hybrid approaches with AIfor complex infrastructures security
  • end-to-end security problems in a heterogeneous multi-party ICT infrastructure (and certification)
  • Security and legal SSLAs (obligation and accountability)
  • Open issues with risk management (technical andfinancial) for cyber insurance
  • Liability and trust management for complex infrastructure

Submissions consist of a title + short abstract proposal, to be sent at the following registration form before September 15.                                     

Registration is free but mandatory for logistical reasons.

Contact  :

  • Nancy Perrot, Orange Innovation
  • Jean-Philippe Wary, Orange Innovation