************************************************* ********* NEW DEADLINE FOR SUBMISSIONS ********** ***************** JUNE 7, 2002 ****************** ************************************************* CALL FOR PAPERS IICIS 2002 Fifth IFIP TC-11 WG 11.5 Working Conference on Integrity and Internal Control in Information Systems --New Perspectives from Academia and Industry-- Bonn, Germany (November 11-12, 2002) Gustav-Stresemann-Institute (www.gsi-bonn.de) Organized by: IFIP TC-11 Working Group 11.5 GENERAL INFORMATION Confidentiality, integrity and availability are high-level objectives of IT security. The IFIP TC-11 Working Group 11.5 has been charged with exploring the area of the integrity objective within IT security and the relationship between integrity in information systems and the overall internal control systems that are established in organizations to support corporate governance codes. This working conference series follows its tradition to establish the basis for an ongoing dialog between IT security specialists and internal control specialists so that both may work more effectively together to assist in creating effective business systems in the future. The goals for this conference are to find an answer to the following questions: * what is the status quo of research and development in the area of integrity and internal control; * where are the gaps between business needs on the one hand and research and development on the other and what needs to be done to bridge these gaps. * what precisely do business managers need to have confidence in the integrity of their information systems and their data; TOPICS We solicit papers describing original ideas and research results on foundations and applications related to the subject of integrity and internal control in information systems. We particularly solicit papers presenting business cases. Suggested topics include but are not limited to: * integrity and internal control in Enterprise Resource Planning systems * integrity and internal control in e- and m-commerce applications and infrastructure * integrity and internal control in financial systems * developments in internal control concepts and the impact on integrity requirements * user, organizational, legal integrity and internal control requirements in specific industries (e.g. pharmaceutical, aviation, transport, public administration, etc.) * static and dynamic integrity constraints * integrity standards * methods for dealing with incomplete or inconsistent information * efficient methods for checking integrity * integrity requirements necessary to implement an internal control structure within an organization * system and data integrity maintenance during recovery processes * integrity of archival data * methods for implementing data retention policies * methods to repair integrity of data warehouses * application controls for integrity * discovery of integrity policies * re-engineering of integrity INSTRUCTIONS FOR AUTHORS Papers must be written in English. Papers should be limited to 7000 words, full page figures being counted as 300 words. Each paper must include a short abstract and a list of keywords indicating subject classification. The full names and addresses of the authors should be printed only on the title page. The author who is the contact person should be identified as such. Acceptance of a paper means an obligation for at least one of the authors to attend the conference and present the paper. Papers must be sent electronically (as PDF, Postscript or MS Word file) to: Dr. Michael Gertz Department of Computer Science University of California, Davis, USA email: gertz@cs.ucdavis.edu phone: +1 530 752 6468 fax: +1 530 752 4767 The proceedings will be published by Kluwer Academic Publishers and will be available at the conference. Instructions for camera ready versions of the paper will be sent after notification of acceptance and can also be found via website http://www.wkap.com/ifip. IMPORTANT DATES NEW DEADLINE FOR SUBMISSIONS: June 7, 2002 Notification of Acceptance: July 8, 2002 Final camera-ready copy due: August 2, 2002 GENERAL CHAIR Armin B. Cremers, University of Bonn, Germany PROGRAM CHAIR Michael Gertz, University of California at Davis, USA PROGRAM COMMITTEE David Chadwick, University of Greenwich, UK Sushil Jajodia, George Mason University, USA Udo Lipeck, University of Hannover, Germany William List, Wm. List & Co, UK Patrizia Asirelli, Istituto di Elaborazione dell'Informazione, Pisa, Italy Rainer Manthey, University of Bonn, Germany Hartmut Pohl, University of Applied Science, Bonn-Rhein-Sieg, Germany Kai Rannenberg, Microsoft Research, UK Isabel Muench, BSI - Bundesamt fuer Sicherheit in der IT, Germany Indrakshi Ray, Colorado State University, USA Arnon Rosenthal, The MITRE Corporation, USA Adrian Spalka, University of Bonn, Germany Leon Strous, De Nederlandsche Bank, The Netherlands Bhavani Thuraisingham, National Science Foundation, USA Oliver Weissmann, Atsec information security GmbH, Germany MORE INFORMATION Additional and up-to-date information can be obtained from the program chair or via the conference web site at http://www.db.cs.ucdavis.edu/IICIS2002