SECURITY AND CONTROL OF INFORMATION TECHNOLOGY IN SOCIETY An IFIP WG 9.6 Working Conference to explore the issues: August 12 - 17, 1993 Venue: the conference ship M/S Ilich between Stockholm and St.Petersburg Dependence on information technology (IT) is widespread. IT is used for the option and control of a range of social, industrial, commercial, governmental and regulatory processes, yet it introduces new potential threats to personal privacy and freedom, and new opportunities for criminal activity. These dangers have to be countered and controlled in a manner that balances the benefits of IT. Therefore careful consideration has to be given to determine what constitutes the most effective control and regulation of IT. Such topics should be high on national agendas. IFIP's Working Group on Information Technology Misuse and the Law (WG 9.6) is holding a working conference to explore these issues, from 12 to 17 August, aboard the conference ship M/S Ilich between Stockholm and St.Petersburg. On the Saturday of the conference week the conference will convene in St.Petersburg for meetings with Russian representatives, providing a valuable opportunity to discuss some of the problems of IT in an emerging capitalist economy. The conference, Security and Control of Information Technology, will explore major issues, including particular reference to Eastern European Economies. The organisers are keen to attract people representing a wide range of interests, including central government, regulatory bodies, information system users, relevant public interest groups, the legal profession, and academics. Participants from all parts of Europe and beyond will be welcome. In addition to full conference papers there will be discussion groups and shorter presentations. Eur. Ing. Richard Sizer (UK), chairman of WG 9.6, is conference chairman, Dr. Louise Yngstrom (Sweden) is in charge of local organisation and Prof. Martin Wasik is chairman of the International Programme Committee. The proceedings will be published by Elsevier North Holland and edited by Ing. Sizer, Prof. M. Wasik and Prof. R. Kaspersen (Netherlands). Those desiring to attend the conference and requiring further information may contact Prof. Wasik at: Faculty of Law, Manchester University, Manchester M13 9PL, U.K., Tel. +44 61 275 3594, Fax +44 61 275 3579. or for local arrangements, contact Ann-Marie Bodor at: Dept of Computer ans Systems Sciences, Stockholm University/KTH, Electrum 230, Sweden, Tel +46 8 162000, Fax +46 8 7039025. ------------------------------------------------------------------ CONFERENCE PROGRAMME Thursday Evening, August 12 --------------------------- Opening presentation: "The law cannot help" A debate led by K.Brunnstein (Germany) and R.Kaspersen (Netherlands) Chairman: Eur. Ing. Richard Sizer (U.K.) Friday Morning, August 13 ------------------------- Paper 1: "Privacy and Computing: a Cultural Perspective" R.Lundheim, G.Sindre (Norway) Paper 2: "Is International Law on Security of Information Systems Emerging ?" B.Spruyt, B.de Schutter (Belgium) Paper 3: "On the cutting edge between Privacy and Security" J.Holvast, R.Ketelaar (Netherlands), S.Fischer-Huebner (Germnay) Paper 4: "Protection of the Information of Organisations in the Asia-Pacific region" M.Jackson (Australia) Friday Afternoon: Two Discussion Streams ----------------- Stream 1:International cultural perspectives on IT, privacy and --------- security (led by J.Holvast) Stream 2: Priorities for IT in emerging economies --------- (led by R.Kaspersen) Saturday August 14 ------------------ Part I: "IT and Security in Russia. Experts view" ------------------------------------------------- "IT and Security in Russia" E.V. Evtyushin (Russian Agency for New Information) "IT vs. Security in Russia" E.A. Musaev (Russian Academy of Sciences) "Problems of information protection in the Northwestern region of Russia" P.A. Kuznetsov (Association for Information Protection) Part II: "IT and Security in Russia - Commercial sector" -------------------------------------------------------------------- TBD (Sberbank of Russia) TBD (St Petersburg Chamber of Commerce) Part III: "It and Security in Russia - Public Sector" ----------------------------------------------------- TBD (Public Sector) Part IV: "Western Developments in IT-Security" ---------------------------------------------- R.Hackworth (U.K.): "The OECD Guidelines on IT Security" M.Abrams (USA): "From Orange Book to new US Criteria" P.White (U.K.): "Drafting Security Policies" TBD "INFOSEC Security Issues in the EC" Sunday August 15 ---------------- Tour of St.Petersburg Monday Morning, August 16 ------------------------- Paper 5: "Recent development in IT security evaluation" K.Rannenberg (Germany) Paper 6: "On the formal specification of security requirements" A.Jones, M.Sergot (Norway) Paper 7: "Symbiosis of IT security standards" M.Abrams (USA) Paper 8: "An Academic Programme for IT Security" L.Yngstrom (Sweden) Monday Afternoon: Two workshops based on: ---------------- Workshop 1: ---------- Paper 9: "Are US Computer Crime Laws Adequate ?" L.Young (USA) Paper 10:"Computer Crime in Slovakia ?" J.Dragonev, J.Vyskoc (Slovakia) Paper 11:"Computer Crime Coroners for an IT Society" S.Kowalski (Sweden) Workshop 2: ----------- Paper 12:"Computer supported security intelligence" I.Orci (Sweden) Paper 13:"Design for security functions of chipcard software" K.Dippel (Germany) Paper 14: "Court ordered wiretapping in USA" G.Turner (USA) CLOSING DISCUSSION AND CONCLUSIONS ---------------------------------- Chairman: R.Sizer (U.K) (TBD: Speakers to be decided. Details of conference sessions are subject to change) ------------------------------------------------------------------- The costs of attending the conference is now set as follows: One delegate: 4175 Swedish Krona Two delegates sharing one cabin: 3275 Swedish Krona (per person) Accompanying person: 3175 Swedish Krona (no conference proceedings) These prices inculde accomondation, all meals on board of the M/S Ilich and while in St.Petersburg, an excursion on Sunday and, for delegates, a copy of all conference papers. Cabins on the ship each have a window and a shower. Cheques or money orders (in Swedish Krona) should be made payable to the account: "Foriningen for Sakerhetsinformatik: IFIP WG 9.6" and sent to: Ann-Marie Bodor Dept. of Computer and Systems Sciences Stockholm University/KTH Electrum 230 S-164 40 Kista Sweden as soon as possible and, in any event, not later than June 11. All registrations are responsible for making their own arrangements for travel to and from Stockholm, and for their visas and insurance. Registrations most probably cannot be accepted after June 11 due to the booking deadline for the cabins on board.