The Applied Computer Security Associates (ACSA) sponsored a workshop to examine engineering fundamentals, the principles and practice of designing and building secure systems on November 6-8, 2002. The workshop looked at where we have been in security engineering (formal methods, Orange book, Common Criteria, penetrate and patch, Certification and Accreditation, Defense in Depth) and where we should go. The goal of the workshop was to begin a process of serious thinking about these important issues. These pages constitute the output of the workshop. Use the tags on the left, or the links below, to view these pages.

• Chair's Perspective - Introduction from the Workshop Chair

• Editor's Note - Observations from the editor of this final report

• Group Reports - Both breakout groups produced reports

• Position Papers - Selected papers written before the workshop. Many revised post-workshop

• List of Contributors - The people whose ideas are reported herein

• Organizing Committee - The people who made the workshop happen

• Original CFP - The original Call for Papers that was issued

ACSA's intent is that the output of the workshop becomes the kernel for a growing on-line collection of theory, principles, and practice of security engineering. Following its mission statement, ACSA advances the state of the art in information systems security by sponsoring similar workshops. For further information contact workshops@acsac.org.

Home | Chair's Perspective | Editor's Notes | Group Reports
Papers | Contributors |Organizing Committee | Original CFP

This document maintained by faigin -at aero.org and ncarlson -at aero.org.
Material Copyright © 2003 Applied Computer Security Associates