1st International Workshop on Cloud Compliance

June 29, 2015
Columbus, Ohio, USA.
In conjunction with 35th IEEE ICDCS 2015
1st International Workshop on Cloud Compliance 2015 (In conjunction with 35th IEEE ICDCS 2015)
 Topics of Interest
 Important Dates
 Submission Instructions
Workshop Overview

Cloud computing is emerging as an attractive platform for hosting enterprise workloads, even those that need to satisfy regulatory and other compliance requirements. Examples of such workloads include but are not limited to healthcare, finance, and government. Compliance assurance of such workloads is highly challenging. It not only involves security and privacy controls at infrastructure, platform, and application software layers, but it also involves prescribed administrative, monitoring and reporting requirements. Cloud computing platforms appeal to enterprises for hosting such workloads because: (1) they can facilitate outsourcing of relevant compliance controls and processes to the cloud provider in a legally-binding manner, (2) enterprises can focus on their core businesses instead of diverting resources towards compliance assurance and, (3) enterprises can expand their business onto domains that require compliance assurance in an easier and less expensive manner than before, thereby enhancing the competitive landscape. The focus on security and compliance is rising especially due to the numerous healthcare and financial data breaches we have witnessed recently.

We envision that the IWCC'15 workshop shall offer a first platform for academic, industrial, and government researchers and practitioners to engage in an exchange of ideas and experiences, helping advance the state of the art on workload compliance on cloud platforms. The workshop may combine academic papers, posters, technology demonstrations, keynotes, panel discussions and other activities as deemed appropriate. We believe this agenda will help strengthen the link between academic research on cloud computing and the practical concerns enterprises face with respect to workload compliance on the cloud. Topics of interest include, but are not limited to: current state and future of compliance, challenges and issues for clouds in assuring compliance, compliance in the ecosystem of emerging cloud platforms such as hybrid and private cloud, micro-cloud, mobile–cloud, and how advances in cloud security and privacy influence cloud compliance.

As part of the workshop program: we plan to host two keynotes, and one panel by academic and industry experts on cloud, compliance and security.

Scope and Interests

The scope of IWCC'15 include, but  not restricted to:

      Assurance of compliance in cloud: XaaS - IaaS, PaaS, SaaS, DaaS

      Monitoring and Management of compliance in cloud

      Cloud security for compliance

      Data privacy

      Mobile and IoT  compliance in the context of cloud

      Forensic analysis for compliance

      Compliant systems, networks, virtualization

      Compliant software engineering, testing

      Compliance automation

      State-of-the-art in IT regulatory Compliance: HIPAA, PCI/DSS, SOX, FEDRAMP, FERPA, and so on

      Future of Cloud and IT regulatory compliance

      Important Dates

      • Abstract Submission: February 25, 2015 (11:59pm EST)
      • Paper Submission: March 1, 2015 (11:59pm EST)
      • Notification of Acceptance: April 1, 2015
      • Camera-ready Version: April 15, 2015
      • Workshop Date: June 29, 2015
      Submission Instructions

      The workshop proceedings will be published as per ICDCS'15 guidelines and indexed via DBLP.

      Submission Site

      All submissions will be handled electronically via EasyChair: Submission site

      Formatting Guidelines 

      The paper length is limited to 10 pages. Submissions of lesser length are acceptable as long as they adhere to the IEEE format. We will use the same document templates as the IEEE ICDCS'15 conference. You can find them here.

      It is the authors' responsibility to ensure that their submissions adhere strictly to the IEEE detailed here. In particular, it is not allowed to modify the format with the objective of squeezing in more material. Submissions that do not comply with the formatting detailed here will be rejected without review. 


      Workshop Co-Chairs

      • Ashish Kundu, Master Inventor and Research Staff Member, Secure Systems Group, IBM T J Watson Research Center, New York
      • Dimitrios Pendarakis, Principal Research Staff Member and Manager, Secure Systems Group, IBM T J Watson Research Center, New York

             For questions regarding the workshop please send email to iwcc.workshop@gmail.com.

      Program Committee

      • Elisa Bertino, Purdue University
      • Travis Breaux, Carnegie Mellon University
      • Peter Druschel, Max Planck Institute
      • Florian Kerschbaum, SAP 
      • Zhiqiang Lin , University of Texas at Dallas
      • Brad Malin, Vanderbilt University
      • Amit A. Nanavati, IBM Research, Delhi
      • Ravi Sandhu, University of Texas at San Antonio
      • Charles Shoniregun, Infonomics Society, UK
      • Jaideep Vaidya, Rutgers University

      Publicity Chair

      • Daniele Midi, Purdue University, dmidi@purdue.edu