Date: 10am, Monday 20 June 2011
The UK is faced with many new threats which could damage the infrastructure of the country, especially in terms of its critical infrastructure. These threats include the risk to individuals, to communities, and to businesses. Thus there needs to be an integrated approach to understanding these risks, and to mitigate them wherever possible. A key factor is for a range of domains to collaborate effectively, and to co-ordinate their activities, especially in defining the important threats, and how information can be gained to prevent any future events.
The event is free, and is intended to increase the collaboration of organizations around Scotland, and has been arranged for:
Monday, 20 June 2011 in The Egg on the Craiglockhart Campus at Edinburgh Napier University
There will also be a poster event by PhD students and researchers from around the Scottish academic institutes. Also we aim to award a prize for the Young Security Engineer of the Year. [Prize details]
The Symposium is delivered with the support of Scottish Enterprise.
Aim and Scope of Symposium
This symposium aims to bring together knowledge from many different domains, such as from academia, industry, the public sector, and law enforcement professionals, to provide a vision to create next generation systems which protect the rights of individuals, and which also to reduce the risks of our citizens in the face of threats that they are now exposed to. The focus on this symposium is on risk and uncertainty, with a key focus on:
Registration and Poster Event
The event is free, and is intended to increase the collaboration of organizations around Scotland. Registration for the event can be done at:
There will also be a poster event by PhD students and researchers from around the Scottish academic institutes.
Supporters and Organisers
The Symposium is supported by:
The symposium is organised by [organisers]:
• Bill Buchanan (Edinburgh Napier University), w.buchanan(at)napier.ac.uk
There will be a wide range of speakers, from academia, the business community, law enforcement, and so on. At present the confirmed speakers are:
The symposium is organised by:
The Symposium is supported by:
John Howie, CIPP/IT, CIPP, CISA, CISM, CISSP is the Senior Director of Technical Security Services for the Online Services Security and Compliance (OSSC) team within Global Foundation Services at Microsoft Corporation. He manages the teams responsible for strategy and architecture, threat management, and incident response for the company's cloud computing infrastructure. Prior to joining OSSC, John led the Data Governance Initiative in Microsoft's Trustworthy Computing Group, focusing on privacy protections for personal information, strategy, and policy. Previously he managed the company's Security Center of Excellence, and led the security community and its professional development program. John has spent twenty years working in the Information and Communications Technologies industry, principally working in the areas of information security and privacy, in several industry sectors including entertainment, financial services, and telecommunications.
Don Smith is VP Engineering and Technology at Securework. He has worked in the IT industry for 18 years, starting his IT career with the groundbreaking Edinburgh University spin-off, Vision Group. After a successful flotation Vision was acquired by STMicroelectronics where ultimately Don became responsible for security architecture and operations for this $8billion enterprise. During his time at ST in Geneva, Don also worked on successfully integrating 14 acquisitions across 26 sites on three continents. Don joined dns on returning to Scotland in 2005 and was instrumental in the construction of the dns identity management practice and the evolution of the dnsMSS service portfolio. Don is regarded as an expert in the field of Identity and Access Management. After SecureWorks' acquisition of dns, Don focuses on bringing SecureWorks threat intelligence and security messages to European clients as well as continuing to provide leadership across the varied technologies and application areas represented by the IAM umbrella.
Alan Moffat is the Information Management and Security Director with RSC2 Solutions. Alan is a founder member and Chair of the Scottish Information Assurance Forum (SIAF) and is also a member of the Cabinet Office, National Information Assurance Forum. He has 30 years of IT Management and Security experience within the Criminal Justice and Emergency Services arena, including developing secure national infrastructures for UK Police Forces to meet government security standards (MoPS and SPF) and International Standards (ISO 27000 series). Alan is one of only a few UK qualified consultants in the use of Axiology profiling, used throughout the world to profile individuals thinking styles, values and behaviour analysis.
Detective Superintendent Russell Scott joined the Metropolitan Police in London in 1981 where he served in both uniform and detective duties in the West End and Kings Cross areas. In 1988 he returned to Scotland joining Fife Constabulary where he again performed uniform and CID duties. Following promotion to Detective Inspector in 1997 he was transferred to the Force Drugs Squad overseeing surveillance and enforcement teams. In October 2002 he was seconded to the SDEA East Group as Branch Commander during which time he managed a number of covert policing operations targeting serious and organised crime groups throughout Scotland. He took up his current post as Project Manager for the ACPOS NIM Development Team based at the Scottish Police College in January 2005. He is represented on a number of national committees including the ACPO NIM Working Group and the Scottish Strategic and Tactical Tasking groups. He also led the recent review of Serious and Organised Crime in Scotland and the review of the Scottish Tactical Tasking and Co-ordination Group resulting in him becoming the Actions Manager. In this role he has an oversight of the five Tactical groups for Scotland including the Public Protection Group on behalf of the lead - ACC Livingstone of Lothian and Borders Police. Currently he is the ACPOS lead for implementation of the Management of Police Information (MoPI) programme which includes development of the Bichard recommendations following the Soham murders. In addition he also leads on the work being undertaken with regards to the Magee Review of Criminality Information (RoCI) which examined the sharing of information with international partners.
Tabassum Sharif is Director of Operations at Flexiant, a leading independent cloud platform provider and software and services company. Flexiant developed Europe’s first cloud platform over four years ago and remains one of only a handful of independent cloud platform providers world wide.Prior to joining Flexiant, Sharif acquired a wealth of experience in translating theoretical ideologies and best practices into real world environments working with a number of leading financial service organisations including GE Capital, the JW Group and Alphyra.Tabassum Sharif spent almost eight years in the military specialising in telecommunications and other communication projects after completing a B Eng in Electronic and Electrical Engineering at the School of Electrical and Electronic Engineering with the Corp of Royal Electrical and Mechanical Engineers."
Fred Piper BSc, PhD, CEng, FIEE, ARCS, DIC, FICA, FIMA, MBCS, CISSP, CISM, M.InstIISP
Fred Piper obtained a First Class Honours degree in Mathematics at Imperial College (University of London) in 1962 followed by a PhD in 1964. He began an academic career as an Assistant Lecturer in Mathematics at Royal Holloway College (University of London) and after one year was promoted to Lecturer. He transferred to Westfield College (University of London) in 1969, was promoted to Reader in 1971 and to Professor in 1975. He is currently Director of the Royal Holloway Information Security Group that was awarded the Queen’s Anniversary Prize for Higher and Further Education in 1998. He has held a number of visiting positions at other universities, including Illinois (Chicago Campus), Florence, Perugia, New York State (Albany), Michigan State, Western Ontario, Natal and Beijing.
Fred has published over 100 research papers, 6 books (4 on cryptography), and is on the editorial boards of two international journals. He has also supervised over 50 PhD students and is one of the organisers of the MSc’s in Information Security and Secure Electronic Commerce being offered at Royal Holloway. He has lectured world-wide on a wide range of topics in information security, both academically and commercially.
In 1985 he formed a company, Codes & Ciphers Ltd, which offers consultancy advice in all aspects of information security. He has acted as a consultant for a number of financial institutions and major industrial companies in the UK, Europe and USA. This consultancy has covered a wide range of subjects including design and analysis of cryptographic algorithms, and work on a number of ATM and EFTPOS systems. In the last few years he has served on a number of committees offering security advice to the UK’s Department of Trade and Industry.
Mike Dickson joined Lothian and Borders Police 22 years ago and has held a number of roles within that Force. During this time he was also working as a freelance computer programmer on numerous projects worldwide, notably for the financial sector and IBM. On the basis of this, in 1998 he was invited to help set up the Forensic Computer Unit within Lothian's headquarters as a forensic analyst.
In 2003 this Unit was expanded greatly to become the Scottish National Hi-Tech Crime Unit at which time it was migrated to the Scottish Crime and Drug Enforcement Agency. During this time he obtained a Masters Degree in Computer Forensics at the Royal Military College of Science and a Masters in IT and Telecommunications Law at Strathclyde University. He has worked on high profile cases covering such diverse areas as child abuse, fraud, counterfeit currency, software piracy, drugs, terrorism, missing persons, murder and money laundering. Mike lectures at the Scottish Policing College, Glasgow University, Strathclyde University and the National Police Improvement Agency and assists with technical courses in his field. He has also been published in various journals in the field of computer and mobile telephone forensics.
Nigel Jones MBE FBCS is currently the law enforcement coordinator of the Cybercrime Centres of Excellence Network for Training, Research and Education (2CENTRE) and a director of Technology Risk Limited, a company specialising in technology risk solutions.
Martin Borrett is the Director of the IBM Institute of Advanced Security in Europe. He leads the Institute and advises at the most senior level in clients on policy, business, technical and architectural issues associated with security. Martin leads IBM's Security Blueprint work and is co-author of the IBM Redbooks "Introducing the IBM Security Framework and IBM Security Blueprint to Realise Business-Driven Security" and "Understanding SOA Security" . He is Chairman of the European IBM Security User Group community and Chairman of the IBM UKI Technical Consulting Group. He is a member of the IBM Academy of Technology, a Fellow of the BCS, and a Chartered Engineer (CEng) and member of the IET. Martin has a passion for sailing and has represented Great Britain; he is also a keen tennis player.
Bill Buchanan is a Professor in the School of Computing at Edinburgh Napier University. He currently leads the Centre for Distributed Computing and Security, and works in the areas of security, e-Crime, intrusion detection systems, digital forensics, e-Health, mobile computing, agent-based systems, and simulation. Bill has one of the most extensive academic sites in the World, and is involved in many areas of novel teaching in computing. He has published over 27 academic books, and over 130 academic research papers, along with awards for excellence in knowledge transfer. Presently he is working with a range of industrial/domain partners, including with the Scottish Police, health care professionals and the FSA. [Web page]
Mike Just is a Lecturer (Assistant Professor) at the School of Engineering & Computing at Glasgow Caledonian University. He is also a Visitor at the School of Informatics at the University of Edinburgh. Mike has penned more than two dozen publications in his areas of interest, which include applied cryptography, human computer interaction, network security, and social informatics. Prior to his current academic position, Mike spent more than 10 years working in both the public and private sectors. In 2003, he designed the Government of Canada's online authentication recovery solution, currently used by more than 6 million citizens and businesses. He earned his PhD in Computer Science in 1999 from Carleton University. [Web page]
Richard McFarlane is a lecturer in Security and Forensics in the School of Computing, at Edinburgh Napier University. Current research areas include Network Security, Forensic and Security Frameworks, Virtualisation, and Network Device Emulators. He has a Degree in Computing, followed by 7 years in industry, Masters in Networking and 2 years teaching Networking, Security and Forensics, BSc Hons, MSc, Cisco Instructor CCNA, CCNA Security, PBCS, EnCase Forensic I. [Web page]
Dr Ishbel Duncan is a lecturer in the School of Computer Science at the University of St Andrews. Having previously been a Research Fellow with BT investigating large scale software testing in which the adequacy of a test suite is optimal, she became interested in the adequacy of security, that is, security testing and analysis of its effectiveness. She has worked on projects as diverse as communications metrics, wireless sensor networks, e-voting, agent testing, virtual world education and security requirements modelling before building up and currently running a successful MSc programme in Information Technology. She lectures in Security at both Honours and MSc level. [Web page]
Prof Burkhard Schafer studied Logic, Theoretical Linguistics, Philosophy and Law at the Universities of Mainz, Munich, Florence and Lancaster. My main field of interest is the interaction between law, science and computer technology, especially computer linguistics. How can law, understood as a system, communicate with systems external to it, be it the law of other countries (comparative law and its methodology) or science (evidence, proof and trial process). As a co-founder of the Joseph Bell Centre for Legal Reasoning and Forensic Statistics, I help to develop mathematically sound methods to evaluate scientific evidence, develop computer models which embody these techniques, and provide assistance to police and lawyers to interpret and apply scientific evidence, A special interest here is the development of computer systems that help law enforcement agencies to co-operate more efficiently across jurisdictions, assisting them in the interpretation of the legal environment within which evidence in other jurisdictions is collected. This research is linked to my wider interest in comparative law and its methodology, the idea of a "Chomsky turn in comparative law", and the project of a "computational legal theory" My Research Centre is the Joseph Bell Centre. He is involved with a number of organisations that promote the exchange between computer science and law, including the German Association for Informatics, BILETA, and the Evidence and Investigation network of the Scottish Institute for Policing Research. I'm also on the Nomination Committee of the International Association for Artificial Intelligence and Law. [Web page]
The Symposium is delivered with the support of Scottish Enterprise.