The 2009 Workshop on the Economics of Information Security invites original research papers focused on any aspect of the economics of information security, including the economics of privacy. We encourage economists, computer scientists, psychologists, business and management school researchers, law scholars, security and privacy specialists, as well as industry experts, to submit their research and attend the Workshop. Suggested topics include (but are not limited to) empirical and theoretical economic studies of:
- Models and optimality of investment strategies in information
security
- Privacy, confidentiality, and anonymity
- Cyber-trust and reputation systems
- Interdependent supply-chain security
- Intellectual property protection
- Information access and provisioning
- Risk management and cyber-insurance
- Security standards and regulation
- Behavioral security and privacy
- Cyber-terrorism policy
- Organizational security and metrics
- Psychological, social, and systemic aspects of risk and security
- Phishing, spam, and cybercrime
- Vulnerability discovery, disclosure, and patching
This year we should particularly like to encourage papers taking a whole-systems view of information security, encompassing people, technology, and economics.
- Robert Coles (Merrill Lynch, UK)
- Hal Varian (Google, USA)
- Martin Sadler (HP Labs, UK)
- Bruce Schneier (BT Counterpane, USA)
| Submissions due | 28 February, 2009 |
| Notification of acceptance | 10 April, 2009 |
| Workshop | 24-25 June, 2009 |
Papers to be submitted online by 23:59 GMT on Saturday, 28 February, 2009, preferably in PDF format.
Submitted manuscripts should represent significant and novel research contributions. Please note that WEIS has no formal formatting guidelines. Previous contributors spanned fields from economics and psychology to computer science and law, each with different norms and expectations about manuscript length and formatting. Advisable rules of thumb include: using past WEIS accepted papers as templates and adhering to your community's publication standards.
David Pym (HP Labs, Bristol and University of Bath, UK, david.pym@hp.com) M. Angela Sasse (University College London, UK, a.sasse@cs.ucl.ac.uk)
Yvo Desmedt (University College London, UK)
Christos Ioannidis (University of Bath, UK)
Alessandro Acquisti(Carnegie Mellon University, USA)
Ross Anderson (University of Cambridge, UK)
Rainer Boehme (Technische Universitaet Dresden, Germany)
Jean Camp (Indiana University, USA)
Huseyin Cavusoglu (University of Texas at Dallas, USA)
Nicolas Courtois (University College London, UK)
Neil Gandal (Tel Aviv University, Israel)
Larry Gordon (University of Maryland, USA)
Eric Johnson (Dartmouth College, USA)
Marty Loeb (University of Maryland, USA)
Tyler Moore (Harvard University, USA)
Andrew Odlyzko (University of Minnesota, USA)
Andy Ozment (Office of the Secretary of Defense, USA)
David Pym (HP Labs Bristol & University of Bath, UK)
M. Angela Sasse (University College London, UK)
Stuart Schechter (Microsoft Research, USA)
Bruce Schneier (BT Counterpane, USA)
Rahul Telang (Carnegie-Mellon University, USA)
Catherine Tucker (Massachusetts Institute of Technology, USA)