About ITASEC17


The Italian Conference on Cybersecurity (ITASEC17) is a new annual event supported by the CINI Cybersecurity National Laboratory that aims at putting together Italian researchers and professionals from academia, industry and government working in the field of cybersecurity. The conference will be structured into a main track on cybersecurity science and technology, a “fil rouge” track including a sequence of multidisciplinary sessions on a specific hot topic in cybersecurity and a demo track devoted to prototypes developed by industries, research centers and universities. The conference will also feature a few selected distinguished keynote speeches and panels.

This year, the fil rouge track topic will be
“Fostering Security Through Web-Based Intelligence: Tools, Opportunities and Inherent Limitations”.

Conference tracks


S&T main track

For the science and technology (S&T) main track we welcome submissions regarding any aspects of cybersecurity including, but not limited to, the following ones: big data analytics, biometrics, critical infrastructure protection, cryptographic algorithms and applications, digital identity, electronic voting, enterprise and software security, forensics, formal methods, hardware trust and security, social engineering, machine learning and artificial intelligence, malware detection and analysis, intelligence, privacy, cyber-physical and industrial control systems, security governance and risk management, secure computation and storage, cyber ranges, surveillance systems (video, audio etc), network and cloud security, e-commerce security, vulnerability assessment, economics of cybersecurity.

Fil rouge track

Every year the conference wants to highlight a “fil rouge” topic to be addressed in a multidisciplinary way by allocating specific targeted IT and non-IT sessions. This year the topic is “Fostering Security Through Web-Based Intelligence: Tools, Opportunities and Inherent Limitations”. Papers addressing the topic in disciplines like: social sciences, economic sciences, (geo-)political sciences, legal sciences and other non-technology areas are encouraged. Non-technological papers will be selected by a specific fil rouge track program committee.

Demos track

Demonstrations present first-hand experience with research prototypes or operational systems in any of the areas identified in the scope of the S&T main track. The authors are expected to prepare a poster and perform a live demonstration. Demonstrations also provide opportunities to exchange ideas gained from implementing cybersecurity systems and to obtain feedback from expert users. A demonstration has to be accompanied by a submission. Demonstration submissions describe in 5 pages, following the format for the conference proceedings, the objectives and findings addressed by the demonstration. Commercial demos will not be accepted.


Submit a paper

Submissions and proceedings


Papers

We solicit two kinds of submission for S&T main track, fil rouge track and demos track: original, unpublished contributions that will be included in an open-access volume of CEUR Workshop Proceedings; already published or preliminary work and position papers that will not be included in the proceedings volume. We particularly encourage submissions on new and emerging topics. Authors are requested to clearly indicate whether their paper should be included in the proceedings volume or not.

Papers have to be submitted in pdf format and should be formatted using the EasyChair style. Papers submitted to S&T and fil rouge tracks must be no longer than 10 pages including bibliography. Extra material exceeding the page limit can be included in a clearly marked appendix of at most 5 pages. Papers submitted to demos track must be no longer than 5 pages. A walk-through of the actual demonstration should provided in a clearly marked appendix of at most 5 pages.

Click here to submit a paper.

Panel proposals

The conference will accept up to two panels on hot topics in cybersecurity. Panels could also be proposed in the context of domestic issues related to organization, policy or technology issues in cybersecurity. Proposals for panels should include a panel title, a panel chair, a 10-lines panel abstract and the list of panelists. Selection of the panels will be done by the organizing committee.

Click here to submit a panel proposal.

Important dates

  • 15 October 2016: Abstract submission (all tracks)
  • 23 October 2016: Paper submission (all tracks)
  • 15 November 2016: Panel proposal submission
  • 1 December 2016: Notification to authors (both papers and panel proposals)
  • 22 December 2016: Camera ready for inclusion in formal proceedings
  • 31 December 2016: Early registration deadline
  • 17-20 January 2017: Conference

Language

Papers submitted to the S&T main track must be in English. For the other tracks and for panel proposals the language can be either English or Italian.


Go to conference committees

Conference committees


Program co-chairs

Alessandro Armando (Università di Genova and FBK)
Roberto Baldoni (Università di Roma, Sapienza)
Riccardo Focardi (Università Ca' Foscari, Venezia)

S&T Track Program Committee

Alessandro Armando (Università di Genova and FBK)
Marco Baldi (Università Politecnica delle Marche)
Roberto Baldoni (Università di Roma, Sapienza)
Antonio Barili (Università di Pavia)
Stefano Bistarelli (Università di Perugia)
Carlo Blundo (Università di Salerno)
Andrea Bondavalli (Università di Firenze)
Francesco Buccafurri (Università di Reggio Calabria)
Stefano Calzavara (Università Ca' Foscari, Venezia)
Dajana Cassioli (Università dell'Aquila)
Dario Catalano (Università di Catania)
Paolo Ciancarini (Università di Bologna)
Mauro Conti (Università di Padova)
Domenico Cotroneo (Università di Napoli, Federico II)
Bruno Crispo (Università di Trento)
Franco Davoli (CNIT, Università di Genova)
Rocco De Nicola (IMT, Lucca)
Pierpaolo Degano (Università di Pisa)
Felicita Di Giandomenico (ISTI-CNR, Pisa)
Gianluca Dini (Università di Pisa)
Susanna Donatelli (Università di Torino)
Elena Ferrari (Università dell'Insubria)
Riccardo Focardi (Università Ca' Foscari, Venezia), Chair
Giorgio Giacinto (Università di Cagliari)
Antonio Lioy (Politecnico di Torino)
Giuseppe Lo Re (Università di Palermo)
Flaminia Luccio (Università Ca' Foscari, Venezia)
Luigi Vincenzo Mancini (Università di Roma, Sapienza)
Mirco Marchetti (Univ. di Modena e Reggio Emilia)
Alberto Marchetti-Spaccamela (Univ. di Roma, Sapienza)
Fabio Martinelli (IIT-CNR, Pisa)
Michele Minichino (ENEA)
Marino Miculan (Università di Udine)
Silvio Ranise (Fondazione Bruno Kessler)
Luigi Romano (Università di Napoli, Parthenope)
Domenico Saccà (Università della Calabria)
Pierangela Samarati (Università degli studi di Milano)
Roberto Setola (Università Campus Bio-Medico, Roma)
Maurizio Talamo (Università di Roma, Tor Vergata)
Alberto Trombetta (Università dell'Insubria)
Corrado Aaron Visaggio (Università del Sannio)
Stefano Zanero (Politecnico di Milano)

Fil rouge track Program Committee

Roberto Baldoni (Università di Roma, Sapienza), Chair
Marina Brogi (Università di Roma, Sapienza)
Matteo Bonfanti (CSS ETH, Zurigo)
Francesca Bosco (UNICRI, Torino)
Mario Caligiuri (Università della Calabria, Cosenza)
Andrea de Guttry (Scuola Superiore Sant'Anna, Pisa)
Andrea Di Nicola (Università di Trento)
Umberto Gori (Università di Firenze)
Juan Carlos De Martin (Politecnico di Torino)
Marco Mayer (Università Link Campus, Roma)
Greta Nasi (Bocconi University)
Stefano Silvestri (Istituto Affari Internazionali, Roma)
Gian Domenico Mosco (Libera Università Internazionale degli Studi Sociali "Guido Carli", Roma)
Paolo Prinetto (CINI)

Demos track Program Committee

Alessandro Armando (Univ. di Genova and FBK), Chair
Marco Balduzzi (Trend Micro)
Roberto Carbone (Fondazione Bruno Kessler)
Salvatore Carrino (ENI)
Fabio Cocurullo (Leonardo)
Pietro Della Peruta (IBM)
Rocco Mammoliti (Poste Italiane)
Paolo Massafra (CISCO)
Carlo Mauceli (Microsoft)
Alessio Merlo (Università di Genova)
Orillo Narduzzo (ISACA VENICE)
Gian Luigi Pugni (ENEL)
Leonardo Querzoni (Università di Roma, Sapienza)



ItaSec Steering Committee

Alessandro Armando (Università di Genova and FBK)
Roberto Baldoni (Università di Roma, Sapienza), Chair
Carlo Blundo (Università di Salerno)
Andrea Bondavalli (Università di Firenze)
Bruno Crispo (Università di Trento)
Pierpaolo Degano (Università di Pisa)
Elena Ferrari (Università dell'Insubria)
Riccardo Focardi (Università Ca' Foscari, Venezia)
Antonio Lioy (Politecnico di Torino)
Fabio Martinelli (IIT-CNR, Pisa)
Silvio Migliori (ENEA)
Paolo Prinetto (CINI)
Pierangela Samarati (Università di Milano)
Stefano Zanero (Politecnico di Milano)


ITASEC17 Organizing Committee

Roberto Baldoni (Università di Roma, Sapienza; CINI)
Gabriella Caramagno (Università di Roma, Sapienza)
Riccardo Focardi (Univ. Ca' Foscari, Venezia), Chair
Flaminia Luccio (Università Ca' Foscari, Venezia)
Angela Miola (CINI)
Paolo Prinetto (Politecnico di Torino, CINI)

Local Organizers

Stefano Calzavara (Università Ca' Foscari, Venezia)
Francesco Palmarini (Università Ca' Foscari, Venezia)
Marco Squarcina (Università Ca' Foscari, Venezia)
Mauro Tempesta (Università Ca' Foscari, Venezia)
Heider Wahsheh (Università Ca' Foscari, Venezia)



Venue and Accommodation


Venue

The conference will take place in the San Giobbe Campus of Ca' Foscari University, Venice. Below you can find directions from Venice railway station Santa Lucia and from Piazzale Roma (buses and car parking area), respectively.

The following map shows the location of various rooms and facilities of ITASEC17 inside the San Giobbe campus:

Accommodation

The following hotels and residences have agreed on a reduced price for conference participants. Use "Cybersecurity" keyword to access the reduced fee. Notice that all hotels in Venice charge a tourist tax per day (reported in the table).

Hotel name Single Double single use Double Tourist Tax Breakfast
Hotel Continental **** - 100.00 € 130.00 € 4.50 € Included
Hotel santa Chiara **** - 88.00-113.00 € - 4.50 € Included
Hotel Saturnia **** - 123.00 € 138.00 € 3.10 € Included
Hotel San Sebastiano Garden **** 99.00 € 155.00 € - 3.60 € Included
Hotel Due Fanali *** 80.00 € 89.00 € 99.00 € 2.40 € Included
Hotel La Calcina *** - - 100.00 - 150.00 € 1.70 € Included
Hotel Belle Arti *** 50.00 € 70.00 € 75.00 € 3.50 € Included
Hotel Domus Cavanis – dependance Belle Arti *** 50.00 € 70.00 € 75.00 € 3.50 € Included
Residenza Universitaria ai Crociferi 80.00 € 100.00 € 1.50 € Included
Centro Culturale Don Orione Artigianelli 82.00 € 96.00 € 145.00 € 1.40 € Included
Casa per Ferie CASA S.ANDREA 45.00 € - - 2.00 € Not included
Istituto Canossiano San Trovaso 63.00 € 90.00 € 99.00 € 2.00 € Not included

ITASEC17 Program at a glance


Orario

January 17

January 18

January 19

January 20

Aula 9A

Sala Saraceno

Aula Magna

Aula 10A

Aula 10B

Aula Magna

Aula 10A

Aula 10B

Aula Magna

Aula 10A

Aula 10B

08:00 - 09:00

Registration

Registration

Registration

09:00 - 10:00

Opening:

Michele Bugliesi Rettore Univ. Venezia

Paolo Prinetto  (Pres. CINI)

Massimo Inguscio (Pres. CNR)

Roberto Baldoni (Lab Naz Cybersecurity)

Riccardo Focardi (Univ. Venezia)

On. Marco Minniti (TBC)

Vision Speeches:

Cisco  (Tony Jeffs)

IBM (Alessandro Curioni e Fabrizio Renzi)

Microsoft  (Carlo Mauceli)

TrendMicro  (Marco Balduzzi)

Vision Speeches:

PaloAlto (M. Arnaud Kopp)

Leonardo (Giorgio Mosca)

10:00 - 10:30

Keynote 1:

Matthew Barret (NIST)

Keynote 3:

Paolo Ciocca
(vice direttore DIS)

10:30 - 11:00

coffee break

coffee break

coffee break

11:00 - 11:30

Panel 1.1:

Ecosistema Cyber Nazionale: il ruolo della ricerca

(Modera Arturo Di Corinto - La Repubblica)

Technical Session 1.1:

Cryptography

Technical Session 1.2:

Privacy

Keynote 2:

EU perspective to cybersecurity

Andrea Servida (EU DG connect)

Luigi Rebuffi (European Cyber Security Organization)

Panel 3.1:

Come sta cambiando la cyber security (e perché investirci)

(Modera Michele Pierri - Direttore Cyber Affairs)

Technical Session 3.1:

Industrial Control Systems and critical infrastructures

Technical Session 3.2:

Secure Systems and Forensics

11:30 - 12:00

Demo Session 2.1: Automated Security Assessment

Technical Session 2.1:

Social and economics

12:00 - 13:00

Panel 1.2:

Risk assessment in cybersecurity: an interdisciplinary approach

(Moderano: Isabella Corradini, President of Themis Research Centre, Luisa Franchina AIIC)

Panel 2.1:

Difesa attiva e resilienza come risposte alla minaccia cyber

(Modera: Mario Dal Co - Corcom-Corriere delle Comunicazioni)

Panel 3.2

La ristrutturazione delle banche e la cybersecurity -

(Modera Mario Dal Co, Corcom-Corriere delle Comunicazioni)

13:00 - 13:30

Lunch

Lunch

Lunch

13:30 - 14:00

Lunch

Lunch

Lunch

14:00 - 14:30

Tutorial Framework nazionale

14:30 - 15:00

Invited talk 1:

Harry Perper (National Cybersecurity Center of Excellence, MITRE)

Technical Session 1.3:

Internet of things

Invited talk 2:

Sistema di informazione per la sicurezza della Repubblica

L'alleanza strategica tra ricerca e intelligence per la sicurezza nazionale

Invited talk 3:

Roberto Baldoni (Direttore Lab Nazionale di cybersecurity del CINI e Direttore CIS-Sapienza)

Demo Session 3.1: Protection of Critical Infrastructures

Technical Session 3.3:

Blockchain and cryptocurrencies

15:00 - 16:00

Panel 1.3:

Cybersecurity come prerequisito alla trasformazione Industria 4.0

(Modera Alessandro Longo - ForumPA)

Demo Session 1.1:

Cyber Intelligence

Panel 2.2:

Cyber Security stesse necessità e standard, applicazioni diverse

(Modera: Loredana Mancini)

Fil Rouge 1:

Cybercrime and Banking

Technical Session 2.2:

Malware and Software Analysis

Panel 3.3:

I rischi dell’impiego di tecnologie non sovrane nelle reti e sistemi d’interesse nazionale

(modera: Riccardo Ferretti - Panorama Difesa)

16:00 - 16:30

coffee break

coffee break

coffee break

Concluding Remarks

16:30 - 18:00

Tutorial Framework nazionale

Steering Committee Meeting (a partire dalle 17)

Panel 1.4:

Gli Stati alla sfida della cyberwarfare e della gestione di conflitti digitali

(modera: Carola Frediani La Stampa)

Special Session:

SEcube: OpenSource Platform for Cybersecurity Applications

Technical Session 1.4:

Authentication and security policies

Panel 2.3:

Fabbisogni di Specialisti in Sicurezza Informatica e Formazione Universitaria

(Modera Rocco De Nicola - IMT)

Fil Rouge 2:

Social and web intelligence

Technical Session 2.3:

Attack detection

18:00 - 19:00

ITASEC Business Meeting

19:30 - 23:00

Social Dinner

ITASEC17 Detailed Program


17th January 2017

Room

Aula 9A (Stakeholder Space)

Sala Saraceno

13:00 14:00

Registrazione

14:00

-

16:00

Tutorial: Framework nazionale per la cybersecurity (parte 1)

Organizza : Laboratorio Nazionale di Cybersecurity

Abstract

Il tutorial mostrerà i concetti di base che consentono alle organizzazioni di valutare la propria preparazione in termini di sicurezza e di creare una roadmap per migliorare la propria situazione. Sarà presentato un approfondimento sulle raccomandazioni per il top management delle grandi imprese e le PMI e si riporteranno, inoltre, esperienze di utilizzo da parte di grandi imprese, di associazioni di categoria, di centri di ricerca e PA avute nel corso dell’anno trascorso. Nel corso del tutorial si presenteranno inoltre alcuni tool basati sul framework che consentono di agevolare le imprese nel processo di adozione e di valutazione del rischio cyber.
Il Framework costituisce uno strumento il cui scopo è quello di offrire alle organizzazioni (indipendentemente dalla loro dimensione o criticità) un approccio volontario e omogeneo per affrontare la cybersecurity e ridurre il rischio legato alla minaccia cyber.

  • 14:00 Opening Session (Roberto Baldoni - Laboratorio Nazionale Cybersecurity, Cristiano Cannarsa - AD Sogei)
  • 14:50 Framework Nazionale per la cybersecurity (Luca Montanari - CIS-Sapienza)
  • 15:20 Industry Session Parte 1(Lorenzo Russo - Intellium Deloitte, Andrea Zapparoli Manzoni - KPMG)

16:00 16:30

coffee break

16:30

-

17:00

Tutorial:  Framework nazionale per la cybersecurity (parte 2)

Organizza : Laboratorio Nazionale di Cybersecurity

Abstract

Il tutorial mostrerà i concetti di base che consentono alle organizzazioni di valutare la propria preparazione in termini di sicurezza e di creare una roadmap per migliorare la propria situazione. Sarà presentato un approfondimento sulle raccomandazioni per il top management delle grandi imprese e le PMI e si riporteranno, inoltre, esperienze di utilizzo da parte di grandi imprese, di associazioni di categoria, di centri di ricerca e PA avute nel corso dell’anno trascorso. Nel corso del tutorial si presenteranno inoltre alcuni tool basati sul framework che consentono di agevolare le imprese nel processo di adozione e di valutazione del rischio cyber.
Il Framework costituisce uno strumento il cui scopo è quello di offrire alle organizzazioni (indipendentemente dalla loro dimensione o criticità) un approccio volontario e omogeneo per affrontare la cybersecurity e ridurre il rischio legato alla minaccia cyber.

  • 16:30 Industry Session Parte 2 (Massimo Rocca - Enel, Fabio Lazzini - Sogei, Luisa Franchina - AIIC)
  • 17:30 Demo Session (Luca Montanari - CIS-Sapienza, Fabio Martinelli e Artsiom Yautsiukhin - CNR)
  • 17:50 Discussione e Wrap up (Luca Montanari, CIS-Sapienza)
  • 18:00 Chiusura Lavori

17:00

-

19:00

ITASEC Steering Committee Meeting

18th January 2017

Space

Stakeholder Space

Scientific/Technical Space

Room

Aula Magna

Aula 10A

Aula 10B

08:00 09:00

Registration

09:00 - 10.00

Opening

  • Michele Bugliesi Rettore Univ. Venezia
  • Paolo Prinetto (Pres. CINI)
  • Massimo Inguscio (Pres. CNR)
  • Roberto Baldoni (Lab Naz Cybersecurity)
  • Riccardo Focardi (Univ. Venezia)
  • On. Marco Minniti, Ministro dell’Interno (TBC)

10:00 - 10:30

Keynote 1

(chair: Alessandro Armando)

Matthew Barret

(Program Manager, Cybersecurity and Privacy Applications, NIST)
The Future of Cybersecurity Framework

10:30 11:00

coffee break

11:00 - 12:00

Panel 1.1

Ecosistema Cyber Nazionale: Il ruolo della ricerca

(Modera: Arturo Di Corinto - La Repubblica)

Organizza: Laboratorio Nazionale di Cybersecurity

Partecipanti

  • Michele Bugliesi, Rettore Universitò di Venezia
  • Paola Inverardi, Rettore Università dell'Aquila
  • Massimo Inguscio, Presidente CNR
  • Roberto Baldoni, Direttore Laboratorio Nazionale di Cybersecurity del CINI
  • Donatella Sciuto - Prorettore alla ricerca Politecnico di Milano                 

Technical Session 1.1

Cryptography

(chair: Marco Baldi)

  • Angelo Massimo Perillo, Giuseppe Persiano, Alberto Trombetta. Secure Queries on an Encrypted Multi-Writer Table
  • Saikrishna Badrinarayanan, Dakshita Khurana, Rafail Ostrovsky and Ivan Visconti. Unconditional UC-Secure Computation with (Stronger-Malicious) PUFs
  • Flaminia L. Luccio and Heider A. M. Wahsheh. Towards Cryptographically Secure QR Codes
  • Alessandro Barenghi and Gerardo Pelosi. An Enhanced Dataflow Analysis to Automatically Tailor Side Channel Attack Countermeasures to Software Block Ciphers
  • Francesco Buccafurri, Gianluca Lax, Serena Nicolazzo and Antonino Nocera. Range Query Integrity in Cloud Data Streams with Efficient Insertion

Technical Session 1.2

Privacy

(chair: Antonio Lioy)

  • Mauro Conti, Fabio De Gaspari and Luigi V. Mancini. Anonymity in an electronic society
  • Giampaolo Bella, Denis Butin and Hugo Jonker. Analysing Privacy Analyses
  • Mojtaba Eskandari, Maqsood Ahmad, Anderson Santana De Oliveira and Bruno Crispo. Analyzing Remote Server Locations for Personal Data Transfers in Mobile Apps  
  • Daniele Ucci, Leonardo Aniello and Roberto Baldoni. Share a pie? Privacy-Preserving Knowledge Base Export through Count-min Sketches  
  • Domenico Amelino, Mario Barbareschi and Alessandro Cilardo. A proposal for the secure activation and licensing of FPGA IP cores

12:00 - 13:00

Panel 1.2

Risk assessment in cybersecurity: an interdisciplinary approach

(Organizzano e moderano: Isabella Corradini, President of Themis Research Centre, Luisa Franchina AIIC)

Partecipanti

  • Isabella Corradini, President of Themis Research Centre
  • Luisa Franchina, President of Italian Association of Critical Infrastructure experts
  • Corrado Giustozzi, Permanent Stakeholders' Group at ENISA
  • Fabian Mazza Bureau Van Dijk, Head of Global Government Sector
  • Giorgio Massa, IHS-Makit Senior Manager for Southern Europe
  • Alberto Meneghini, Senior Advisor Accenture

13:00 13:30

Lunch

13:30 14:30

Lunch

14:30 - 15:00

Invited talk 1

(chair: Riccardo Focardi)

Harry Perper

(National Cybersecurity Center of Excellence, MITRE) Addressing Today's Threats by Public-Private Partnerships
[slides]

Technical Session 1.3

Internet of things

(chair: Pierpaolo Degano)

  • Luigi Romano, Luigi Coppolino, Salvatore D'Antonio and Luigi Sgaglione. My Smart Home is Under Attack  
  • Pericle Perazzo, Carlo Vallati, Giuseppe Anastasi and Gianluca Dini. A Security Analysis of RPL Routing Protocol for the Internet of Things
  • Chiara Bodei and Letterio Galletta. Tracking sensitive and untrustworthy data in IoT  
  • Vittorio Bagini, Franco Guida, Carlo Majorani, Renato Menicocci, Massimiliano Orazi and Alessandro Riccardi. Derivation of security requirements for a smart grid Demand Response case study

15:00 - 16:00

Panel 1.3

Cybersecurity come prerequisito alla trasformazione Industria 4.0

(Modera Alessandro Longo - ForumPA)

Organizza: Assolombarda

Partecipanti

  • Filippo Miola, (Array System) presidente della Sezione Servizi innovativi e tecnologici di Confindustria Vicenza
  • Valerio Berra,Managing Director, Hydroservice
  • Alvise Biffi, Vice Presidente Piccola Industria Confindustria nazionale
  • Mauro Palmigiani, Country Manager, Italy, Greece & Malta Palo Alto Networks

Demo Session 1.1

Cyber Intelligence

(chair: Fabio Cocurullo)

  • Maurizio Mencarini and Gianluca Sensidoni. Multilanguage Semantic Behavioural Algorithms to discover terrorist related online contents
  • Mike Spradbery. Security Intelligence, Cognitive Insight and Incident Response – where is it heading?
  • Mauro Brignoli and Luisa Franchina. Progetto di Piattaforma di Intelligence con strumenti OSINT e tecnologie Open Source

16:00 16:30

coffee break

16:30 - 18:00

Panel 1.4

Gli Stati alla sfida della cyberwarfare e della gestione di conflitti digitali (modera: Carola Frediani La Stampa)

Partecipanti

  • Andrea Rigoni (Deloitte Intellium)
  • On. Giuseppe Esposito (COPASIR)
  • Stefano Zanero (Politecnico di Milano)
  • Giampiero Giacomello (Dipartimento di Scienze Politiche e Sociali, Università di Bologna)
  • Andrea Campora (Senior Vice President Cyber Security & Information Systems, Leonardo Company)
  • Federico Maggi (Trend Micro)

Special Session

SEcube: OpenSource Platform for Cybersecurity Applications

(chair: Marcello Coppola)

  • Paolo Prinetto (CINI & Politecnico di Torino). The SEcube Project
  • Antonio Varriale (Blu5 Labs). SEcube highlights: Main Features and Benefits
  • Marcello Coppola (STMicroelectronics, Grenoble, France)  STM32 ecosystem for secure platforms -
  • Giuseppe Airò Farulla (CINI).  Antonio Varriale (Blu5 Labs). Showcase demo sessions:
  • Protecting Data-in-Motion: Introductory Demo and live demonstration
  • Protecting Data-at-Rest: introductory demo and live demonstration
  • Paolo Prinetto (CINI & Politecnico di Torino). The SEcube Program for Academia  

Technical Session 1.4

Authentication and security policies

(chair: Francesco Buccafurri)

  • Enrico Schiavone, Andrea Ceccarelli and Andrea Bondavalli. Risk Assessment of a Biometric Continuous Authentication Protocol for Internet Services
  • Giada Sciarretta, Alessandro Armando, Roberto Carbone and Silvio Ranise.  An OAuth-based Single Sign-On Solution for Mobile Applications
  • Stefano Calzavara, Alvise Rabitti and Michele Bugliesi. Content Security Policy: A Broken Promise?

18:00 19:00

ITASEC Business Meeting

19th January 2017

Space

Stakeholder Space

Scientific/Technical Space

Room

Aula Magna

Aula 10A

Aula 10B

08:00 - 09:00

Registration

09:00 - 10.00

Vision Speeches

(chair: Alessandro Armando)

  • Tony Jeffs Sr. (Director of Engineering, Advance Security Research & Government at CISCO). Building an effective “Triumvirate” for Cybersecurity; How Academia, Government, and Industry work together to solve the most challenging security problems in cyberspace [slides]  
  • Alessandro Curioni (IBM Fellow and Director of IBM  research Europe) e Fabrizio Renzi (Direttore tecnologia innovazione IBM Italia). IBM Research Point of View on cybersecurity and research activities in italy
  • Carlo Mauceli (Chief Technology Officer Microsoft Italia). Evoluzione della strategia di sicurezza nel quinto dominio: il cyberspace. [slides]
  • Marco Balduzzi (Senior Research Scientist, Trend Micro ), Traditional AV is Dead? Real-time Machine-learning Detection of Modern Malware Downloads. [slides]

10:00 - 10:30

10:30 11:00

coffee break

11:00 - 11:30

Keynote 2:

EU perspective to cybersecurity

(chair: Roberto Baldoni)

  • Andrea Servida (EU DG connect). Digital Single Market and Cybersecurity: challenges and opportunities. [slides]
  • Luigi Rebuffi (European Cyber Security Organization). The European Public Private Partnership on cybersecurity and ECSO: how to develop the market and the industry

11:30 - 12:00

Demo Session 2.1

Automated Security Assessment

(chair: Giuseppe Lo Re)

  • Avinash Sudhodanan, Alessandro Armando, Roberto Carbone, Luca Compagna and Adrien Hubner. Breaking Multi-Party Web Applications with Blast          
  • Graham Steel. Detecting Crypto Security Flaws in Applications
  • Pietro Ferrara, Elisa Burato and Fausto Spoto. Security Analysis of the OWASP Benchmark with Julia
  • Gabriele Costa, Alessandro Armando, Daniele Biondo, Gianluca Bocci, Rocco Mammoliti and Luca Verderame. Automatic security assessment of mobile apps with MAVeriC: Tool demonstration  

Technical Session 2.1

Social and economics

(chair: Giorgio Giacinto)

  • Gianluigi Folino and Francesco Sergio Pisani.  A Software Architecture for Classifying Users in E-payment Systems  
  • Fabio Del Vigna, Andrea Cimino, Felice Dell'Orletta, Marinella Petrocchi and Maurizio Tesconi. Hate me, hate me not: Hate speech detection on Facebook  
  • Stanislav Dashevskyi, Achim D. Brucker and Fabio Massacci. On the Security Cost of Using a Free and Open Source Component in a Proprietary Product
  • Vincenzo Agate, Alessandra De Paola, Giuseppe Lo Re and Marco Morana.  Vulnerability Evaluation of Distributed Reputation Management Systems

12:00 - 13:00

Panel 2.1

Difesa attiva e resilienza come risposte alla minaccia cyber

(Modera: Mario Dal Co - Corcom-Corriere delle Comunicazioni)

                                

Organizza: CINI                        

                

Partecipanti                        

  • CDavid Gubiani – SE Manager di Check Point  Software Technologies Italia
  • Giovanni Napoli, Europe South Sr. Presales Manager, RSA         
  • Antonio Varriale - Blu5 Labs
  • Ing. Andrea Brigo - Information Security Project Manager SAIV Group
  • Salvatore Marcis - Client Technical Manager Business-e
  • Dott. Lino Antonio Buono - Head of R&D Lab & Technical Department Coordinator IntheCyber

13:00 13:30

Lunch

13:30 14:30

Lunch

14:30 - 15:00

Invited talk 2

(chair: Paolo Prinetto)

Sistema di informazione per la sicurezza della Repubblica

L'alleanza strategica tra ricerca e intelligence per la sicurezza nazionale

15:00 - 16:00

Panel 2.2

Cyber Security stesse necessità e standard, applicazioni diverse

(Organizza e modera: Loredana Mancini - socio fondatore capitolo italiano CSA)

Partecipanti

  • Dott. Marco Tognaccini (Trenitalia)
  • Ing. Antonio Tambato (MISE)
  • Dott. Marco Gentile (Ministero Affari Esteri)
  • Com.te Maurizio La Puca (Cyber Security Advisor – Ministero Difesa)
  • Alessandro Zorer (Presidente Trentino Network)
  • On. Pier Paolo Baretta (Sottosegretario al Ministero Economia e Finanze). Conclusioni [articolo su Corcom.it]

Fil Rouge 1

Cybercrime and Banking

(chair: Riccardo Focardi)

  • Mario Dal Co. La ristrutturazione delle banche italiane e la sicurezza
  • Claudio Caletti. BankSealer: A decision support system for online banking fraud analysis and investigation

Technical Session 2.2

Malware and Software Analysis

(chair: Stefano Calzavara)

  • Davide Maiorca, Paolo Russu, Igino Corona, Battista Biggio and Giorgio Giacinto. Detection of Malicious Scripting Code through Discriminant and Adversary-Aware API Analysis
  • Santanu Kumar Dash, Guillermo Suarez-Tangil, Salahuddin Khan, Kimberly Tam, Mansour Ahmadi, Johannes Kinder and Lorenzo Cavallaro.  DroidScribe: Classifying Android Malware Based on Runtime Behavior  
  • Roberto Baldoni, Emilio Coppa, Daniele Cono D'Elia, Camil Demetrescu and Irene Finocchi. Securing Software Applications through Symbolic Execution: an Overview  

16:00  16:30

coffee break

16:30 - 18:00

Panel 2.3

Fabbisogni di Specialisti in Sicurezza Informatica e Formazione Universitaria (Modera: Rocco De Nicola - IMT)

Organizza: Laboratorio Nazionale di Cybersecurity

Partecipanti

  • Paolo Ciancarini, Univ. Bologna - Presidente GRIN
  • Stelvio Cimato, Università di Milano
  • Camil Demetrescu, Università La Sapienza di Roma - Coordinatore CyberChallrnge.IT
  • Marco Ferretti, Rappresentante GII – Università di Pavia
  • Paolo Scotto di Castelbianco, Direttore della Scuola di formazione dell'Intelligence Italiana
  • Marco Ramilli, Advanced Targeted Attack Expert, Malware Evasion Expert, Cyber Security Analyst - Yoroi
  • Francesco Teodonno, Security Unit Leader - IBM

Fil Rouge 2

Social and web intelligence

(chairs: Umberto Gori and Mario Caligiuri)

Umberto Gori (Intoduction)

  • Matteo E. Bonfanti. Social Media Intelligence a Salvaguardia dell’Interesse Nazionale: Limiti e Opportunità di una Pratica da Sviluppare
  • Giampiero Bonfiglio, Ludovica Coletta, Alessandra Teresa Coscarella, Martina Limonta and Panfilo Ventresca. La Web-based Intelligence nei modelli adattativi di sicurezza e gli aspetti multidisciplinari di attivazione ed analisi
  • Luigi Martino. La minaccia terroristica nel cyberspazio: Virtual Human Intelligence e Sicurezza Nazionale
  • Filippo Pierozzi. IL CASO HACKING TEAM: QUIS CUSTODIET IPSOS CUSTODES? Problematiche e sfide per una più efficiente partnership tra settore privato e agenzie d’intelligence nella cybersecurity

Mario Caligiuri (Conclusion)

Technical Session 2.3

Attack detection

(chair: Corrado Aaron Visaggio)

  • Christian Callegari, Michele Pagano, Stefano Giordano and Fabrizio Berizzi. Entropy-based Network Anomaly Detection
  • Luca Boero, Mario Marchese and Sandro Zappatore. ADENOIDS: softwAre DEfined NetwOrking-based Intrusion Detection System
  • Marco Angelini, Silvia Bonomi, Emanuele Borzi, Antonella Del Pozzo, Simone Lenti and Giuseppe Santucci. An On-line Multi-step Attack Detector for Complex Distributed Systems
  • Ambra Demontis, Battista Biggio, Giorgio Fumera, Giorgio Giacinto and Fabio Roli. Infinity-norm Support Vector Machines against Adversarial Label Contamination

19:30 23:00

Social Dinner

20th January 2017

Space

Stakeholder Space

Scientific/Technical Space

Room

Aula Magna

Aula 10A

Aula 10B

08:00 09:00

Registration

09:00 - 10.00

Vision Speeches

(chair: Roberto Baldoni)

  • M. Arnaud Kopp (PaloAlto Networks Chief Security Officer – Southern Europe). Cyber Threat Prevention : Keep a step ahead! [slides]
  • Giorgio Mosca (Strategy & Technology Director, Security & Information Systems Division, Leonardo). Cyber defense: the three fundamental steps to build it. [slides]

10:00 - 10:30

Keynote 3

(chair: Riccardo Focardi)

Paolo Ciocca

(vice direttore DIS)

10:30 11:00

coffee break

11:00 - 12:15

Panel 3.1

Come sta cambiando la cyber security (e perché investirci)

(Modera Michele Pierri - Cyber Affairs)

Organizzatori: Michele Pierri – direttore Cyber Affairs, Paolo Messa - Direttore Formiche

Partecipanti

  • Jonathan Pacifici, general partner del fondo di venture capital Wadi Ventures
  • Riccardo Donadon, presidente del venture accelerator H-Farm
  • Massimiliano Magrini, managing partner della società d'investimento United Ventures
  • Gianni Cuozzo, fondatore e ceo dell'azienda di intelligence cyber security Aspisec
  • Agostino Santoni, amministratore delegato di Cisco Italia
  • Alessandro Piol, ‎Managing Partner e co-fondatore del fondo AlphaPrime (in video-conferenza)

Technical Session 3.1

Industrial Control Systems and critical infrastructures

(chair: Luigi Romano)

  • Elisa Costante, Sandro Etalle, Jerry Den Hartog, Davide Fauri and Emmanuele Zambon. Towards Practical Integrity Monitoring of Industrial Control Systems
  • Giorgio Sinibaldi. PREventivE Methodology and Tools to protect utilitIEs
  • Giuseppe Bernieri, Federica Pascucci and Javier Lopez. Network Anomaly Detection in Critical Infrastructure Based on Mininet Network Simulator
  • Giuseppe Giulio Rutigliano, Silvello Betti and Pierluigi Perrone. Critical Infrastructures Protection through Physical Layer Optical Communication Security
  • Andrea Bondavalli, Andrea Ceccarelli, Felicita Di Giandomenico, Fabio Martinelli, Ilaria Matteucci, Nicola Nostro and Francesco Santini. Synthesis and Multi-Criteria Ranking of Security Countermeasures via Threat Analysis

Technical Session 3.2

Secure Systems and Forensics

(chair: Antonio Barili)

  • Giovanni Bottazzi, Giuseppe Francesco Italiano and Giuseppe Giulio Rutigliano. An operational framework for incident handling
  • Salvatore D'Antonio, Luigi Coppolino, Luigi Romano and Mariacarla Staffa. KONFIDO Project: a secure infrastructure increasing interoperability on a systemic level among eHealth services across Europe
  • Marc Richter and Konrad Wrona. Devil in the details: Assessing automated confidentiality classifiers of NATO documents
  • Dario Lanterna. Forensic Analysis of Deduplicated File Systems
  • Luca Ghiani, Valerio Mura, Pierluigi Tuveri and Gian Luca Marcialis.  On the interoperability of capture devices in fingerprint presentation attacks detection

12:15 - 13:00

Panel 3.2

La ristrutturazione delle banche e la cybersecurity

(Modera e organizza: Mario Dal Co, Corcom-Corriere delle Comunicazioni)

Partecipanti

  • Romano Stasi Direttore Generale ABI Lab. L’obiettivo della sicurezza cyber nel mondo bancario
  • Domenico Gammaldi, condirettore centrale Banca d’Italia e capo del Servizio supervisione sui mercati e sul sistema dei pagamenti. Un Cert per il settore finanziario
  • Rita Forsi, responsabile CERT NAZIONALE (MISE). CERT Nazionale e CERT di settore: una collaborazione essenziale
  • Silvio Fraternali, Responsabile Area Strategie Operative Integrate di Intesa Sanpaolo Group Services. L’innovazione nei servizi finanziari

13:00 13:30

Lunch

13:30 14:30

Lunch

14:30 - 15:00

Invited talk 3

(chair: Francesca Bosco)

Roberto Baldoni

(Direttore Lab Nazionale di cybersecurity del CINI e Direttore CIS-Sapienza)
Laboratorio nazionale di Cybersecurity: Prospettive, progetti e ecosistema cyber nazionale

Demo Session 3.1

Protection of Critical Infrastructures

(chair: Rocco De Nicola)

  • Armend Duzha and Monica Canepa. MITIGATE: An Innovative Cyber-Security Supply Chain Risk Management System
  • Antonella Chirichiello, Claudio Porretti and Antonio Berardi. Cyber Threat Intelligence for Supporting the ATM Security Management
  • Stefano Bistarelli and Francesco Santini. Visual Analytics for Bitcoin Transactions

Technical Session 3.3

Blockchain and cryptocurrencies

(chair: Marino Miculan)

  • Edoardo Gaetani, Leonardo Aniello, Roberto Baldoni, Federico Lombardi, Andrea Margheri and Vladimiro Sassone. Blockchain-based Database to Ensure Data Integrity in Cloud Computing Environments  
  • Nicola Atzei, Massimo Bartoletti and Tiziana Cimoli.  A survey of attacks on Ethereum smart contracts
  • Marco Baldi, Franco Chiaraluce, Emanuele Frontoni, Giuseppe Gottardi, Daniele Sciarroni and Luca Spalazzi. Certificate Validation through Public Ledgers and Blockchains
  • Aniket Kate, Matteo Maffei, Giulio Malavolta and Pedro Moreno-Sanchez SilentWhispers: Enforcing Security and Privacy in Decentralized Credit Networks  

15:00 - 16:00

Panel 3.3

I rischi dell’impiego di tecnologie non sovrane nelle reti e sistemi d’interesse nazionale  e nelle infrastrutture critiche

(modera: Riccardo Ferretti - Panorama Difesa)

Organizza: On. Massimo Artini - Camera dei Deputati

Partecipanti

  • On. Massimo Artini - Vice presidente della Commissione Difesa, Camera dei Deputati
  • Paolo Solferino - CEO Vitrociset
  • Sergio Attilio Jesi - Vice President External Relations di Elettronica
  • Giorgio Mosca – Strategy & Technology Director, Security & Information Systems Division, Leonardo
  • On. Domenico Rossi - Sottosegretario alla Difesa

16:00 16:30

Concluding Remarks

ITASEC17 Extra Events


ITASEC17 features the following extra event in Sala Saraceno:

  • 18 January, 1.30pm-2.30pm (Free Entrance)
    Un programma nazionale di responsible disclosure: Discutiamone insieme
    Organizer: Team per la Trasformazione Digitale (Presidenza del Consiglio dei Ministri)
  • 18 January, 3.00 pm-4.30 pm (By Invitation Only)
    Digital Identity: the way ahead
    Organizer: Alessandro Armando (Università di Genova and FBK)
  • 19 January, 12.00pm-1.00pm (By Invitation Only)
    Roadshow Sole24ore
    Organizer: Roberto Baldoni (Università di Roma, Sapienza)
  • 19 January, 1.00pm-2.00pm (By Invitation Only)
    Riunione Direttori locali Lab Nazionale Cybersecurity
    Organizer: Roberto Baldoni (Università di Roma, Sapienza)
  • 20 January, 1.00 pm-2.00 pm (Free Entrance)
    FilieraSicura Project Presentation
    Organizer: CISCO e CINI National Cybersecurity Lab

Download the detailed program of extra events



Download the ITASEC17 Booklet (pdf)

Registration


>> 13 Jan 2017: Registration is SOLD OUT and closed <<

Conference structure

ITASEC17 will include two main Spaces: a Stakeholder Space and a Scientific/Technical Space, both spanning through the whole conference.

The Stakeholder Space will include selected distinguished Keynotes Speeches, Invited Talks, Vision Speeches, and Panels, all presented in the San Giobbe Aula Magna from January 18th to 20th, and the Tutorial: “Framework nazionale per la cybersecurity”, held on January 17th, in Italian, in the Classroom Aula 9A.

The Scientific/Technical Space will in turn include three main tracks: a Scientific Track on Cybersecurity science and technology, a Fil-Rouge Track including a sequence of multidisciplinary sessions on a specific hot topic in Cybersecurity, and a Demo Track devoted to prototypes developed by industries, research centers, and universities. This Space will be located in Aule 10A and 10B, next to San Giobbe Aula Magna.

Registration policy

Registration is mandatory and the access to the conference place will be granted to registered people, only.

Note: At least one author for each accepted paper in one of the conference tracks will have to cover a FULL Conference registration. For authors with multiple accepted papers one FULL Conference registration per accepted paper will be required.

The following Registration alternatives are available:

  • FULL Conference registration
    • It includes:
      • Full access to ALL the events of both Stakeholder Space and Scientific/Technical Space for the whole Conference
      • Conference bag
      • Conference proceedings (available on USB stick on-site)
      • Lunches
      • Coffee Breaks
    • Costs:
      • 300 € : Until Dec. 31st
      • 500 € : From Jan 1st to Jan 12th
      • 700 € : On-site

  • FULL Conference registration (for Sponsors, only)
    • It includes:
      • Full access to ALL the events of both Stakeholder Space and Scientific/Technical Space for the whole Conference
      • Conference bag
      • Conference proceedings (available on USB stick on-site)
      • Lunches
      • Coffee Breaks
      • Social Dinner on Thursday 19th at Hotel Monaco
    • Costs:
      • Free of charge

  • STUDENT FULL Conference registration
    • It includes:
      • Full access to ALL the events of both Stakeholder Space and Scientific/Technical Space for the whole Conference
      • Conference bag
      • Conference proceedings (available on USB stick on-site)
      • Lunches
      • Coffee Breaks
    • It does NOT include:
      • Social Dinner on Thursday 19th at Hotel Monaco
    • Costs:
      • 200 € : Until Dec. 31st
      • 300 € : From Jan 1st to Jan 12th
      • 400 € : On-site

  • ONE-DAY FULL Conference registration
    • It includes:
      • Full access to the events of both Stakeholder Space and Scientific/Technical Space of the chosen day
      • Conference booklet
      • Lunch of the chosen day
      • Coffee Breaks of the chosen day
    • It does NOT include:
      • Social Dinner on Thursday 19th at Hotel Monaco
    • Costs:
      • 90 € : Until Dec. 31st
      • 110 € : From Jan 1stto Jan 12th
      • 150 € : On-site

  • ONE-DAY Stakeholder Space, only, registration
    • It includes:
      • Full access to the events of the Stakeholder Space, only, of the chosen day
      • Coffee Breaks
    • It does NOT include:
      • Access to the events of the Scientific/Technical Space
      • Lunch Ticket
      • Social Dinner on Thursday 19th at Hotel Monaco
    • Costs:
      • Free of charge

  • Lunch Ticket : 35 € (not purchasable on-site)

  • Social Dinner Ticket : 115 € (purchasable until Jan 18th)

Contacts


Please download our sponsorship package for details about the available sponsorship plans. Should you have any question, please contact us by email at

Organization

[email protected]

Sponsorships

[email protected]

Platinum Sponsors




Gold Sponsors




Silver Sponsors

Organization and support