The cybersecurity aspects of critical infrastructure systems has become a hot topic for countries all across the globe. Information Technology has become pervasive in all aspects of our lives and this includes elements referred to as critical infrastructures. This minitrack examines aspects associated with the security of information technology used by governments and critical infrastructures (with an emphasis on automated control systems) and explores ways that IT can enhance the ability of governments to ensure the safety and security of its citizens. The names for these systems vary, from industrial control systems to SCADA to process control networks and more.  The systems they control range from electricity (Smartgrid), pipelines, chemical plants, manufacturing, traffic control and more.  If a computer is interfaced to a physical system and it is important for safety or process control, odds are it fits in this minitrack.

Governments have also embraced IT to interface with citizens in a more efficient manner. Security issues have risen to the forefront as a result of data disclosures and identity theft incidents discussed in mainstream media.  Other issues include intellectual property theft and criminal acts involving computers. Although 85% of the US critical infrastructure components are privately owned and operated, government has a place at the table regarding regulation and operating rules. Many foreign governments have more control over their infrastructure, but in the end, security is still an important topic that needs to be addressed. Topics acceptable to this minitrack can range from technical, to process, to people-related as security is a result of these main topics working together.

Topics and research areas include, but are not limited to:

1. -Systems for governments to respond to security events
   

2. -Critical Infrastructure Protection (CIP)
   

3. -Cyber Physical Systems security
   

4. -Supervisory Control and Data Acquisition (SCADA)  and control systems
   

5. -Information Assurance and Trusted Computing
   

6. -Security Related Information Sharing
   

7. -Information Security Economics
   

8. -Information Warfare
   

9. -Incident Response
   

10. -Digital Forensics
    

11. -Privacy and Freedom of Information
    

12. -Security Management
    

13. -Laws and Regulation of IT Security
    

14. -Security concerns of new technologies, e.g. Social Media, mobile computing
    

15. -Government Disaster Recovery and Business Continuity
    

16. -Case Reports Related to Security Experiences Within Government
    

More co-chair information

Rayford B. Vaughn, Jr. received his Ph.D. from Kansas State University in 1988.  He is one of twelve William L. Giles Distinguished Professors at Mississippi State University where he conducts research in the areas of Software Engineering and Information Security.  Prior to joining the University, he completed a twenty-six year career in the US Army retiring as a Colonel in 1995 and three years as a Vice President of DISA Integration Services, EDS Government Systems.   Dr. Vaughn has over 100 publications to his credit, has obtained more than $15M in funded research projects, and is an active contributor to software engineering and information security conferences and journals.  In 2004, Dr. Vaughn was named a Mississippi State University Eminent Scholar and in 2008 he was named Mississippi State University’s most outstanding faculty member.   He is the current Director of the MSU Center for Critical Infrastructure Protection and the Center for Computer Security Research.  In 2009 he was designated the Department Head for Computer Science and Engineering and in 2010 became the Associate Vice President for Research at MSU.

Gregory B. White, PhD, is the Director of the Center for Infrastructure Assurance and Security at The University of Texas at San Antonio.  He has been involved in computer security for over 20 years and has published extensively on the subject.  His research interests currently include community cyber security, security visualization, mini-botnet detection and eradication, and critical infrastructure protection.  He is the creator of the Community Cyber Security Maturity Model (CCSMM) and is also involved in security competitions at both the collegiate and high school levels

Wm. Arthur Conklin, PhD, is an Associate Professor and Director of the Center for Information Security Research and Education in the College of Technology at the University of Houston.  He holds two terminal degrees, a Ph.D. in Business Administration (specializing in Information Security), from The University of Texas at San Antonio (UTSA) and the degree Electrical Engineer (specializing in Space Systems Engineering) from the Naval Postgraduate School in Monterey, CA.  He holds a variety of security certifications including Security+, CISSP, CSSLP, CSDP, CRISC, DFCP, IAM and IEM. His research interests include the use of systems theory to explore information security, specifically in Cyber Physical Systems.  He has co-authored six security books and numerous academic articles associated with information security. Currently he is working on Smart Grid grants from DOE in the area of workforce development and training.  He has an extensive background in secure coding and is a co-chair of the DHS/DoD Software Assurance Forum working group for workforce education, training and development.  He is active in the DHS sponsored Industrial Control Systems Joint Working Group (ICSJWG) efforts associated with workforce development and cybersecurity aspects of industrial control systems.  A senior member of several professional societies including ISSA, IEEE, ISACA and is a Fellow of National Board of Information Security Examiners.