CALL FOR PAPERS The 5th ACM Workshop on Formal Methods in Security Engineering: From Specifications to Code held in conjunction with the ACM CCS'07 November 2, 2007, George Mason University, USA [http://www.fmis.informatik.tu-darmstadt.de/fmse07/] Information security has become a crucial concern for the commercial deployment of almost all applications and middleware. Although this is commonly recognized, the incorporation of security requirements in the software development process is not yet well understood. The deployment of security mechanisms is often ad hoc, without a formal security specification or analysis, and practically always without a formal security validation of the final product. Progress is being made, but there remains a wide gap between high-level security models and actual code development. We aim to bring together researchers and practitioners from both the security and the software engineering communities, from academia and industry, who are working on applying formal methods to the design and validation of large-scale systems. We seek original research papers addressing foundational issues in formal methods in security engineering. Topics covered include, but are not limited to: + security requirements and risk analysis + access control models, information flow models, and trust models + specification and analysis of security properties + stepwise development by refinement and composition + computationally sound abstraction + program logics and type systems for security + other techniques for verification and static analysis + tool support for the development and analysis of security-critical systems + design and analysis of security protocols + security aspects of operating systems and middleware + case studies All submissions will be peer-reviewed. Authors of accepted papers must guarantee that their paper will be presented at the workshop. Final proceedings will be published by the ACM. Submissions must be received by Sunday June 10, 2007 to be considered. For submitting a paper, follow the guidelines on the FMSE'07 webpage at http://www.fmis.informatik.tu-darmstadt.de/fmse07/ . Submissions must not substantially overlap with papers that have been published or that are simultaneously submitted to a journal or a conference with proceedings. The article must list all authors and their affiliations. It should begin with a title, a short abstract, and a list of key words, and its introduction should summarize the contributions of the paper at a level appropriate for a non-specialist reader. The submitted paper should be at most 12 pages excluding the bibliography and clearly marked appendices, and at most 15 pages in total, using at least 11-point font, reasonable margins, and page numbers on each page. Committee members are not required to read appendices; the paper should be intelligible without them. The document must be in Acrobat PDF format, and must be legible after printing on standard grayscale printers, both those that use A4 and those that use 8-1/2x11" paper. Submissions not meeting these guidelines risk rejection without consideration of their merits. Camera-ready versions of accepted papers will be limited to 10 pages in total using the ACM conference style. Program Chairs Virgil D. Gligor (University of Maryland, USA) Heiko Mantel (TU Darmstadt, Germany) Program Committee Michael Backes (Saarland University, Germany) Gilles Barthe (INRIA Sophia-Antipolis, France) Véronique Cortier (CNRS & LORIA Nancy, France) Anupam Datta (CMU, USA) Amy Felty (University of Ottawa, Canada) Andy Gordon (Microsoft Research Cambridge, UK) Joshua Guttman (MITRE, USA) Peeter Laud (Tartu University, Estonia) Fabio Martinelli (IIT Pisa, Italy) Cathy Meadows (NRL, USA) Jon Millen (MITRE, USA) David Naumann (Stevens Institute of Technology, USA) Vitaly Shmatikov (University of Texas at Austin, USA) Luca Viganò (University of Verona, Italy) Important dates: Submission deadline: June 10, 2007 Notification of acceptance: July 25, 2007 Final version (firm): August 22, 2007 Workshop: November 2, 2007 Workshop webpage: http://www.fmis.informatik.tu-darmstadt.de/fmse07/