SIGSAC Annual Report

July 1996 - June 1997
Submitted by: Ravi Sandhu, SIGSAC Chair

SIGSAC continues to forge ahead in establishing leadership in the Information and Systems Security community. This annual report outlines accomplishments of the past year and future plans.


SIGSAC's flagship conference, the ACM Conference on Computer and Communications Security, was created in 1993. It was held in November 1993 and November 1994 in Fairfax, Virginia, in March 1996 in New Delhi, India and in April 1997 in Zurich, Switzerland. From its inception this conference has established itself as among the very best research conferences in security. This reputation continues to grow.

The conference is expected to move around internationally for which it has already established a track record. The conference organizers have recruited volunteers from North America, Europe, Asia and Australia to establish a base of active participants who can help organize the conference all over the planet. Current plans are to hold the conference in the November timeframe with target sites as San Francisco in 1998, Athens, Greece in 1999, and Singapore in 2000.

In summary SIGSAC now has a well-recognized flagship conference which is international in participation and venue. This is a considerable accomplishment for SIGSAC, achieved in a matter of a few years.


In 1995 SIGSAC created the new ACM Workshop on Role-Based Access Control in collaboration with the National Institute of Standards and Technology (NIST). The first workshop was held at NIST in Gaithersburg, Maryland, November 30 - December 1, 1995. This series of workshops seeks to promote the use and standardization of RBAC. Interest in RBAC has grown dramatically in the past few years as the inadequacies of the classical discretionary and mandatory access control approaches become increasingly evident. The second workshop will be held in November 1997 in Fairfax, Virginia.

SIGSAC's vision is to develop specialized workshops of this kind to provide technical leadership in addition to its flagship conference.

The annual New Security Paradigms Workshop, started in 1992, is another specialized workshop sponsored by SIGSAC. The sixth workshop will be held in September 1997 in Newcastle-upon-Tyne in the UK. This is the first time this going out of the US.


SIGSAC approved the creation of a new Workshop on Education in Computer Security in 1996. The first Workshop was held in January 1997 in Monterey, California. This workshop is important in establishing a presence for SIGSAC in the education arena.


SIGSAC has been instrumental in creating the new ACM Transactions on Information and System Security (TISSEC). TISSEC's first issue is scheduled for the first quarter of 1998. We anticipate close ties between TISSEC and SIGSAC in future.


Cathy Meadows has done a superb job in publishing the SIGSAC Review in a timely manner.


SIGSAC continues to support the Computer Security Day.




A reinvigorated SIGSAC has established itself as a technical leader in the Information and System Security arena. SIGSAC emerged from a period of relative dormancy under the leadership of Daniel Faigin (SIGSAC Chair, 1991-95). SIGSAC has a strong flagship conference (established 1993) and two specialized workshop series with others anticipated in future. SIGSAC has been instrumental in creating a new ACM Transactions on Information and System Security. In conclusion, SIGSAC is providing strong technical leadership to the community and is developing a cadre of volunteers from which future leadership will emerge.

Back to SIG Board Report Back to SIGSAC Page
To ACM Page