ARES emphasises the interplay between foundations and practical issues of dependability in emerging areas such as e-government, m-government, location-based applications, ubiquitous computing, autonomous computing, chances of grid computing etc.
The paper “Combining misuse cases with attack trees and security activity diagrams” were presented. SHIELDS concepts and the repository were introduced and used to explain how security knowledge can be reused. The focus of the presentation was related to how threat models can be combined and linked to models that shows how security problems can be countered.
ARES brings together researchers and practitioners in the area of dependability and aims at a full and detailed discussion of the research issues of dependability as an integrative concept that covers amongst others availability, safety, confidentiality, integrity, maintainability and security in the different fields of applications.

The SERENITY Day will introduce the SERENITY model of secure and dependable systems and will show how it supports the creation of secure and dependable systems for these new computing paradigms. Additionally we will present the SERENITY integrated engineering processes as the backbone of a new security engineering discipline.

ACSAC is an internationally recognised forum where practitioners, researchers, and developers in information system security meet to learn and to exchange practical ideas and experiences. ACSAC focus on practical solutions to real security problems.
Presentation of the SHIELDS approach (Share and Reuse of Security Models) was given at the WiP-session (Work in Progress).
http://www.acsac.org/2008/program/wip/
The feedback on the presentation was good. Established contact with TeliaSonera that may be an interesting partner in future projects.

DS-RT 2008 serves as a forum for simulationists from academia, industry and research labs, for presenting recent research results in Distributed Simulation and Real Time Applications. DS-RT 2008 targets the growing overlap between large distributed simulations and real time applications, such as collaborative virtual environments.
The paper "Modeling System Security Rules with Time Constraints Using Timed Extended Finite State Machines", by W. Mallouli, A. Mammar and A. R. Cavalli will be presented at the conference. Security concepts presented here are at the basis of the work developed in SHIELDS.
The paper "Two Complementary Tools for the Formal Testing of Distributed Systems with Time Constraints", by Ana R. Cavalli, Edgardo Montes De Oca, Wissam Mallouli, Mounir Lallali, will be presented at the conference. The tools presented in this paper are part of the work on tools development performed in SHIELDS.

Enredando is a divulgative show at Euskadi Digital, a radio station specialised in topical computer related subjects, which tries to bring to the general audience some security related information. The purpose of the presentation is presenting the project to the general audience.
Has published online in a podcast October 20th in http://enredando.euskadigital.com
SHIELDS Project objectives and position were presented and future results summary description was given. All this information was extracted from the Project Brochure and Description of Work.
From Enredando all SHIELDS partners are invited to record another program with them. Even the main language of the radio is in Spanish, an event in English can be held, even by Skype meeting.

TAROT (Training And Research On Testing) is a network created to foster the mobility of students, faculty members and research scientists working in the field of testing of software and communication systems. This summer school brings together lecturers, researchers, students and people from the industry across Europe for one week of presentations, discussions and getting to know each other.
The main goal of the TAROT Summer School is to give researchers and particularly Ph.D. students the opportunity to follow a number of tutorials or invited talks by key experts in the field.
The TAROT Summer School is open to researchers from any institution in the world, working in the area of testing, both from academia and industry.
In this summer school, the formal approach developed by GET to test security rules including timed aspects is presented. Basically, algorithms to integrate timed security rules into an initial functional specification of a system are described. The global formal specification is then used to generate test scenarios to check the conformance of a possible implementation of the underlying system.

The goal of this workshop on security testing is to provide a forum for practitioners and researchers to exchange ideas, perspectives on problems, and solutions.
Inger Anne Tøndel presented the paper “Learning from Software Security Testing”, which is based on work done prior to SHIELDS, but showing how SHIELDS has the potential to solve some of the issues not addressed in the work presented in the paper.

Thesis No. 1353 – Linköping Studies in Science and Technology
The thesis presents a model for secure software development and implementation of a security plug-in that deploys this model in software life cycle. The model is a structured unified process, named S3P (Sustainable Software Security Process) and is designed to be easily adaptable to any software development process. By introducing Vulnerability cause graphs and security activity graphs, S3P provides the formalism required to identify the causes of vulnerabilities and the mitigation techniques that address these causes to prevent vulnerabilities. The thesis also presents a prototype of the security plug-in implemented for the OpenUP/Basic development process in Eclipse Process Framework. SHIELDS shares ideas with presented work in the thesis (security modelling by vulnerability cause graphs and security activity graphs is one of the central ideas in SHIELDS).
The thesis is entitled “A Model and Implementation of a Security Plug-in for the Software Life Cycle” and is submitted to Linköping Institute of Technology at Linköping University in partial fulfilment of the requirements for the degree of Licentiate of Engineering.