This site graciously hosted
by our friends at




Secure Coding Conferences

The following is a list of conferences (in no particular order) where the focus is on Secure Coding practices and/or contain more than a simple "passing interest" in software security. I've no doubt missed some; if you'd like to add to the list, please let me know via email at Ken@KRvW.com.

  • Software Security Summit - This conference appeared "on the scene" in 2004 and appears to be the only event that is exclusively focused on software security topics. Ken has been a regular speaker at the conference as well. This year's (2006) event will be held on 16-17 April in San Mateo, California. Details can be found at http://www.s-3con.com.

  • ISOC NDSS - The Internet Society (ISOC) sponsors an annual symposium on Network and Distributed System Security (NDSS). The conference is generally held in February in San Diego, CA, USA. It included a session/track on Secure Software. See http://www.isoc.org/isoc/conferences/ndss for details.

  • USENIX - The USENIX organization sponsors several annual conferences that address software security to various degrees. Additional information can be found at http://www.usenix.org/events. Their events include the following:
    • Security Symposium (6-10 August, Boston, MA, USA)
    • Network Systems Design and Implementation (11-14 April, Cambridge, MA, USA)
    • Large Installation System Administration Conference (11-16 November, Dallas, TX, USA)

  • IEEE Symposium on Security and Privacy - The IEEE Computer Society Technical Committee on Security and Privacy sponsors this annual conference. Refer to http://www.ieee-security.org/TC/SP-Index.html for additional details.

  • ACM SIGSAC - The Association for Computing Machinery Special Interest Group on Security, Audit and Control hosts an annual conference on Computer and Communication Security. Refer to http://www.acm.org/sigsac/ccs/CCS2007/index.html for additional details.

  • ACSAC - The Applied Computer Security Associates (ACSA) organization sponsors this annual conference (ACSAC). Refer to http://www.acsac.org for additional details.

  • DSN - The Dependable Systems and Networks (DSN) organization hosts an International Conference on Dependable Systems and Networks. Refer to http://2007.dsn.org/ for additional details.

  • AusCERT - The Australian Computer Emergency Response Team (AusCERT) sponsors an annual Asia Pacific Information Technology Security Conference. The event is generally held during May on the Gold Coast of Australia. Refer to http://conference.auscert.org.au/conf2007 for additional details.

  • TechnoSecurity - The Training Company hosts an annual conference on IT security. It is held jointly with the Computer and Enterprise Investigations Conference. Refer to http://www.thetrainingco.com/html/Techno2007Agenda.html for additional details.

Site Contents Copyright (C) 2002-2004 Mark G. Graff and Kenneth R. van Wyk. All Rights Reserved.
webmaster@securecoding.org