This tutorial gives the audience an understanding of how the Web works, and how its complex protocols and technologies make the Web useful and interactive but expose users to a wide variety of security threats. The tutorial covers threats at the Web server, Web browser, and TCP/IP connection. The audience will gain an understanding of best practices to minimize risks to privacy and security, and an appreciation for current research efforts to improve Web security.

Thomas M. Chen is a professor in networks in the School of Engineering at Swansea University, Wales, UK, since May 2008. From 1997 to 2008, he was an associate professor in the Department of Electrical Engineering at Southern Methodist University in Dallas, Texas. He received the BS and MS degrees in electrical engineering from the Massachusetts Institute of Technology in 1984, and the PhD in electrical engineering from the University of California, Berkeley, in 1990. He was formerly editor-in-chief of IEEE Communications Magazine (2006-2007) and founding editor-in-chief of IEEE Communications Surveys, and currently serves as editor-in-chief for IEEE Network, senior technical editor for IEEE Communications Magazine, technical editor for IEEE Press, editor for Journal of Security and Communication Networks, and editor for International Journal on Security and Networks. He is the co-author of ATM Switching Systems (Artech House, 1995) and co-editor of Broadband Mobile Multimedia: Techniques and Applications (CRC Press, 2008). He received the IEEE Communications Society’s Fred Ellersick best paper award in 1996 (for further information visit http://lyle.smu.edu/~tchen/).

The e-Health is virtually associated with providing and receiving healthcare services. The wide range of hardware and software used has led to inability to secure patients’ information. No system in the world can be a hundred percent fail-safe, as there is always a chance that hardware or software may fail at some stage and if the failure is not managed properly, it can cause disruption throughout an organization. With reference to the importance of patients’ data to the activities of all parts of healthcare spectrum, this tutorial will question the boundary issues of e-Health in relation to secured transactions.

The purpose of this tutorial is to address the current e-Health security issues in relation to hardware and software.  While every effort has been made to test a system and to make sure that there are no unexpected errors, no hardware or software can provide hundred percent guarantee of any transaction. However, the best way forward is to mitigate the possible security risks. Therefore, this tutorial will engage participants in discussion and proposed solutions.

Grids promote the publication, sharing, access and integration of huge amount of scientific data, distributed across Virtual Organizations and related to several scientific domains. While grid storages, replica services, storage resource managers, etc. provide a strong support concerning file management, grid-database and grid-metadata services address a fine grained approach related to access, management and integration of relational and non-relational databases. In the proposed tutorial we will talk about grid database management. In particular we will present the GRelC Project (EGEE RESPECT tool) as well as a GRelC use case concerning climate metadata management at the Euro-Mediterranean Centre for Climate Change (CMCC).

This tutorial gives the audience a complete understanding about grid database management and in particular disccusses how relational and non-relational databases can be accessed, integrated and managed in grid via the GRelC service. The tutorial presents both general purpose concepts and a domain-oriented use case: the Euro-Mediterranean Centre for Climate Change (CMCC) Grid Metadata Handling System (GMHS). So, while the first part will introduce basic concepts about grid database management (security, database virtualization in grid, performance and interoperability issues, etc.) the second one, domain-specific, will present a concrete use case about a climate change scenario discussing climate metadata management, metadata schema, data and metadata distribution issues, data portals, etc.