SECTION TITLE The IEEE Symposium on Security and Privacy, in Retrospect Peter G. Neumann | SRI International Sean Peisert | Lawrence Berkeley National Laboratory and University of California, Davis Marvin Schaefer T racing the history of computer security and pri- vacy is a mammoth undertaking, somewhat resembling efforts to combine archaeology and ethnol- ogy with a compendium of past and foreseen risks— and how different courses of history might have affected those risks in different ways. (For example, the Univer- sity of Minnesota’s NSF-funded collection of oral his- tories from influential people in this area is a wonderful effort to capture some this information; https://wiki. umn.edu/CBI_ComputerSecurity/WebHome.) Tracing the history of the IEEE Symposium on Secu- rity and Privacy (SSP), the longest-running computer security research meeting, is considerably easier—and quite relevant to the somewhat shorter history of IEEE Security & Privacy magazine. Indeed, a previous article written for the proceedings of the 31st SSP did exactly that, 1 so it seems unnecessary to duplicate it here. Instead, we focus more on SSP’s evolution and its vital relevance to the research and development com- munities along its path from a community gathering to premier security research meeting. We highlight some of the technological and engineering paradigms that SSP either stimulated or were reflected in intense dis- cussions that ensued, and also to some extent SSP’s potential impact on the world at large. Early Days SSP began in 1980 as the result of Stan Ames and George Davida wanting to hold a meeting with a few practitio- ners and others interested in security and privacy. That May/June 2014 first gathering attracted 50 people who were all seri- ously involved in the field in one way or another. It was more like the traditional notion of a workshop, rather than the modern ACM/IEEE/Usenix notion of a work- shop as a small conference. Initially with invited papers and panels, this informal setting morphed into calls for papers and then into active discussions of beliefs, appar- ent progress, and known open problems and challenges. There were few distractions in SSP’s early years at the Claremont Resort (whose front door is in Oakland and back door in Berkeley). Over 31 years, SSP grew in depth, breadth, and organizational structure, with a mix of practical and academic participants, papers, panels, and occasional invited talks. In 2012, with the number of attendees having outgrown the Claremont fire laws, the symposium moved to San Francisco, with more than 450 people attending in 2013, despite restricted travel budgets and related factors. With attendance approaching 500, the symposium outgrew even the St. Francis in San Francisco. Now, it’ll be held in San Jose, California—at least, in 2014 and 2015. SSP’s early participants genuinely thought they were on track to find solutions to the computer security problem—until reality and justifiable cynicism entered the picture. When worked examples began to be avail- able for study, recognition of the costs of security (effi- ciency, features, and sufficiency), and “new” discoveries (Shannon, Turing, Dijkstra, and Hoare) deepened the recognition that applications and experimental trends were just as important as theoretical research. Copublished by the IEEE Computer and Reliability Societies 1540-7993/14/$31.00 © 2014 IEEE