IWCSEC 2022

International Workshop on Continuous Software Evaluation and Certification (IWCSEC 2022)

to be held in conjunction with the 17th International Conference on Availability, Reliability and Security
(ARES 2022 – http://www.ares-conference.eu)

August 23 – August 26, 2022

The last few years have seen rapid changes in how software products are managed. Specifically, development processes are now governed by fast-paced development and rapid software upgrades. Risk analysis and certification techniques have therefore become of paramount importance in order to react promptly to these rapid software updates. The goal of the IWCSEC workshop is to bring together industry and research experts and to provide a venue to present and discuss new developments in defining protocols for verification and continuous re-certification of the developed software. This workshop also encourages the submission of cross-disciplinary papers that combine topics in privacy management, cybersecurity, and applications. The main goal is to provide a common place to discuss relevant research to speed up future developments on the topics presented.

This workshop is supported by the European Union’s Horizon 2020 Assurance and certification in secure Multi-party Open Software and Services (AssureMOSS) Project. AssureMOSS wants to respond to the most recent trends and needs expressed by the reference sector by supporting all phases of the continuous software lifecycle (Design, Develop, Deploy, Evaluate and back) through an open-source approach and mechanisms for lightweight and scalable screenings applicable automatically to the entire population of software components.

Topics include, but are not limited to

Continuous Security Evaluation and Certification of Software
Security Assurance Techniques
Automatic Code Vulnerability Detection and Repairs
Design and Model Extraction from Code
Run-time Profiling and Monitoring of Deployed Services
Risk Analysis and Management

Designing Security Requirements
Incident Response and Prevention
Security and Privacy by Design
Intrusion Detection and Fraud Detection
Process-based Security Models and Methods
Threats and Attack Modelling
Artificial Intelligence and Machine Learning for Source Code Analysis

Important Dates
Submission Deadline May 01, 2022 May 15, 2022
Author Notification June 01, 2022
ARES EU Symposium August 23, 2022
Conference August 23 – August 26, 2022
PROGRAM Chairs

Maura Pintor
Pluribus One s.r.l., Italy
University of Cagliari, Italy
maura.pintor@pluribus-one.it

Giuseppe Avigliano
EY Advisory S.p.A., Italy
giuseppe.avigliano@it.ey.com

Somik Chakravarty
EU-VRi – European Virtual Institute for Integrated Risk Management, Germany
schakravarty@risk-technologies.com

Péter Hegedűs
FrontEndART Szoftver Kft., Hungary
peter.hegedus@frontendart.com

Programm Committee

Iacopo De Angelis, EY Advisory S.p.A., Italy
Luca Demetrio, Pluribus One s.r.l. and University of Cagliari, Italy
Judit Jász, FrontEndART Szoftver Kft., Hungary
Alessandro Marchetto, University of Trento, Italy
Ákos Milánkovich, SEARCH-LAB Ltd., Hungary
Riccardo Scandariato, Institute of Software Security Hamburg University of Technology (TUHH), Germany
Georg Simhandl, University of Vienna, Austria
Angelo Sotgiu, Pluribus One s.r.l. and University of Cagliari, Italy
Niccolò Togni, SAP, France
Katja Tuma, Vrije Universiteit Amsterdam (VU Amsterdam), Netherlands
Uwe Zdun, University of Vienna, Austria

Submission

The submission guidelines valid for the workshop are the same as for the ARES conference. They can be found at https://www.ares-conference.eu/conference/submission/.

ARES 2022 will be published by the International Conference Proceedings Series published by ACM (ACM ICPS).