ESSoS 2016: International Symposium on Engineering Secure Software and Systems 2016

April 6, 2016-April 8, 2016 in London, UK

About the Conference

== Context and motivation == Trustworthy, secure software is a core ingredient of the modern world. So is the Internet. Hostile, networked environments, like the Internet, can allow vulnerabilities in software to be exploited from anywhere. High-quality security building blocks (e.g., cryptographic components) are necessary but insufficient to address these concerns. Indeed, the construction of secure software is challenging because of the complexity of modern applications, the growing sophistication of security requirements, the multitude of available software technologies and the progress of attack vectors. Clearly, a strong need exists for engineering techniques that scale well and that demonstrably improve the software’s security properties.

== Goal and setup == The goal of this symposium, which will be the eighth in the series, is to bring together researchers and practitioners to advance the states of the art and practice in secure software engineering. Being one of the few conference-level events dedicated to this topic, it explicitly aims to bridge the software engineering and security engineering communities, and promote cross-fertilization. The symposium will feature two days of technical program including two keynote presentations. In addition to academic papers, the symposium encourages submission of high-quality, informative industrial experience papers about successes and failures in security software engineering and the lessons learned. Furthermore, the symposium also accepts short idea papers that crisply describe a promising direction, approach, or insight.

== Topics == The Symposium seeks submissions on subjects related to its goals. This includes a diversity of topics including (but not limited to):

  • Cloud security, virtualization for security
  • Mobile devices security
  • Automated techniques for vulnerability discovery and analysis
  • Model checking for security
  • Binary code analysis, reverse-engineering
  • Programming paradigms, models, and domain-specific languages for security
  • Operating system security
  • Verification techniques for security properties
  • Malware: detection, analysis, mitigation
  • Security in critical infrastructures
  • Security by design
  • Static and dynamic code analysis for security
  • Web applications security
  • Program rewriting techniques for security
  • Security measurements
  • Empirical secure software engineering
  • Security-oriented software reconfiguration and evolution
  • Computer forensics
  • Processes for the development of secure software and systems
  • Security testing
  • Embedded software security

Conference Dates

Submissions: October 2, 2015
Notification: December 7, 2015
Event: April 6, 2016-April 8, 2016

Proceedings