Mobile devices such as smartphones and Internet tablets have achieved computing and networking capabilities comparable to traditional personal computers. Their successful consumerization has also become a source of pain for adopting users and organizations. For example, the widespread presence of information-stealing applications raises substantial security and privacy concerns. The operating systems supporting these new devices have both advantages and disadvantages with respect to security. On one hand, they use application sandboxing to contain exploits and limit privileges given to malware. On the other hand, they routinely collect and organize many forms of security- and privacy-sensitive information and make that information easily accessible to third-party applications.

Recognizing smartphone security and privacy as an emerging area, this workshop intends to provide a venue for interested researchers and practitioners to get together and exchange ideas. Topics of interest include (but are not limited to) the following subject categories:

Device/hardware security
OS/middleware security
Application security
Authenticating users to devices and services
Mobile web browsers
Usability
Privacy
Rogue application detection and recovery
Vulnerability detection and remediation
Secure application development
Cloud support for mobile security
Mobile device management
Mobile ads
Dual persona management and isolation
We also encourage novel paradigms and controversial ideas that are not on the above list. The workshop is to act as a venue for creative debate and interaction in security- and privacy-sensitive areas of computing and communication impacted by smartphones. We will favor submissions that are radical, forward-looking, and open-ended, as opposed to mature work on the verge of conference or journal publication. Submissions that discuss a real-world problem without a solution are encouraged.

Important Dates

Manuscript submission Wednesday, July 27, 2016 (11:59 PM Samoa Time UTC-11)
Acceptance notification Friday, September 2, 2016
Final manuscript due Tuesday, September 13, 2016
Workshop date Monday, October 24, 2016
Submissions

Authors are invited to submit either

Full papers (8-10 pages including references) that present relatively mature research results on security and privacy in smartphones and mobile devices;
Short papers (4-6 pages including references) that define new problems in security and privacy related to smartphones and mobile devices, or provide inspiring visions; or
Discussion panel proposals (4-6 pages including references) that include a proposed topic and list of panel members who are willing to attend and participate.
Submissions must be in double-column ACM format (available at the ACM Website) with a font no smaller than 9 point. Only PDF files will be accepted. Submissions need to have their pages numbered and should not substantially overlap with papers that have been published or that are simultaneously submitted to a journal or a conference with proceedings. All authors and their affiliations must be listed. Each accepted paper must be presented by one registered author. Submissions not meeting these guidelines risk rejection without consideration of their merits. Accepted papers will be published by the ACM Press and/or the ACM Digital Library.

The submission website is SPSM 2016 in Easychair.

Organizing Committees

Program Co-chairs

Long Lu, Stony Brook University
Mohammad Mannan, Concordia University
Technical Program Committee

Konstantin Beznosov, University of British Columbia
Mihai Christodorescu, Qualcomm Research Silicon Valley
Jeremy Clark, Concordia University
Lucas Davi, Technische Universität Darmstadt
Manuel Egele, Boston University
Ragib Hasan, University of Alabama at Birmingham
Urs Hengartner, University of Waterloo
Suman Jana, Columbia University
Xiapu Luo, Hong Kong Polytechnic University
Ian Molloy, IBM TJ Watson Research Center
Muhammad Naveed, University of Southern California
Damien Octeau, University of Wisconsin-Madison
Xinming Ou, University of South Florida
Sebastian Porst, Google
Ahmad-Reza Sadeghi, Technische Universität Darmstadt
Kapil Singh, IBM TJ Watson Research Center
Julie Thorpe, University of Ontario Institute of Technology
Tao Wan, Huawei, Canada
Glenn Wurster, BlackBerry
Mingyuan Xia, McGill University
Xiaoyong Zhou, Samsung Research America
Yajin Zhou, Qihoo 360
Steering Committee

N. Asokan, Aalto University and University of Helsinki
William Enck, North Carolina State University
Xuxian Jiang, North Carolina State University
Patrick Traynor, University of Florida