posted by user: kommy || 7567 views || tracked by 21 users: [display]

STPSA 2013 : The 8th IEEE International Workshop on Security, Trust and Privacy for Software Applications


When Jul 22, 2013 - Jul 26, 2013
Where Kyoto, Japan
Submission Deadline Apr 3, 2013
Notification Due Apr 26, 2013
Final Version Due May 5, 2013
Categories    security   computer science

Call For Papers


The 8th IEEE International Workshop on Security, Trust, and Privacy for Software Applications (STPSA 2013) Held in conjunction with COMPSAC, the IEEE Signature Conference on Computers, Software, and Applications


July 22-26, 2013
Kyoto, Japan

This workshop will bring together researchers from both academia and industry to discuss methods and tools to achieve security, trust, and privacy (STP) goals of both traditional and emerging Web-based software applications. The workshop will focus on techniques, experiences, and lessons learned with respect to the STP aspects of software specification, design, implementation, testing, and deployment.

The Internet has become an indispensable global platform that glues together daily communication, sharing, trading, collaboration, and service delivery using software applications. This is a witness that our society is increasingly dependent on software applications. Internet users often store and manage critical information that can attract cyber-criminals who misuse web-based programs and the Internet to exploit vulnerabilities for illegitimate benefits (such as for underground economy, violating privacy, etc.). Malicious programs are taking an alarmingly significant share of web-based attacks to evade the Security, Privacy, and Trust (STP) of software applications, and hence end-users. As noted also in several security incidents, this situation has been amplified by recent technological developments such as cloud computing, pervasive computing, mobile devices, by making the distrusted Internet an integral component of software applications. As such, the traditional host-based approaches (e.g., antivirus, firewall) to securing a software application alone are no longer sufficient to address the STP issues of such emerging software applications. The STP issues must be addressed throughout the lifecycle of a software application, including its design, implementation, testing, and deployment. The principal challenge of existing approaches in developing STP-aware software is the lack of consideration, methods, and tools for addressing STP issues during the software development processes and runtime operations.

Topics of interest include, but are not limited to, the following:

* STP specific software development practices
* STP requirements elicitation and specification
* Models and languages for STP-aware software specification and design
* Architecture for STP-aware software development
* Testing STP properties of software applications
* Formal analysis of STP properties in emerging software applications
* Runtime monitoring of STP properties
* STP configuration, management and usability issues in software applications
* Security, trust, and privacy (STP) challenges and solutions in Web-based applications
* STP challenges and solutions in Cloud computing applications
* STP challenges and solutions in pervasive applications
* STP challenges and solutions in mobile applications
* STP challenges and solutions in e-services such as e-health, e-government, e-banking, etc
* STP challenges and solutions in distributed or sensor-based software applications
* STP-aware service discovery mechanisms for pervasive computing environments
* Experience reports on developing STP-aware software
* Teaching STP-aware software development


March 20, 2013: Workshop paper submission
April 21, 2013: Workshop paper author notification
May 5, 2013: Camera-ready & author registration


Papers must be submitted electronically via the STPSA 2013 Submission Page once it becomes available. Follow the IEEE Computer Society Press Proceedings Author Guidelines to prepare your papers: All papers will be carefully reviewed by at least three reviewers. Papers can be submitted as regular papers (six pages), and the acceptance will depend on reviewer feedback. Accepted papers will be published in the workshop proceedings of the IEEE Computer Software and Applications Conference (COMPSAC 2013) by the IEEE CS Press. At least one of the authors of each accepted paper or fast abstract must register as a full participant of the workshop to have the paper or fast abstract published in the proceedings. Each accepted paper must be presented in person by an author.


Program Chairs:

Lingyu Wang
Concordia Institute for Information Systems Engineering
Concordia University
Montreal, Quebec, Canada H3G1M8

Komminist Weldemariam
School of Computing
Queen’s University
Kingston, Ontario, Canada

Program Committee:

Stephan Eidenbenz Los Alamos National Laboratory, USA
Chunfu Jia Nankai University, China
Mattia Monga Università degli Studi di Milano, Italy
Makan Pourzandi Ericson, Canada
Kui Ren Illinois Institute of Technology, USA 
Hossain Shahriar Kennesaw State University, USA
George Yee Carleton University, Canada
Lorenzo Cavallaro Royal Holloway, University of London, UK
Karthik Pattabiraman University of British Columbia, Canada
Mariano Ceccato Fondazione Bruno Kessler, Italy


For updated information, please contact Lingyu Wang (wang (at) or Komminist Weldemariam (weldemar (at)

Related Resources

MSR4P&S 2024   2nd International Workshop on MSR Applications for Privacy and Security
IEEE Xplore-Ei/Scopus-CSPIT 2023   2023 Asia Conference on Communications, Signal Processing and Information Technology (CSPIT 2023) -EI Compendex
Security 2025   Special Issue on Recent Advances in Security, Privacy, and Trust
IEEE Xplore-Ei/Scopus-DMCSE 2023   2023 International Conference on Data Mining, Computing and Software Engineering (DMCSE 2023) -EI Compendex
RTME 2024   9th International Conference on Recent Trends in Mechanical Engineering
IEEE Xplore-Ei/Scopus-CACEE 2023   2023 International Conference on Automation, Control and Electronics Engineering (CACEE 2023) -EI Compendex
IEEE S&P 2024   The 45th IEEE Symposium on Security and Privacy (Third Deadline)
ICDM 2024   24th Industrial Conference on Data Mining
CODASPY 2024   The 14th ACM Conference on Data and Application Security and Privacy
NLDML 2024   3rd International Conference on NLP, Data Mining and Machine Learning