Submission topics include but are not limited to:

Vulnerability research
Offensive applications of formal methods (solvers, symbolic execution)
Practical attacks on deployed cryptographic systems and kleptography
Offensive aspects of mobile security (including location, payments, and RF)
Attacks on content protection and DRM
Hardware attacks and attacks on the "Internet of Things"
Internet-scale network reconnaissance
Application security (web frameworks, distributed databases, multi-factor authentication)
Malware design, implementation and analysis
Vulnerabilities in browser and client-side security (runtimes, JITs, sandboxing)
Mass surveillance and attacks against privacy