--------------------------------------------------------------------------------------------------------- *The 5th International Workshop on Cyber-Security Threats, Trust and Privacy Management in Software-defined and Virtualized Infrastructures* co-located with IEEE NetSoft 2024 24 or 28 June 2024 // St Louis, USA http://www.secsoft-workshop.org/ ------------------------------------------------------------------------------------------------------- *Call for Papers* The 6th International Workshop on Cyber-Security in Software-defined and Virtualized Infrastructures (SecSoft) is a joint initiative from the research projects FLUIDOS, RIGOUROUS, DYNABIC, AI4CYBER, ELECTRON, and SUPERVIZ to create a dialogue about emerging cyber-security paradigms for virtualized environments and critical infrastructures. Link to PDF version of this CfP: http://www.secsoft-workshop.org//SecSoft2024-CfP.pdf *Scope* Evolving business models are progressively reshaping ICT services and infrastructures, with a growing softwarization trend, the massive introduction of virtualization paradigms, and the tight integration with the physical environment. Unfortunately, the evolution of cyber-security paradigms has not followed with the same pace, leading to a substantial gap in solutions capable of protecting the new forms of distributed and heterogeneous systems against an evolving landscape of cyber-threats. Traditional security tools that organizations have long relied on to protect their networks (i.e., antivirus, intrusion prevention systems, firewalls) are no longer capable of providing sufficient security guarantees against the rapid escalation of advanced persistent threats and multi-vector attacks. The growing complexity of cyber-attacks are urgently demanding more correlation in space and time of (apparently) independent events and logs, and a higher degree of coordination among different security mechanisms. *Topics of interest* This Workshop aims to gather together novel approaches for providing organizations the appropriate situational awareness in relation to cyber security threats allowing them to quickly detect and effectively respond to sophisticated cyber-attacks. Topics of interest includes but are not limited to: * Cyber-security platforms and architectures for digital services; * Security, trust and privacy for industrial systems and the IoT (including smart grids); * Monitoring and advanced data collection and analytics; * Virtual and software-based cyber-security functions; * Orchestration and Automatic Configuration of security functions; * Novel algorithms and models for attack detection and threat identification; * Authentication, Authorization and Access control; * Intelligent attack mitigation and remediation; * Machine learning, big data, network analytics; * Secure runtime environments, including trustworthy systems and user devices; * Formal methods and policies for security and trust; * Trusted computing; * Information flow control; * Risk analysis and management, Audit and Accountability; * Honeypots, forensics and legal investigation tools; * Threat intelligence and information sharing; • Security techniques and new AAA mechanisms for a multi-tenant infrastructure and services; • ORAN security and threats; • Programable data planes security, vulnerabilities and threats; • Secure storage. Multi-disciplinary and collaborative research projects are encouraged to submit joint papers describing their integrated architectures and cyber-security platforms, with special emphasis on how they address the challenging cyber-security requirements of softwarized environments and critical infrastructures. ------------------------------------------------------------------------------------------------------------------------ SUBMISSION GUIDELINES ------------------------------------------------------------------------------------------------------------------------- *Paper submissions* Interested authors are invited to submit papers according to the following guidelines: * papers must be up to 6 pages long, including tables, figures and references; * the style to be used is IEEE 2-column US-letter style using IEEE Conference template, and papers must be submitted in pdf format. Accepted and presented workshop papers will be published in the conference proceedings and will be submitted to IEEE Xplore. For more details about submission forma and procedure, please check the NetSoft conference website at https://netsoft2024.ieee-netsoft.org/authors/. Only PDF files will be accepted for the review process and all manuscripts must be electronically submitted through EDAS. The submission link will be available soon. Important: Please check NetSoft 2024 publication and no-show policy in the conference website at https://netsoft2024.ieee-netsoft.org/authors/publication-and-no-show-policy/. *Important dates* Workshop paper submission deadline: April 5, 2024 --> April 12, 2024 (Extended) Workshop paper acceptance: April 26, 2024 --> May 4, 2024 (Extended) Camera-ready papers: May 3, 2024 --> May 8, 2024 (Extended) Workshop date: June 24 or 28, 2024 For more information, please visit the Workshop website: http://www.secsoft-workshop.org/ ----------------------------------------------------------------------------------------------------------------------------------------------------------------------- CHAIRS ------------------------------------------------------------------------------------------------------------------------------------------------------- *Workshop Co-Chairs* Guillaume Doyen, IMT Atlantique, France Lorenzo De Carli, University of Calgary, Canada Sajad Khorsandroo, North Carolina A&T State University, USA *TPC Co-Chairs* Domenico Siracusa, Fondazione Bruno Kessler, Italy Antonio Skarmeta, University of Murcia, Spain Panagiotis Sarigiannidis, University of Western Macedonia, Greece Antonio Lioy, Politecnico di Torino, Italy