Text

Description of the planned book

The book will provide an overview of the software security analysis in a DevOps cycle including security requirements formalization, verification and continuous monitoring. The book is dedicated to a general audience of computer engineers and does not require a specific knowledge. It presents the current state of the art and practice in the field based on the analysis of the literature up to date. The manuscript is valuable as a one stop shop for the recent advances in the area of engineering methods for software security.

Submission Guidelines

All papers must be original or a significant extension of previously published paper (at least +30% of new content) and not simultaneously submitted to another journal or conference. The following paper categories are welcome:

  • Full Chapter describing research results, methods, tools, processes, experimental results from applications to industrial systems, or systematic literature reviews are encouraged. We consider that contributions between 20 and 30 pages of length per chapter fit best for the book. Full chapter can target one or several topics listed below.

Each chapter will be assessed by at least 3 reviewers and an acceptance notification will be sent early November 2022. SecDevOps 2023 proceedings will be published in Springer LNCS

Important Dates

  • Abstract registration deadline: June 30, 2022
  • Submission deadline: August 31, 2022
  • Notification to authors: 1st November 2022
  • Final versions of chapters: 31st January 2023
  • Estimated publishing date: June 2023

Topics:

  • Project results, case studies and experience reports
  • Security Requirements Analysis
  • Security at Development
  • Security at Operations
  • Security in DevOps environment
  • Security Requirements Patterns
  • Threat Oracles
  • Security Threats Monitoring
  • Root cause analysis
  • Security Verification using Metamorphic Testing
  • Security Monitoring and Attack Detection
  • Model-based Security Testing
  • Security controls and countermeasures
  • ML methods for security testing
  • ML methods for security monitoring
  • ML methods for root cause analysis
  • NLP for Security Requirements Analysis

Committees

Reviewers

  • Wissam Mallouli
  • Angel Longeira
  • Cristina Seceleanu
  • Eduard Enoiu
  • Aleksandr Naumchev
  • Etienne BROSSE
  • Ildar Nigmatullin
  • Sophie Ebersold
  • Jean-Michel Brue
  • Tanwir Ahmad
  • Zujany Salazar
  • Ana Cavalli
  • Vinh Hoa La
  • Andrey Sadovykh
  • To be completed


Editors

  • Andrey Sadovykh
  • Dragos Truscan
  • Alessandra Bagnato
  • Wissam Mallouli
  • Ana Cavalli
  • Cristina Seceleanu
  • Eduard Enoiu

Contact

For more information or questions, please visit https://easychair.org/cfp/SecDevOps2023 External link. or contact andrey.sadovykh@softeam.fr

Sponsors

H2020 VeriDevOps