The Joint Workshop on
CPS & IoT Security and Privacy
The Joint Workshop on CPS&IoT Security and Privacy (CPSIoTSec) is the result of the merger of the Workshop on Cyber-Physical Systems Security and Privacy (CPS-SPC) and Workshop on the Internet of Things Security and Privacy (IoTS&P) previously organized annually in conjunction with ACM Conference on Computer and Communications Security.
The Best Paper award winner for CPSIoTSec 2020 is:
Catch Me If You Can: An In-Depth Study of CVE Discovery Time and Inconsistencies for Managing Risks in Critical Infrastructures [Talk]
NEW! Table of contents available! [Link]
All times are U.S. Eastern time.
Presenter’s names are marked by asterisks.
Keynote: Optimize Your Efforts: How to Tailor PhD Research to Real-World Needs – Industrial Perspective on Academic CPS/IoT Research, by Marina Krotofil
Session 1: CPS&IoT Security
Session Chair: Charalambos Konstantinou
[25 min] Towards a High-Fidelity Network Emulation of IEC 104 SCADA Systems
Luis Salazar*, Xi Qin, Neil Ortiz and Alvaro Cardenas
[25 min] Hazard driven threat modelling for Cyber Physical Systems
Luca Maria Castiglione* and Emil C. Lupu
[15 min] A Statistical Analysis Framework for ICS Process Datasets
Federico Turrin*, Alessandro Erba, Nils Ole Tippenhauer and Mauro Conti
[15 min] Towards Robust Power Grid Attack Protection using LightGBM with Concept Drift Detection and Retraining
Anand Agrawal*, Marios Sazos, Michail Maniatakos and Ahmed Al Durra
13:00-14:00 Lunch break - Breakout session
Session 2: Real Case Studies and Demos
Session Chair: Avishai Wool
[25 min] A (in)Secure-by-Design IoT Protocol: The ESP Touch Protocol and a Case Study Analysis from the Real Market
Giovanni Salzillo* and Massimiliano Rak
[25 min] Catch Me If You Can: An In-Depth Study of CVE Discovery Time and Inconsistencies for Managing Risks in Critical Infrastructures
Richard J. Thomas*, Joe Gardiner, Tom Chothia, Awais Rashid, Emmanouil Samanis and Joshua Perrett
[15 min] Privacy in the Mobile World: An Analysis of Bluetooth Contact Traces
Heng Zhang*, Amiya K. Maji and Saurabh Bagchi
[10 min] DEMO: Gone in 20 Seconds - Overview of a Password Vulnerability in Siemens HMIs
Joseph Gardiner* and Awais Rashid
[10 min] DEMO: Trustworthy Cyberphysical Energy Systems: Time-Delay Attacks in a Real-Time Co-Simulation Environment
Juan Ospina*, Ioannis Zografopoulos, XiaoRui Liu and Charalambos Konstantinou
Session 3: CPS&IoT Robustness
Session Chair: Sibin Mohan
[25 min] MAC-Layer Spoofing Detection and Prevention in IoT Systems: Randomized Moving Target Approach
Pooria Madani*, Natalija Vlajic and Shadi Sadeghpour
[15 min] Skip to Secure: Securing Cyber-physical Control Loops with Intentionally Skipped Executions
Sunandan Adhikary*, Ipsita Koley, Saurav Kr. Ghosh, Sumana Ghosh, Soumyajit Dey and Debdeep Mukhopadhyay
[15 min] Voice Command Fingerprinting with Locality Sensitive Hashes
Batyr Charyyev* and Mehmet Gunes
Closing Session - Best paper award announcement
The Joint Workshop on CPS&IoT Security and Privacy invites academia, industry, and governmental entities to submit:
We seek submissions from multiple interdisciplinary backgrounds tackling security and privacy issues in CPS and IoT, including but not limited to:
Also, of interest will be papers that can point the research community to new research directions, and those that can set research agendas and priorities in CPS/IoT security and privacy. There will be a best paper award. The best paper will be invited for extended paper submission to the Special Issue on Cyber-Physical System Security @ Cybersecurity (Springer), with a September 30th deadline.
Submissions include long papers (12 pages) and short papers (6 pages).
Submitted papers can be up to 12 or 6 pages including appendices and references (except for SoK papers where references are excluded). Submissions must use the format defined by CCS (https://www.sigsac.org/ccs/CCS2020/call-for-papers.html). Only PDF files will be accepted. There is no requirement to anonymize the submissions; Authors may choose to submit anonymously or not. Accepted papers will be published by the ACM Press and/or the ACM Digital Library. Submissions must not substantially overlap with papers that have been published or that are simultaneously submitted to a journal or a conference with proceedings. Each accepted paper must be presented by a registered author. Submissions not meeting these guidelines risk immediate rejection. For questions about these policies, please contact the chairs.
Please submit your work at https://easychair.org/conferences/?conf=cpsiotsec2020