SECUTE 2024 - Security Testing for Complex Software Systems

Aim of the workshop

In the past two decades, the complexity of modern IT systems has surged due to technologies like AI, cloud computing, and microservices. Ensuring security in these systems is challenging. Software security is critical for practitioners to prevent incidents such as data breaches. As complex systems evolve, robust methods to test their security become imperative. Many testing techniques exist, including model-based and code-based security testing, penetration testing, and security regression testing. Despite these methods, some vulnerabilities are still inadequately tested. Current solutions mainly focus on traditional systems, leaving unconventional architectures like Virtual Reality or IoT systems largely unaddressed. Further research is essential to develop standardized techniques for both traditional and complex domains.
SECUTE is a workshop focusing on empirical methods for testing the security of complex software systems to understand the support they provide to practitioners in dealing with security, particularly in unconventional domains. SECUTE aims to foster a community for sharing ideas and initiating collaborations among researchers in this field.

Please see the details via this link: https://secute-ws.github.io

Time Zone

The program is currently displayed in (GMT+02:00) Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna.

Use conference time zone: (GMT+02:00) Amsterdam, Berlin, Bern, Rome, Stockholm, ViennaSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

You're viewing the program in a time zone which is different from your device's time zone change time zone

Fri 21 Jun
Displayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change

12:30 - 14:00	LunchCatering

12:30 90m Lunch		Lunch Catering

14:00 - 15:30	SECUTE Workshop: Session 1SECUTE at Room Capri

14:00 10m Day opening		Welcome SECUTE
14:10 65m Keynote		A Tale of Vulnerability Prediction SECUTE Mike Papadakis University of Luxembourg
15:15 15m Talk		Security Risk Assessment on Cloud: A Systematic Mapping Study SECUTE Giusy Annunziata University of Salerno, Alexandra Sheykina University of Salerno, Gemma Catolino University of Salerno, Fabio Palomba University of Salerno, Andrea De Lucia University of Salerno, Filomena Ferrucci University of Salerno Pre-print

	15:30 - 16:00	Coffee BreakCatering

16:00 - 17:30	SECUTE Workshop: Session 2SECUTE at Room Capri

16:00 15m Talk		*Semgrep: Improving the Limited Performance of Static Application Security Testing (SAST) Tools** SECUTE Gareth Bennett Lancaster University, Tracy Hall Lancaster University, Emily Winter Lancaster University, Steve Counsell Brunel University London
16:15 10m Talk		Toward a Search-Based Approach to Support the Design of Security Tests for Malicious Network Traffic SECUTE Davide La Gamba University of Salerno, Gerardo Iuliano University of Salerno, Gilberto Recupito University of Salerno, Giammaria Giordano University of Salerno, Filomena Ferrucci University of Salerno, Dario Di Nucci University of Salerno, Fabio Palomba University of Salerno
16:25 10m Talk		LLM Security Guard for Code SECUTE Arya Kavian University of Science and Technology of Mazandaran, Mohammad Mehdi Pourhashem Kallehbasti University of Science and Technology of Mazandaran, Sajjad Kazemi University of Science and Technology of Mazandaran, Ehsan Firouzi TU Clausthal, Mohammad Ghafari TU Clausthal
16:35 55m Panel		Open Discussion + Closing SECUTE

Accepted Papers

	Title
	LLM Security Guard for Code SECUTE Arya Kavian, Mohammad Mehdi Pourhashem Kallehbasti, Sajjad Kazemi, Ehsan Firouzi, Mohammad Ghafari
	Security Risk Assessment on Cloud: A Systematic Mapping Study SECUTE Giusy Annunziata, Alexandra Sheykina, Gemma Catolino, Fabio Palomba, Andrea De Lucia, Filomena Ferrucci Pre-print
	Semgrep*: Improving the Limited Performance of Static Application Security Testing (SAST) Tools SECUTE Gareth Bennett, Tracy Hall, Emily Winter, Steve Counsell
	Toward a Search-Based Approach to Support the Design of Security Tests for Malicious Network Traffic SECUTE Davide La Gamba, Gerardo Iuliano, Gilberto Recupito, Giammaria Giordano, Filomena Ferrucci, Dario Di Nucci, Fabio Palomba

Call for Papers

More details are available at: https://secute-ws.github.io/call_for_papers.html

Questions? Use the SECUTE contact form.

Security Testing for Complex Software SystemsSECUTE 2024

Aim of the workshop

Program Display Configuration

Fri 21 JunDisplayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change

Accepted Papers

Call for Papers

Emanuele Iannone

Hamburg University of Technology

Germany

Valeria Pontillo

Vrije Universiteit Brussel

Belgium

Coen De Roover

Vrije Universiteit Brussel

Belgium

Riccardo Scandariato

Hamburg University of Technology

Germany

Viviana PentangeloWeb and Publicity chair

University of Salerno

Italy

Quang-Cuong Bui

Hamburg University of Technology

Germany

Mariano Ceccato

University of Verona

Italy

Dario Di Dario

University of Salerno

Italy

Michael Felderer

German Aerospace Center (DLR) & University of Cologne

Germany

Peter Hegedus

University of Szeged

Hungary

Martin Johns

SAP Security Research / TU Braunschweig

Germany

Ruben Opdebeeck

Vrije Universiteit Brussel

Ranindya Paramitha

University of Trento

Italy

Maura Pintor

University of Cagliari

Italy

Antonino Sabetta

SAP Labs

France

Jordan Samhi

CISPA Helmholtz Center for Information Security

Germany

Quentin Stiévenart

Université du Québec à Montréal (UQAM)

Canada

Ahmed Zerouali

Vrije Universiteit Brussel

Belgium

Fri 21 Jun
Displayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change