International Workshop on Software Security Engineering 2025 - 5th International Workshop on Software Security Engineering 2025

Over the last decade, an increasing number of organizations have started focusing on software security because modern applications typically operate in a hostile network-based environment. Traditionally, organizations have tried to address security concerns by finding and fixing security vulnerabilities once the software development cycle is completed. A software needs to be secured against any unauthorized users, and this can be achieved by incorporating security mechanisms into different phases of the software development lifecycle. However, incorporating security practices and processes into different phases of the software development life cycle remains a challenge. Software security area is evolving due to different factors such as increasing failure rates of software projects, economic downturn, and software development without security in mind, globalization and outsourcing. The empirical software engineering researchers need new approaches, models, and tools for addressing various emerging challenges of software security in this modern age. There is a need for using empirical evidence to support different new approaches in the software security research and practice which will provide researchers with innovative knowledge on which to develop different software security processes and practices. This will also help in improving existing software security approaches and processes in order to effectively develop secure software. This workshop will bring together and advance the work that has been undertaken on software security. The outcome of this workshop will provide researchers and practitioners with a firm basis on which to develop different practices/ tools/ techniques that are based on an understanding of how and where they fit into secure software development and research. New practices/ tools/ techniques could then be developed targeting secure software engineering community.

This workshop aims to provide a venue to discuss software security challenges, opportunities, and lessons learned under the umbrella of empirical software engineering and software evaluation. It will bring together researchers and practitioners from academia, industry, and governments to report empirical studies and discuss issues related to Software Security. This workshop will seek submissions reporting original, unpublished research on software security covering any aspect of Experimental, Empirical, and Evidence-Based Software Engineering, for example, quantitative and qualitative methods for empirical evaluation of software security techniques, processes, methods, tools, and best practices. This will be a one-day paper-based presentation workshop, accepting research and software industry papers on software security.

For more information: https://softwareengineeringresearch.net/SSE25/

Call for Papers

https://softwareengineeringresearch.net/SSE25/CfP_SSE25.pdf

This workshop aspires to provide an opportunity for the empirical software engineering researchers and practitioners to present the state of the art, state of the practice, and the future directions on the following topics of software security:

Systematic literature reviews and mapping studies on software security
Tertiary studies on software security
Empirically based decision making
Controlled experiments and quasi-experiments on software security
Case studies, surveys, observational studies, Delphi studies, and field studies on software security
Empirical studies on software security using qualitative, quantitative, and mixed methods
Evaluation of software security techniques, tools, and models
Secure software requirements
Secure software design
Secure software coding
Secure software testing
Secure software acceptance
Secure software deployment, operations, and maintenance
Secure software acquisition
Project management for secure software development
Software security in global projects
Best practices and lessons learned in secure software development projects
Secure software metrics
Insider threats

Submission Guidelines

Workshop proceedings will be integrated with the EASE 2025 conference companion proceedings. Submitted papers must be written in English, contain original unpublished work, and conform to the ACM proceedings format. Please submit manuscripts via EasyChair, the link is available on the workshop page:

https://softwareengineeringresearch.net/SSE25/index.html

2024 - Salerno, Italy
2023 - Oulo, Finland
2022 - Gothenburg, Sweden
2020-2021 - Online

Questions? Use the International Workshop on Software Security Engineering contact form.

5th International Workshop on Software Security Engineering 2025International Workshop on Software Security Engineering 2025

Call for Papers

Submission Guidelines

Previous Editions

Sajjad Mahmood

King Fahd University of Petroleum & Minerals

Saudi Arabia

Mohammad Alshayeb

King Fahd University of Petroleum & Minerals

Mahmood Niazi

King Fahd University of Petroleum and Minerals

Asif Gill

University of Technology Sydney

Australia

Muhammad Azeem Akbar

LUT University

Arif Ali Khan

University of Oulu

Finland

Ali Ouni

ETS Montreal, University of Quebec

Canada

Richard Lai

Samuel A. Ajila

Department of Systems and Computer Engineering, Carleton University

Canada

Sajid Anwer

Eman Abdullah AlOmar

Stevens Institute of Technology

United States

Peng Liang

Wuhan University, China

China

Siffat Ullah Khan

University of Malakand

Pakistan

Saqib Ali

Sultan Qaboos University

Oman