ICSE 2026
Sun 12 - Sat 18 April 2026 Rio de Janeiro, Brazil
ICSE 2026 (series) / EnCyCriS 2026 (series) /

EnCyCriS 2026

The 2026 International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS) will take place on Saturday Apr 18 (date confirmed) in the Windsor Barra Hotel in Rio de Janeiro, Brazil. This marks the 7th edition of EnCyCriS at the ICSE conference.

For industrial critical systems, although the previous premises of increasing system interconnectivity, decentralization, and introduction of new, more intelligent technologies still hold true, there is an increased societal awareness with regards to cybersecurity. This has led to clearer regulation, sharper requirements, and higher expectations for industry. At the same time, the availability of readily deployable competence, methods, tools, and solutions is lacking, which should be considered a critical societal risk.

In the current international political climate, cyber security, and safety of critical infrastructures across industry, are more important than ever before. The EnCyCriS workshop facilitates discourse and discussion amongst researchers, practitioners, and students who are working on challenges and solutions related to industrial critical infrastructure. It has a particular focus on sharing industry experience and project results pertaining to cyber threats on critical systems, secure systems engineering, and attack detection and response mechanisms.

Previous editions

Plenary
You're viewing the program in a time zone which is different from your device's time zone change time zone

Sat 18 Apr

Displayed time zone: Brasilia, Distrito Federal, Brazil change

08:00 - 17:30
Saturday RegistrationSocial, Networking and Special Rooms at Main Entrance

Registration for ICSE 2026.

08:00
9h30m
Registration
ICSE 2026 Registration
Social, Networking and Special Rooms

09:00 - 10:30
EnCyCriS Papers Session 1EnCyCriS at Europa II
Chair(s): John Eidar Simensen IFE
09:00
5m
Day opening
Workshop Opening
EnCyCriS
Coralie Esnoul Institute For Energy Technology (IFE)
09:05
15m
Full-paper
Towards a Cognitive-Support Tool for Threat Hunters
EnCyCriS
Alessandra Maciel Paz Milani University of Victoria, Norman Anderson University of Victoria, Margaret-Anne Storey University of Victoria
Pre-print
09:20
15m
Full-paper
Reflections and Factors in Applying Threat Modelling Tools for Cybersecurity Certification in Critical Infrastructure
EnCyCriS
Ahmed Amro Norwegian University of Science and Technology (NTNU), Vasileios Gkioulos NTNU, Claudia Lutze Hitachi Rail, Jean-Marie Lauranson Hitachi Rail, Maria I. Maslioukova Catalink, Pavlos Kosmides Catalink, Christina Michailidou Catalink, Pedro-Tito Macías-Roselló Schneider Electric, Evgeny Prokofyev Schneider Electric, Antoliano Davila Schneider Electric, Tanel Kerstna MindChip, Per Myrseth DNV, Meine Van Der Meulen DNV
09:35
15m
Full-paper
An Overview of Cyber Security Funding for Open Source SoftwareVirtual Attendance
EnCyCriS
Jukka Ruohonen University of Southern Denmark, Gaurav Choudhary Choudhary Technical University of Denmark, Adam Alami University of Southern Denmark
09:50
15m
Full-paper
LLM-Assisted AHP for Explainable Cyber Range Evaluation
EnCyCriS
Vyron Kampourakis Norwegian University of Science and Technology NTNU, Georgios Kavallieratos Norwegian University of Science and Technology NTNU, Georgios Spathoulas Norwegian University of Science and Technology NTNU, Vasileios Gkioulos NTNU, Sokratis Katsikas Norwegian University of Science and Technology (NTNU)
10:05
15m
Full-paper
Behind the Quantum Curtain: A practical comparison between SVM and QSVM in OT Anomaly Detection
EnCyCriS
Alessio Di Santo Università degli Studi dell'Aquila, Nicola Camarda , Walter Tiberti Università degli Studi dell'Aquila, Dajana Cassioli Università degli Studi dell'Aquila
10:20
10m
Other
all together : picture
EnCyCriS

10:30 - 11:00
Saturday Morning BreakCatering at Catering and Exhibition Hall (Europa I to IV)

This break will provide an opportunity for networking and relaxation between sessions.

10:30
30m
Coffee break
Break
Catering

11:00 - 12:30
EnCyCriS Paper Session 2EnCyCriS at Europa II
Chair(s): Eunkyoung Jee KAIST, South Korea
11:00
15m
Full-paper
MCP-Scanner: Detecting Security Risks in Model Context Protocol SystemsVirtual Attendance
EnCyCriS
Parya Abadeh University of Guelph, Martin Lochner (eSentire Inc, Taha Ansari eSentire Inc, Fattane Zarrinkalam University of Guelph
11:15
15m
Full-paper
Real-Time Anomaly Detection in Web Server Logs Using Machine Learning and Apache Kafka
EnCyCriS
Valentina Rojas Osorio University of Chile, Chile, Ángel Jimenez Molina Data and Artificial Initiative - IDIA, Cecilia Bastarrica Universidad de Chile, Chile, Felipe Vildoso Castillo University of Chile, Chile
11:30
10m
Short-paper
A Comprehensive Framework to Secure CBTC Communications
EnCyCriS
Amin Fakhereldine Queen's University, Canada, Mohammad Zulkernine Queen's University, Canada, Jessica Alecci Irdeto, Will Hickie Irdeto
11:40
10m
Short-paper
A Transfer Learning Approach to Unveil the Role of Windows Common Configuration Enumerations in IEC 62443 Compliance
EnCyCriS
Miguel Bicudo UFRJ, Brazil, Estevao Rabello UFRJ, Brazil, Daniel Sadoc Menasche UFRJ, Brazil, Paulo Segal UFF, Claudio Segal UFF, Anton Kocheturov Siemens Technology, Priyanjan Sharma Siemens
Pre-print
11:50
35m
Panel
Main panel discussions
EnCyCriS

12:25
5m
Day closing
Workshop Closure
EnCyCriS
Coralie Esnoul Institute For Energy Technology (IFE)
12:30 - 14:00
Saturday LunchCatering at Catering and Exhibition Hall (Europa I to IV)

Lunch time with a variety of meal options available for attendees, including vegetarian choices. This session will provide an opportunity for attendees to enjoy a meal while networking with colleagues and discussing the day’s events.

12:30
90m
Lunch
Lunch
Catering

14:00 - 15:30
SVM Paper Session 1SVM / EnCyCriS at Europa II
Chair(s): Triet Le Adelaide University
14:00
5m
Day opening
SVM Opening
SVM
Triet Le Adelaide University
14:05
20m
Talk
An Automated Approach to Generate Attack Graphs with a Case Study on Siemens PCS7 Blueprint
SVM
Lucas Miranda UFRJ, Carlos Eduardo de Schuller Banjar UFRJ, Daniel Sadoc Menasche UFRJ, Brazil, Anton Kocheturov Siemens Technology, Gaurav Kumar Srivastava Siemens, Tobias Limmer Siemens
Pre-print
14:25
20m
Talk
Bridging Code Property Graphs and Language Models for Program AnalysisVirtual Attendance
SVM
Ahmed Lekssays Qatar Computing Research Institute
14:45
20m
Talk
Evaluating Cryptographic API Misuse Detectors for Go
SVM
Vivi Andersson KTH Royal Institute of Technology, Martin Monperrus KTH Royal Institute of Technology
15:05
20m
Talk
An Invited Talk on Trusted Vulnerability Detection
SVM
Zhou Yang University of Alberta, Alberta Machine Intelligence Institute
15:25
5m
Social Event
Group Photo
SVM

15:30 - 16:00
Saturday Afternoon BreakCatering at Catering and Exhibition Hall (Europa I to IV)

Afternoon Break with a variety of beverages and snacks available for attendees. This break will provide an opportunity for networking and relaxation between sessions.

15:30
30m
Coffee break
Break
Catering

16:00 - 17:30
SVM Paper Session 2SVM / EnCyCriS at Europa II
Chair(s): Triet Le Adelaide University
16:00
20m
Talk
LLMs in Code Vulnerability Analysis: A Proof of ConceptVirtual Attendance
SVM
Shaznin Sultana Ohio University, Sadia Afreen University of Cincinnati, Nasir Eisty University of Tennessee-Knoxville
16:20
20m
Talk
Q&AEval: Benchmarking Secure Coding Ability of LLMs on Real-World Tasks
SVM
Markus Toran Fraunhofer SIT; ATHENE, Bettina Ballin , Marc Miltenberger Fraunhofer SIT; ATHENE, Steven Arzt Fraunhofer SIT; ATHENE
16:40
20m
Talk
Process-based Indicators of Vulnerability Re-Introducing Code Changes: An Exploratory Case Study
SVM
Samiha Shimmi Northern Illinois University, Nicholas Synovic Loyola University Chicago, Mona Rahimi Northern Illinois University, George K. Thiruvathukal Loyola University Chicago
17:00
5m
Day closing
SVM Closure
SVM
Triet Le Adelaide University

Accepted Papers

Title
A Comprehensive Framework to Secure CBTC Communications
EnCyCriS
Amin Fakhereldine, Mohammad Zulkernine, Jessica Alecci, Will Hickie
all together : picture
EnCyCriS

An Overview of Cyber Security Funding for Open Source SoftwareVirtual Attendance
EnCyCriS
Jukka Ruohonen, Gaurav Choudhary Choudhary, Adam Alami
A Transfer Learning Approach to Unveil the Role of Windows Common Configuration Enumerations in IEC 62443 Compliance
EnCyCriS
Miguel Bicudo, Estevao Rabello, Daniel Sadoc Menasche, Paulo Segal, Claudio Segal, Anton Kocheturov, Priyanjan Sharma
Pre-print
Behind the Quantum Curtain: A practical comparison between SVM and QSVM in OT Anomaly Detection
EnCyCriS
Alessio Di Santo, Nicola Camarda, Walter Tiberti, Dajana Cassioli
LLM-Assisted AHP for Explainable Cyber Range Evaluation
EnCyCriS
Vyron Kampourakis, Georgios Kavallieratos, Georgios Spathoulas, Vasileios Gkioulos, Sokratis Katsikas
Main panel discussions
EnCyCriS

MCP-Scanner: Detecting Security Risks in Model Context Protocol SystemsVirtual Attendance
EnCyCriS
Parya Abadeh, Martin Lochner, Taha Ansari, Fattane Zarrinkalam
Real-Time Anomaly Detection in Web Server Logs Using Machine Learning and Apache Kafka
EnCyCriS
Valentina Rojas Osorio, Ángel Jimenez Molina, Cecilia Bastarrica, Felipe Vildoso Castillo
Reflections and Factors in Applying Threat Modelling Tools for Cybersecurity Certification in Critical Infrastructure
EnCyCriS
Ahmed Amro, Vasileios Gkioulos, Claudia Lutze, Jean-Marie Lauranson, Maria I. Maslioukova, Pavlos Kosmides, Christina Michailidou, Pedro-Tito Macías-Roselló, Evgeny Prokofyev, Antoliano Davila, Tanel Kerstna, Per Myrseth, Meine Van Der Meulen
Towards a Cognitive-Support Tool for Threat Hunters
EnCyCriS
Alessandra Maciel Paz Milani, Norman Anderson, Margaret-Anne Storey
Pre-print
Workshop Closure
EnCyCriS
Coralie Esnoul
Workshop Opening
EnCyCriS
Coralie Esnoul

Call for Papers

We are delighted to announce the 7th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS), organized in conjunction with the 48th International Conference on Software Engineering (ICSE 2026). The workshop will take place the day after the main ICSE conference, on Saturday Apr 18 (date confirmed) in the Windsor Barra Hotel in Rio de Janeiro, Brazil.

EnCyCriS offers an opportunity for the sharing of thoughts and experiences between researchers, practitioners, and students in the domain of the engineering and cybersecurity of critical software-based systems and infrastructures. Submissions may consider the following topics:

• Integrated safety and security software engineering processes and methods for critical infrastructures (CI).

• Secure development of critical software-based systems across the entire lifecycle

• Operational cybersecurity challenges related to the introduction of novel technologies in CI, including evaluating effectiveness of risk models, detection and response tools, and methods.

• Human factors with respect to knowledge, preparedness and how to operationalize cyberattack response for CI, covering both technical and organizational factors.

• Safety and security assessment of Artificial Intelligence (AI) and Machine Learning (ML) tools and methods in the life cycle processes of critical software-based systems.

• The use and effectiveness of tools and methods for improving CI, including but not limited to digital twins, AI, ML, Hardware In-the-Loop test beds.

• Operational challenges and solutions in planning for , detecting, understanding and mitigating cyberattacks

• Industry experiences and projects in the areas of cybersecurity of critical software-based systems; secure software engineering; cyber-attack detection and response mechanisms.

This workshop highly values experience and lessons learned from industry, and academic papers where research projects have been applied in an industrial context.

Submission

Deadline extended to November 2nd – There will be no more extension.

We accept research, position papers and industrial papers in different categories:

full papers (8 pages max)

extended abstracts (5 pages max)

All page limits include all figures, tables, and references. It is not possible to buy extra pages.

Please submit your work to the HotCrp EnCyCriS site, https://icse2026-encycris.hotcrp.com. All submissions must follow the official ACM Primary Article Template. You can find the template on the ACM Proceedings Template Page. If you are a LaTeX user, please use \documentclass[sigconf,review]{acmart} in the preamble of the main file. Workshop proceedings will be prepared by IEEE CPS and published in the ACM Digital Library and IEEE eXplore Digital Library.

Extended abstracts will be free of Article Processing Charges (APCs) as per the new ACM policies for open-access publishing. Full papers will not.

If a submission is accepted, at least one author must register for the EnCyCriS workshop and present the work.

Questions? Use the EnCyCriS contact form.
Important Dates AoE (UTC-12h)
Sat 18 Apr 2026
Workshop
Mon 26 Jan 2026
Workshop Papers Camera Ready
Mon 24 Nov 2025
Workshop Papers Acceptance Notification
Sun 2 Nov 2025
Workshop Papers Submission Deadline
Submission Link
https://icse2026-encycris.hotcrp.com/
Organizing Committee
Program Committee