EASE 2025
Tue 17 - Fri 20 June 2025 Istanbul, Turkey
EASE 2025 (series) / International Workshop on Software Security Engineering 2025 (series) /

5th International Workshop on Software Security Engineering 2025International Workshop on Software Security Engineering 2025

Over the last decade, an increasing number of organizations have started focusing on software security because modern applications typically operate in a hostile network-based environment. Traditionally, organizations have tried to address security concerns by finding and fixing security vulnerabilities once the software development cycle is completed. A software needs to be secured against any unauthorized users, and this can be achieved by incorporating security mechanisms into different phases of the software development lifecycle. However, incorporating security practices and processes into different phases of the software development life cycle remains a challenge. Software security area is evolving due to different factors such as increasing failure rates of software projects, economic downturn, and software development without security in mind, globalization and outsourcing. The empirical software engineering researchers need new approaches, models, and tools for addressing various emerging challenges of software security in this modern age. There is a need for using empirical evidence to support different new approaches in the software security research and practice which will provide researchers with innovative knowledge on which to develop different software security processes and practices. This will also help in improving existing software security approaches and processes in order to effectively develop secure software. This workshop will bring together and advance the work that has been undertaken on software security. The outcome of this workshop will provide researchers and practitioners with a firm basis on which to develop different practices/ tools/ techniques that are based on an understanding of how and where they fit into secure software development and research. New practices/ tools/ techniques could then be developed targeting secure software engineering community.

This workshop aims to provide a venue to discuss software security challenges, opportunities, and lessons learned under the umbrella of empirical software engineering and software evaluation. It will bring together researchers and practitioners from academia, industry, and governments to report empirical studies and discuss issues related to Software Security. This workshop will seek submissions reporting original, unpublished research on software security covering any aspect of Experimental, Empirical, and Evidence-Based Software Engineering, for example, quantitative and qualitative methods for empirical evaluation of software security techniques, processes, methods, tools, and best practices. This will be a one-day paper-based presentation workshop, accepting research and software industry papers on software security.

For more information: https://softwareengineeringresearch.net/SSE25/

Plenary
Hide plenary sessions
You're viewing the program in a time zone which is different from your device's time zone change time zone

Tue 17 Jun

Displayed time zone: Athens change

09:00 - 10:15
OpeningInternational Workshop on Software Security Engineering at Glass Room
09:00
15m
Social Event
Welcome (Software Security Engineering)
International Workshop on Software Security Engineering

09:15
60m
Keynote
Generative AI in Software Engineering: Challenges and Opportunities
International Workshop on Software Security Engineering
Sajjad Mahmood King Fahd University of Petroleum & Minerals
10:15 - 10:45
Coffee BreakCatering
12:30 - 13:30
LunchCatering
14:15 - 14:45
DiscussionInternational Workshop on Software Security Engineering at Glass Room
14:15
30m
Panel
Discussion/Evaluation
International Workshop on Software Security Engineering

14:45 - 15:00
Coffee BreakCatering
Hide past events

Call for Papers

https://softwareengineeringresearch.net/SSE25/CfP_SSE25.pdf

This workshop aspires to provide an opportunity for the empirical software engineering researchers and practitioners to present the state of the art, state of the practice, and the future directions on the following topics of software security:

  • Systematic literature reviews and mapping studies on software security
  • Tertiary studies on software security
  • Empirically based decision making
  • Controlled experiments and quasi-experiments on software security
  • Case studies, surveys, observational studies, Delphi studies, and field studies on software security
  • Empirical studies on software security using qualitative, quantitative, and mixed methods
  • Evaluation of software security techniques, tools, and models
  • Secure software requirements
  • Secure software design
  • Secure software coding
  • Secure software testing
  • Secure software acceptance
  • Secure software deployment, operations, and maintenance
  • Secure software acquisition
  • Project management for secure software development
  • Software security in global projects
  • Best practices and lessons learned in secure software development projects
  • Secure software metrics
  • Insider threats

Submission Guidelines

Workshop proceedings will be integrated with the EASE 2025 conference companion proceedings. Submitted papers must be written in English, contain original unpublished work, and conform to the ACM proceedings format. Please submit manuscripts via EasyChair, the link is available on the workshop page:

https://softwareengineeringresearch.net/SSE25/index.html

Accepted Papers

Keynote: Generative AI in Software Engineering: Challenges and Opportunities, Sajjad Mahmood

Secure Software 2025 Workshop Accepted Papers:

  1. IoT-AI Security for Dynamic Data-driven Environments, Ankita Sharma, Shalli Rani and Muhammad Azeem Akbar

  2. Towards the Machine Learning methods for recognizing the security gap patterns in the code - literature review, Aneta Poniszewska-Maranda, Wojciech Krasnowski and Bozena Borowska

  3. Evaluating the Effectiveness of SAST Tools: A Comparative Study on Vulnerability Detection, Reporting, and Usability, Rawan Alraddadi, Haifa Al-Shammare, Faten Al-Abdulwahhab, Mahmood Niazi and Mamoona Humayun

  4. Product Guardian Role and Socio-Technical Debt Management in Large-Scale Agile, Pavithra Herath, Muhammad Ovais Ahmad and Tomas Gustavsson

  5. The Role of Generative AI in Strengthening Secure Software Coding Practices: A Systematic Perspective, Hathal S. Alwageed and Rafiq Ahmad Khan

  6. Comparative Analysis of AI-Driven Security Approaches in DevSecOps: Challenges, Solutions, and Future Directions, Farid Binbeshr and Muhammad Imam

  7. Security Perspective of Open-Source Serverless Platforms: An Empirical Investigation, Muhammad Hamza, Muhammad Azeem Akbar, Kari Smolander and Arif Khan

  8. A Systematic Literature Review on Static Application Security Testing (SAST) Tools: Evaluation, Benchmarks, Challenges, and Future Directions, Doaa Dalaq, Kaniz Fatima Daya, Alaa Dalaq, Muhammed Nazmul Arefin and Mahmood Khan Niazi

  9. An Explainable AI-based Network Intrusion Detection System for Botnet Attacks, Dorieh Alomari, Maryam Ahmed Alabdullatif and Fakhri Alam Khan

Previous Editions

2024 - Salerno, Italy
2023 - Oulo, Finland
2022 - Gothenburg, Sweden
2020-2021 - Online

Questions? Use the International Workshop on Software Security Engineering contact form.
Important Dates AoE (UTC-12h)
Fri 20 Jun 2025
Workshop date
Sun 27 Apr 2025
Camera Ready Deadline
Sun 27 Apr 2025
Early Registration Deadline
Sun 13 Apr 2025
Notifications to authors
Sun 16 Mar 2025
Papers submission
Submission Link
https://softwareengineeringresearch.net/SSE25/
Organizing Committee
Program Committee
:
: