Home      Log In      Contacts      FAQs      INSTICC Portal
Special Session on
Innovative CyberSecurity and Privacy for Internet of Things: Strategies, Technologies, and Implementations
 - WICSPIT 2017

24 - 26 April, 2017 - Porto, Portugal

Within the 6th International Conference on Smart Cities and Green ICT Systems - SMARTGREENS 2017

WICSPIT is a shared event between SMARTGREENS and IoTBDS.


Roger Hallman
Dartmouth College & Naval Information Warfare Center (NIWC) Pacific
United States
Brief Bio
Roger Hallman is a cybersecurity researcher at the Naval Information Warfare Center (NIWC) Pacific, as well as a PhD student in the Thayer School of Engineering at Dartmouth College in Hanover, New Hampshire. Mr. Hallman's research includes contributions to applied homomorphic encryption and data privacy, decision support for cybersecurity, and malware analysis; his current research interests include the trustworthiness and resilience of distributed machine learning systems. He also supports inter-agency programs within the United States Department of Defense by participating in proposal review and source selection committees as well as providing technical oversight of funded research efforts.
Hala Mostafa
United Technologies Research Center
United States
Brief Bio
Dr. Hala Mostafa is a Research Scientist in the Decision Support and Machine Intelligence Group at United Technologies Research Center where her expertise is in probabilistic reasoning under uncertainty, automated decision making and machine learning. She works on applications of these areas to short-term customer projects as well as longer-term research projects, including principled distributed and single-agent decision-making approaches for problems in cyber-security and IoT. Before UTRC, Hala worked at Raytheon BBN Technologies where she was the Technical Lead on an AFRL-funded project that developed distributed coordination approaches for managing contested computer networks.
Kurt Rohloff
New Jersey Institute of Technology
United States
Brief Bio
Dr. Kurt R. Rohloff is the co-founder and director of the NJIT Cybersecurity Research Center and an associate professor of computer science at NJIT. His areas of technical expertise include homomorphic encryption, secure computing, high-assurance software engineering, control engineering and prototype system building. He is the PI on a multi-disciplinary DARPA project to develop an open-source software library for highly optimized lattice encryption. Prior to joining NJIT, he was a senior scientist at Raytheon BBN Technologies. https://web.njit.edu/~rohloff/
Victor Chang (honorary)
Xi'an Jiaotong-Liverpool University
Brief Bio
Victor Chang is a Senior Associate Professor, Director of Ph.D. between June 2016 and May 2018) and Director of MRes at International Business School Suzhou (IBSS), Xi’an Jiaotong-Liverpool University (XJTLU), Suzhou, China, since June 2016. He is also a very active and contributing key member at Research Institute of Big Data Analytics (RIBDA), XJTLU. He's an Honorary Associate Professor. Previously he worked as a Senior Lecturer at Leeds Beckett University, UK, for 3.5 years. Within 4 years, he completed Ph.D. (CS, Southampton) and PGCert (Higher Education, Fellow, Greenwich) while working for several projects at the same time. Before becoming an academic, he has achieved 97% on average in 27 IT certifications. He won a European Award on Cloud Migration in 2011, IEEE Outstanding Service Award in 2015, best papers in 2012 and 2015, the 2016 European award. He is a visiting scholar/Ph.D. examiner at several universities, an Editor-in-Chief of IJOCI & OJBD journals, Editor of FGCS, Associate Editor of TII, founding chair of two international workshops and founding Conference Chair of IoTBDS and COMPLEXIS since Year 2016. He has published 3 books as sole authors and the editor of 2 books on Cloud Computing and related technologies. He gave 16 keynotes at international conferences. He is widely regarded as one of the most active and influential young scientist and expert in IoT/Data Science/Cloud/security/AI/IS, as he has experience to develop 10 different services for multiple disciplines.


Cyber-attackers are steadily getting more creative and ambitious in their exploits and causing real-world damage (e.g., the German steel mill hack in 2014, the Ukrainian Power Grid hack in 2015). Proprietary and personally identifiable information are vulnerable to leakage as well (e.g., the Sony hack in 2014, the US Office of Personnel Management in 2014). The Internet of Things (IoT), a platform which allows everything to process information, communicate data, and analyze context opens up new vulnerabilities for both security and privacy. Smart buildings and smart cities, for example, will collect and process data for millions of individuals. Industrial systems, which were never intended to be linked via common protocols, are recognized as suddenly being open to security threats that can limit service availability and possibly cause considerable damage. Autonomous systems allowed to operate with minimal oversight are ripe targets for cyber-attacks. Data stored and processed in confidence in the cloud may be subject to exfiltration, leading to public embarrassment or the exposure of proprietary information.
As cyber-events increase in number and severity, security engineers must incorporate innovative cybersecurity strategies and technologies to safeguard their systems and confidential information. A strategy to address a cybersecurity vulnerability, once identified, must understand the nature of the vulnerability and how to mitigate it. The “security tax” or “privacy tax” (system and service degradation) caused by the implementation of the mitigating security technologies may be so great that the end user bypasses the technologies and processes meant to ensure the system’s security and privacy. A practical reality of the adoption of IoT is that it will require integration of new technologies with existing systems and infrastructure, which will continue to expose new security and privacy vulnerabilities; re-engineering may be required. The human element of IoT, the user, must be considered, and how the user and the IoT system interact to optimize system security and user privacy must be defined. Cyber-attackers and cyber victims are often in different countries, the transnational nature of many cyber-events necessitate the consideration of public policy and legal concerns as well.
This special session aims to showcase new and emerging strategies and technologies for forecasting, mitigating, countering, and attributing cyber-events that threaten security and privacy within the realm of IoT. The institutional benefits of IoT adoption are clear, however security and privacy concerns are constantly coming to light. As organizations—both public and private, large and small—adopt new IoT technologies, we hope that this special session can serve as an opening conversation between government, industry, and academia for the purpose of addressing those concerns.

Topics of Interest

Topics of interest include (but are not limited to):
Cyber–security approaches
  • Honeypots, Honeynets and Honeypatches
  • Deception-based approaches
  • Encrypted Computing and Secure Computation
  • Active and Passive Cybersecurity
  • Firmware vetting
  • Privacy-Enhancing Technologies
  • Intelligence and Counter-Intelligence
  • Security and Privacy Engineering
Cyber-security Settings
  • Cyber-Security and Privacy in Cyber-Physical Systems
  • Industrial Internet of Things (IIoT)
  • Smart Cities
  • Cyber-Physical Power Systems
Data analytics for cyber-security
  • Predictive Cyber-Security
  • Event Analysis
  • Event Attribution and Cyber-Forensics
Cyber-security metrics
  • Security and Privacy Metrics and Analysis
  • Metrics of defense effectiveness
  • Quantifying the ‘security/privacy tax’
Human/Societal issues
  • Legal and Policy Topics related to Cyber-Security and Privacy
  • Human Factors in Cyber-Security and Privacy
  • Inter-Organizational Cyber-Threat Information Sharing
Other topics
  • Integration of New Technology into Existing Systems
  • Situational Awareness
  • System Situational Awareness
  • Emerging Threats
  • Event Recovery
  • Security as a Service (SaaS)
  • Private Data as a Service (PDaaS)


Paper Submission: February 27, 2017 (expired)
Authors Notification: March 1, 2017 (expired)
Camera Ready and Registration: March 13, 2017 (expired)


Marina Blanton, University at Buffalo, The State University of New York, United States
An Braeken, Vrije Universiteit Brussel, Belgium
Daniel Conte de Leon, University of Idaho, United States
Tiago Cruz, University of Coimbra, Portugal
Ishbel Duncan, University of St. Andrews, United Kingdom
Sunny Fugate, SPAWAR Systems Center Pacific, United States
Kevin Hamlen, University of Texas at Dallas, United States
Hongxin Hu, Clemson University, United States
Andreas Jacobsson, Malmö University, Sweden
Jaclyn Kerr, Lawrence Livermore National Laboratory; Stanford University, United States
Xenofon Koutsoukos, Vanderbilt University, United States
Devu MANIKANTAN, United Technologies Research Center, United States
Jason Nurse, University of Oxford, United Kingdom
Kasper Rasmussen, Oxford University, United Kingdom
Mohammad Razzaque, Trinity College Dublin, Ireland
Jose Romero-Mariona, SPAWAR Systems Center Pacific, United States
Siamak Shahandashti, Newcastle University, United Kingdom
Paulo Simoes, University of Coimbra, Portugal
Dhananjay Singh, Hankuk Univ. of Foreign Studies, Seoul, Korea, Republic of
Inge Skjelfjord, Harvard University Advanced Leadership Initiative, United States
Jia Song, University of Idaho, United States
Pawel Szalachowski, Singapore University of Technology and Design, Singapore
April Tanner, Jackson State University, United States
Clark Thomborson, University of Auckland, New Zealand


Prospective authors are invited to submit papers in any of the topics listed above.
Instructions for preparing the manuscript (in Word and Latex formats) are available at: Paper Templates
Please also check the Guidelines.
Papers must be submitted electronically via the web-based submission system using the appropriated button on this page.


After thorough reviewing by the workshop program committee, all accepted papers will be published in a special section of the conference proceedings book - under an ISBN reference and on digital support.
All papers presented at the conference venue will be available at the SciTePress Digital Library (http://www.scitepress.org/DigitalLibrary/).
SCITEPRESS is a member of CrossRef (http://www.crossref.org/) and every paper is given a DOI (Digital Object Identifier).


e-mail: iotbd.secretariat@insticc.org