Sign In

MeSSa 2017 - 4th International Workshop on Measurability of Security in Software Architectures

11/09/2017 09:00 - 15/09/2017 16:00 Canterbury, United Kingdom

Co-located with The 11th European Conference on Software Architecture (ECSA 2017)



Cybersecurity incidents are increasing, and at the same time, our society depends more and more on cyber-physical systems. Early evidence of attack trends and vulnerabilities enables proactive and effective security solutions. Modern systems are no longer deployed as separate systems, but the trend is towards connecting everything via diverse networks and interfaces, and systems are increasingly built from generic components. Systematic approaches to measure cybersecurity are needed in order to support efficient construction and maintenance of secure software systems.

Security measurement of software architectures is needed to produce sufficient evidence of security level as early as in the design phase. Security at system and network level has received much attention but the role of software architecture in security has received little consideration. Yet it is increasingly important in the overall picture, requiring sets of design patterns, measurements, metrics, best practices, and means to integrate this cost-effectively in the overall design and operational profiles.

Security metrics and measurements are exploited in situational awareness monitoring and self-adaptive security solutions. The area of security metrics and security assurance metrics research is evolving, but still lacks widely accepted metrics definitions and applicable measuring techniques. Strong collaboration between security experts, software architects and system developers is needed.

MeSSa 2017 solicits security-enhancing contributions on the following issues (but not limited to):

  • Security, trust and privacy metrics
  • Measurement systems and associated data gathering
  • Metrics for adaptive security
  • Internet of Things
  • Measurability-increasing mechanisms for software architectures
  • Security trade-off analysis
  • Situational awareness and threat intelligence
  • Situational awareness measurement
  • Internet of Things security
  • Blockchain
  • Cloud security
  • Software Defined Networks
  • Evolutionary techniques
  • Forensics and data analytics
  • Visualization approaches for security measurements
  • Empirical case studies and experimental results from security measurements



Submission deadline: July 5, 2017  June 23, 2017

Notification to authors: July 17, 2017

Camera-ready papers: July 28, 2017