The 1st International Workshop on Cyber-Physical Security for Critical Infrastructures Protection

Co-located with ESORICS 2020
Scope

CPS4CIP’20 is the first workshop dedicated to the cyber-physical security for protecting critical infrastructures that support finance, energy, health, air transport, communication, gas, and water. The secure operation of these critical infrastructures is essential to the security of a nation, its economy, and the public’s health and safety. Security incidents in the critical infrastructures can directly lead to a violation of users’ safety and privacy, physical damages, significant economic impacts on individuals and companies, and threats to human life while decreasing trust in institutions and questioning their social value. Because of the increasing interconnection between the digital and physical worlds, these infrastructures and services are more critical, sophisticated and interconnected than ever before. This makes them increasingly vulnerable to attacks, as confirmed by the steady rise of cyber-security incidents, such as phishing or ransomware, but also cyber-physical incidents, such as physical violation of devices or facilities in conjunction with malicious cyber activities.

To address all these challenges, the CPS4CIP workshop has the objective of bringing together security researchers and practitioners from the various verticals of critical infrastructures (such as the financial, energy, health, air transport, communication, gas and water domains) to rethink cyber-physical security in the light of latest technology developments; e.g., Cloud Computing, Blockchain, Big Data, AI, Internet-of-Things (IoT). Specifically, value will be given to contributions focusing on the interplay between the digital and physical aspects of security problems and capable to foster new, intelligent, collaborative and more dynamic approaches to detect, prevent and mitigate security incidents, such as (i) intelligent monitoring and data collection of security-related information; (ii) predictive analytics over the collected data based on AI-based (i.e., deep learning mechanisms) that enable the identification of complex attack patterns; (iii) triggering of preventive and mitigation measures in advance of the occurrence of the attack; (iv) allowing all stakeholders to collaborate in vulnerability assessment, risk analysis, threat identification, threat mitigation, and compliance.

The workshop will provide a forum for dissemination, demonstration and discussion of original scientific and experimental results of cyber-physical security of critical infrastructures and services.

Topics of Interest

CPS4CIP invites submissions that present innovative ideas, proof of concepts, use cases, experience reports, and results from a variety of topics relevant to the security of critical infrastructures and services. Topics of interest include, but are not limited to:

  • AI, deep learning for predictive security of Critical Infrastructures

  • Integrated (cyber & physical) security

  • Collaborative risk assessment/mitigation in supply chains

  • Complex threats and their cascading effects

  • Adaptive anomaly detection

  • Blockchain solutions for cyber and data security of critical infrastructures

  • Risk Assessment and management

  • Identification, assessment, and mitigation of cyber-physical threats

  • Automated vulnerability assessment and penetration testing services

  • Privacy preserving data collection and analytics

  • Dynamic security knowledge base

  • Measuring Security Levels in critical infrastructures

  • Adaptive security-related data collection

  • AI CCTV analytics

  • Security compliance services

  • Automation for detection, prevention and mitigation measures

Submission Guidelines

Submissions are to be made to the submission web site in pdf format. At least one author of each accepted paper is required to register and present their work at the workshop; otherwise the paper will not be included in the proceedings.

Submitted papers must not substantially overlap with papers that have been published or that have been simultaneously submitted to a journal or a conference with proceedings. Submissions should be at most 16 pages long (full paper), or 8 pages (short paper) including the bibliography and appendices, and should follow the LNCS style.

Pre-proceedings will be made available at the workshop. Accepted conference papers are planned to be published by Springer in the LNCS collection.

Support

The workshop is supported by the projects of the European Cluster for Securing Critical Infrastructures (ECSCI), namely