The 2nd International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS 2021)

June 3th, 2021

In conjunction with the 43rd International Conference on Software Engineering (ICSE 2021)


This is the second installment of the International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS).

The 4th Industrial Revolution refers to the era of revolution created by the convergence of cyber-physical systems and the advances in the information and communication technologies. The 4th Industrial Revolution aims at the intelligent world through connection, decentralization, sharing, and opening. Software is the driving force of the 4th Industrial Revolution. Like other industries or domains, critical infrastructures such as energy, transportation, and public health are also going through digital transformation to optimize their services and processes as well as to reduce costs. However, adoption of digital technology for critical systems has exposed them to cyber, physical and combined cyber-physical threats. A cyberattack on a critical system can inflict severe catastrophe to society, economy and national security. Assuring safety and reliability of these systems is also of utmost importance. This workshop opens discussions among researchers, practitioners and students who are working on challenges and solutions for the 4th Industrial Revolution, including cyber threats to critical systems; secure software engineering; and attack detection and response mechanisms.

This workshop invites paper contributions from research scholars and practitioners working on challenges and solutions for engineering and cybersecurity of critical systems in the 4th Industrial Revolution. The workshop will be organized with regular tracks and panel discussions. The workshop invites papers within the following topics, but are not limited to:

  • Integrated and secured software engineering processes and methods for reliable critical infrastructure
  • Safety by design in software engineering
  • Security by design in software engineering 
  • Software engineering techniques enabling digital twin
  • Simulation technology for analysis on safety, reliability, security, etc.
  • Threats and risks modeling to critical infrastructures
  • Cybersecurity risk visualization during development and operation
  • Human factors in software engineering

We accept position papers, research papers, and industrial experience papers. We highly value industrial experience and lessons learned, this includes also academic papers where research artefacts have been applied in an industrial context.



Registration for the workshop is available through ICSE registration system


Accepted Papers

Asset-driven Security Assurance Cases with Built-in Quality Assurance, Mazen Mohamad (Chalmers and University of Gothenburg),Örjan Askerdal (Volvo Trucks), Rodi Jolak (Chalmers and University of Gothenburg), Jan-Philipp Steghöfer (Chalmers and University of Gothenburg),  Riccardo Scandariato (Hamburg University of Technology)

A Systematic Literature Review on Malicious Use of Reinforcement Learning, Orstein Meyer (Norwegian University of Science and Technology), Nektaria Kaloudi (Norwegian University of Science and Technology), Jingyue Li (Norwegian University of Science and Technology)

Practitioner Perception of Vulnerability Discovery Strategies, Farzana Ahamed Bhuiyan (Tennessee Technological University), Justin Murphy (Tennessee Tech University), Patrick Morrison (IBM), Akond Rahman (Tennessee Tech University)

Understanding Developer Security Archetypes, Ita Ryan (University College Cork), Utz Roedig (University College Cork),  Klaas-Jan Stol (University College Cork)

Attack-driven Test Case Generation Approach using Model-checking Technique for Collaborating Systems, Belay Zelalem Mihret (KAIST), Lingjun Liu (KAIST)

Security Risk Analysis of Multi-Stage Attacks based on Data Criticality, Charilaos Skandylas (Linnaeus University), Luyuan Zhou (Linnaeus University), Simon Roe (Outpost24), Narges Khakpour (Linnaeus University)

‘Under-reported’ Security Defects in Kubernetes Manifests, Dibyendu Brinto Bose (Bangladesh University of Engineering and Technology), Akond Rahman (Tennessee Tech University), Md. Shazibul Islam Shamim (Tennessee Tech University)

Venue (Online Event)

This workshopwill be organised virtually.


Papers must have a maximum length of 8 pages. Position papers and industrial track papers can have a page limit of 4 pages.

Submissions must conform to the IEEE formatting instructions IEEE Conference Proceedings Formatting Guidelines (title in 24pt font and full text in 10pt type, LaTeX users must use \documentclass[10pt,conference]{IEEEtran} without including the compsoc or compsocconf options).

The workshop papers will be published in ACM Digital Library and IEEE eXplore Digital Library.

Submission page:


Important dates

  • Workshop Papers Submission Deadline: 12 January 2021 19 January 2021
  • Workshop Papers Acceptance Notification: 22 February 2021  24 February 2021
  • Workshop Papers Camera Ready: 12 March 2021
  • Workshop Registration: 12 March 2021


Doo-Hwan Bae, KAIST, Republic of Korea

Eunkyoung Jee, KAIST, Republic of Korea

Bjørn Axel Gran, IFE, Norway

André Alexandersen Hauge, IFE, Norway

Vikash Katta, IFE, Norway

Coralie Esnoul, IFE, Norway


Program Committee

Sokratis Katsikas, NTNU, Norway

Vasileios Gkioulos, NTNU, Norway

Paul Smith, AIT Austrian Institute of Technology, Austria

Nikolaos Papakonstantinou, VTT, Finland

Ricardo Colomo-Palacios, HIOF, Norway

Doo-Hwan Bae, KAIST, Republic of Korea

Eunkyoung Jee, KAIST, Republic of Korea

Bjørn Axel Gran, IFE, Norway

Vikash Katta, IFE, Norway

André Alexandersen Hauge, IFE, Norway


This workshop is sponsored by the The Research Council of Norway funded project CybWin.

Katta, Vikash

Risk, Safety and Security,