International Workshop on AI for Web Application Infrastructure and Cloud Platform Security (AWACS 2022)Co-located with the 9th European Conf. On Service-Oriented and Cloud Computing (ESOCC 2022) - 22 March 2022, Lutherstadt Wittenberg, Germany
In recent decades, cloud computing has enabled the rapid proliferation of web-based information systems that are delivered as services, eliminating the need to purchase and maintain expensive or sophisticated hardware for data storage and processing. Cloud computing systems have therefore minimized the upfront investment of service users while promising high availability, scalability, and elasticity on demand, as well as high levels of performance, fault tolerance, and security.
Artificial intelligence (AI) and Machine Learning (ML) techniques can help DevOps and SecOps teams run cloud services and the underlying web-based information systems in a highly secure and efficient manner. They can gain an accurate and comprehensive understanding of security incidents along the entire system stack, such as unexpected application performance degradation due to network attacks or malicious end-user activity, and proactively initiate appropriate countermeasures.
Current AI- and ML-based approaches and tools mainly focus on detecting and mitigating attacks in isolated technical domains and layers, while attacks on web-based services often leave traces throughout the system. AI-based cross-domain attack detection and orchestrated mitigation therefore have the potential to improve the capabilities of security and risk management systems overall.
The workshop will focus on the general applicability and integration of AI/ML methods in the area of security and risk management in the context of modern web-based information systems. In addition to the automated, domain-specific detection of threats and the determination of countermeasures, a special focus will be placed on the fusion and integration of domain-specific detectors.
Our aim is to facilitate the exchange and evolution of relevant innovative ideas and to encourage participation of researchers both from academia and industry.
Topics include (but are not limited to) the following:
AI-based methods for web application and cloud platform security
- Approaches & applications utilizing federated ML
- Detection and mitigation of network attacks
- AI methods for generating simulations of network attacks
- AI for protocol analysis and verification
- AI methods for design and code analysis
- Governance of AI-based management methods
- AI-based automated (penetration) testing
- AI methods for secure user authentication and authorization
- Risk control in financial services and systems
- AI in payment transaction systems
- Detection of financial and other types of fraud
- Identity management and misuse prevention
- Intelligent security measures in the IoT
- Experience reports and lessons learned in real-world settings
- Other scenarios and use cases
- Related research projects and initiatives
Important DatesPaper Submission (extended):
Acceptance Notification: 25 February 2022
Camera Ready Version: 11 March 2022
Submission GuidelinesThe workshop is open to contributions that focus on a broad spectrum of AI-based applications for management and especially securing of web infrastructures and information systems. Papers should explain and exemplify relevant issues and open problems, present established solutions, and/or discuss success stories. Submitted papers must be no more than twelve (12) pages including bibliography references and need to follow the Springer LNCS author guidelines. Submission should be uploaded to EasyChair until the submission deadline.
The accepted papers will be included in the post proceedings planned to be published by Springer Verlag in the CCIS series.
- Jürgen Angele (adesso SE)
- Jan Griebsch (1&1 IONOS SE)
- Martin Johns (TU Braunschweig)
- Zoltán Nochta (SAP SE)
- Oliver Waldhorst (Karlsruhe University of Applied Sciences)
- Christian Zirpins (Karlsruhe University of Applied Sciences)
- Martina Zitterbart (Karlsruhe Institute of Technology)
- Samuel Kopmann (Karlsruhe Institute of Technology)
- David Monschein (Karlsruhe University of Applied Sciences)
Program Committee (to be completed)
- Hannes Federrath, University of Hamburg, Germany
- Dieter Fensel, University of Innsbruck, Austria
- Sigfried Handschuh, University St. Gallen, Switzerland
- Martin Haerterich, SAP, Germany
- Hans-Joachim Hof, Technische Hochschule Ingolstadt, Germany
- Boris Koldehofe, University of Groningen, Netherlands
- Heiko Koziolek, ABB, Germany
- Andreas Oberweis, Karlsruhe Institute of Technology, Germany
- Joachin Posegga, University of Passau, Germany
- Konrad Riek, Technical University of Braunschweig, Germany
- Daniel Schlör, University of Würzburg, Germany
- Christian Wressnegger, Karlsruhe Institute of Technology, Germany