Summary of WESPr-18: The International Workshop on Evidence-based Security and Privacy in the Wild Hironori Washizaki Nobukazu Yoshioka Eduardo B. Fernandez Tomoko Kaneko Waseda Univeristy / National National Institute of Informatics Florida Atlantic University Information-technology Institute of Informatics / SYSTEM Tokyo, Japan Boca Raton, USA Promotion Agency INFORMATION / eXmotion nobukazu@nii.ac.jp fernande@fau.edu Tokyo, Japan Tokyo, Japan t-kaneko@ipa.go.jp washizaki@waseda.jp Shuichiro Yamamoto Nagoya University Nagoya, Japan yamamotosui@icts.nagoya- u.ac.jp Abstract—This paper summarizes the objectives and results tackle such difficulties on security and privacy for complex of the WESPr-18: The International Workshop on Evidence- systems in an uncertain world in a dependable way, such as based Security and Privacy in the Wild held on December 4th in models of evidence-based reasoning, argumentation, Nara, Japan. The workshop was collocated with APSEC 2018. traceability or/and big data. Security evidences make a system trusted and dependable in a big data era. Keywords—security and privacy, IoT systems, cloud computing, AI and machine learning systems, patterns This workshop aimed to bring together researchers and practitioners in the areas of evidence-based modelling, security I. INTRODUCTION patterns, reasoning, argumentation, traceability, forensics in big data for secure and privacy-aware software development for Smart and ubiquitous software systems manages everything complex and uncertain systems, to exchange ideas and in our lives. In such complex software-intensive systems, preliminary results. Especially, we wanted to discuss how to software engineering is required to face wild challenges rather utilize security evidence in security engineering. than tame problems especially in terms of security and privacy in a dependable way since there are many difficulties on these The objective of the workshop reveals (1) important aspects for complex systems in an uncertain world. problems to be tackled for Security and Privacy on Complex and Uncertain Systems and (2) research challenges through In 2016, we addressed a part of these difficulties by holding presentations and discussion. The topics included security and the 1st International Workshop for Models and Modelling on privacy models, pattern-based security and privacy modelling, Security and Privacy (WM2SP-16) collocated with ER 2016 knowledge base for security, reasoning, argumentation, [1]. By extending the scope to evidence-based security and traceability, and forensics in big data and/or privacy-aware privacy in complex systems, we held the International software development, security and privacy modelling and Workshop on Evidence-based Security and Privacy in the Wild reasoning tools, and experiences for secure and/or privacy- (WESPr-18) on December 4th in Nara, Japan collocated with aware software development. APSEC 2018 [2]. There were around 12 participants including the authors of this paper as workshop organizers. III. PROGRAM In this paper, we summarize the objective and result of the WESPr-18. A. Technical Papers There were six paper submissions by the due date. The II. OBJECTIVE program committee conducted a rigorous peer review by Cloud Computing has led to a global shift in the computing assigning at least two reviewers to each submission. The world and the paradigm itself is evolving as new functions or workshop organizers finally selected the following four papers technologies become available. Intelligent and interactive for presentation and inclusion into the proceedings. environments like Internet of Things (IoT) have found  “Using a variety of patterns in a secure software application in various domains. Billions of smart devices are development methodology” by Eduardo B. Fernandez connected to the internet and are producing huge amounts of and Nobukazu Yoshioka data, increasing both complexity and uncertainty of humans, physical objects and machine-learning modules, especially on  “An Assurance Case Approach for Software Code security and privacy, which we must manage. We need to Security” by Ryota Miyabayashi, Noritoshi Atsumi, Shuji Morisaki and Shuichiro Yamamoto Copyright © 2018 for this paper by its authors. Use permitted under Creative Commons License Attribution 4.0 International (CC BY 4.0).  “Restructuring Attack Trees to Identify Incorrect or V. CONCLUSIONS AND FUTURE PROSPECTIVE Missing Relationships between Nodes” by Cai Hua, The workshop was successful to start research and Hironori Washizaki, Yoshiaki Fukazawa, Takao discussion on security and privacy in complex systems Okubo, Kaiya Haruhiko and Yoshioka Nobukazu, including IoT and AI-based systems. Figure 1 shows the group  “Threat analysis using STRIDE with STAMP/STPA” photo taken when closing the workshop (it does not include all by Tomoko Kaneko, Yuji Takahashi, Takao Okubo the participants). and Ryoichii Sasaki We considered further editions of the workshop. Possible venues include AsianPLoP 2019 [7], SISA 2019 [8] as a part of B. Invited talk and minitutorial COMPSAC 2019, and APSEC 2019 [9]. In addition to the technical paper presentations, the workshop had the following two invited talks and one mini- tutorial. • Invited talk: “Safety and Security Co-engineering – A new emerging discipline for safe and secure system development” by Kenji Taguchi • Invited talk: “Developing Secure and Privacy- Preserving Applications” by Emiliano Tramontana • Mini-tutorial: “Evaluating the degree of security of a system built using security patterns” by Eduardo B. Fernandez IV. DISCUSSSION RESULTS The workshop organizers and participants had open Figure 1. WESPr-18 group photo discussions to dig deeper into the topics addressed by the paper presentations and talks. REFERENCES During the discussion, we confirmed the necessity of [1] Takao Okubo, Atsuo Hazeyama and Eduardo B. Fernandez, “Models clarification of difficulties and research directions for security and Modelling on Security and Privacy – The 1st International and privacy in complex systems such as IoT, AI and Workshop for Models and Modelling on Security and Privacy (WM2SP- 16) ,” in “Advances in Conceptual Modeling – ER 2016 Workshops,” Blockchain-based systems. For example, we need to address edited bySebastian Link and Juan C. Trujillo, LNCS, Vol. 9975, p. 229, the nature of IoT ecosystem such as diversity and dynamic 2006. heterogeneous configuration of devices. In relation to that, we [2] Katsuhisa Maruyama, Naoyasu Ubayashi, Hironori Washizaki and also need to address the nature of attacks for Cyber-Physical Hongyu Zhang, “Proceedings of the 25th Asia-Pacific Software Systems (CPSs) such as physical attacks and information ones. Engineering Conference (APSEC 2018),” IEEE Computer Society, 2018. Although some papers in the workshop employed STRIDE [3, [3] Microsoft, "The STRIDE Threat Model", 2002, 4] as a threat model for clarifying threats in complex systems, https://msdn.microsoft.com/enus/library/ee823878(v=cs.20).aspx we discussed a possibility of extension of STRIDE for IoT and [4] Bruce Potter, “Microsoft SDL Threat Modelling Tool,” Network CPS. Security, Vol. 2009, No. 1, pp. 15-18, 2009. [5] Microsoft, “Microsoft Azure IoT Reference Architecture Version 2.1,” In addition to threat models, we also discussed the 2018, https://aka.ms/iotrefarchitecture necessity of having and classifying security and misuse [6] Mohab Aly, Foutse Khomh, Yann-Gaël Guéhéneuc, Hironori Washizaki, patterns for IoT and CPS. For such purpose, reference and Soumaya Yacout, “Is Fragmentation a Threat to the Success of the architectures and frameworks for IoT such as [5, 6] may be Internet of Things?,” IEEE Internet of Things Journal, Early Access, 2018. needed as foundations. [7] AsianPLoP 2019: 8th Asian Conference on Pattern Languages of We discussed that it is also important to consider people, Programs, http://asianplop.org organizational and operational aspects such as the operation [8] IEEE International Symposium on Smart IoT Systems and Applications phase and the concept of operation for IoT and CPS in terms of (SISA 2019), https://ieeecompsac.computer.org/2019/iot/ security and privacy concerns. [9] Asia-Pacific Software Engineering Conference, http://www.apsec- conferences.org/ Copyright © 2018 for this paper by its authors. Use permitted under Creative Commons License Attribution 4.0 International (CC BY 4.0).