Computer Security. ESORICS 2021 International Workshops

This book constitutes the refereed proceedings of six International Workshops that were held in conjunction with the 26th European Symposium on Research in Computer Security, ESORICS 2021, which took place during October 4-6, 2021. The conference was initially planned to take place in Darmstadt, Germany, but changed to an online event due to the COVID-19 pandemic. The 32 papers included in these proceedings stem from the following workshops:

• the 7th Workshop on the Security of Industrial Control Systems and of Cyber-Physical Systems, CyberICPS 2021, which accepted 7 papers from 16 submissions;
• the 5th International Workshop on Security and Privacy Requirements Engineering, SECPRE 2021, which accepted 5 papers from 8 submissions;
• the 4th International Workshop on Attacks and Defenses for Internet-of-Things, ADIoT 2021, which accepted 6 full and 1 short paper out of 15 submissions;
• the 3rd Workshop on Security, Privacy, Organizations, andSystems Engineering, SPOSE 2021, which accepted 5 full and 1 short paper out of 13 submissions.
• the 2nd Cyber-Physical Security for Critical Infrastructures Protection, CPS4CIP 2021, which accepted 3 full and 1 short paper out of 6 submissions; and

• the 1st International Workshop on Cyber Defence Technologies and Secure Communications at the Network Edge, CDT & SECOMANE 2021, which accepted 3 papers out of 7 submissions. The following papers are available open access under a Creative Commons Attribution 4.0 International License via link.springer.com: Why IT Security Needs Therapy by Uta Menges, Jonas Hielscher, Annalina Buckmann, Annette Kluge, M. Angela Sasse, and Imogen Verret

  Transferring Update Behavior from Smartphones to Smart Consumer Devices by Matthias Fassl, Michaela Neumayr, Oliver Schedler, and Katharina Krombholz

  Organisational Contexts of Energy Cybersecurity by Tania Wallis, Greig Paul, and James Irvine

  SMILE - Smart eMaIl Link domain Extractor by Mattia Mossano, Benjamin Berens, Philip Heller, Christopher Beckmann, Lukas Aldag, Peter Mayer, and Melanie Volkamer

  A Semantic Model for Embracing Privacy as Contextual Integrity in the Internet of Things by Salatiel Ezennaya-Gomez, Claus Vielhauer, and Jana Dittmann Data Protection Impact Assessments in Practice - Experiences from Case Studies by Michael Friedewald, Ina Schiering, Nicholas Martin, and Dara Hallinan

Inhalt
CyberICPS 2021.- Communication and Cybersecurity Testbed for Autonomous Passenger Ship.- A Cybersecurity Ontology to Support Risk Information Gathering in Cyber-Physical Systems.- GLASS: Towards Secure and Decentralized eGovernance Services using IPFS.- Integrated Design Framework for Facilitating Systems-Theoretic Process Analysis.- Attack path analysis and cost-efficient selection of cybersecurity controls for com-plex cyberphysical systems.- Analysis of Cyber Security features in Industry 4.0 Maturity Models.- Cybersafety analysis of a natural language user interface for a consumer robotic System.- SECPRE 2021.- Integrating Privacy-by-Design with Business Process Redesign.- Disclosing Social and Location Attributes on Social Media: The Impact on Users' Privacy.- BioPrivacy: Development of a Keystroke Dynamics Continuous Authentication System.- Privacy and Informational Self-determination through Informed Consent: the Way Forward.- Building a Privacy Testbed: Use Cases and Design Considerations.- ADIoT 2021.- Assessing Vulnerabilities and IoT-enabled Attacks on Smart Lighting Systems.- TAESim: A Testbed for IoT Security Analysis of Trigger-action Environment.- Adversarial Command Detection Using Parallel Speech Recognition Systems.- Security Measuring System for IoT Devices.- Battery Depletion Attacks on NB-IoT Devices using Interference.- Security- and privacy-aware IoT application placement and user assignment.- Room Identification with Personal Voice Assistants (Extended Abstract).- SPOSE 2021.- Why IT Security Needs Therapy.- Transferring Update Behavior from Smartphones to Smart Consumer Devices.- Organisational Contexts of Energy Cybersecurity.- SMILE - Smart eMaIl Link domain Extractor.- A Semantic Model for Embracing Privacy as Contextual Integrity in the Internet of Things (Short Paper).- Data Protection Impact Assessments in Practice - Experiences from Case Studies.- CPS4CIP 2021.- Resilience quantification for critical infrastructure: Exemplified for airport Operations.- Severity level assessment from semantically fused video content analysis for physical threat detection in ground segments of space systems.- Diminisher: A Linux Kernel based Countermeasure for TAA Vulnerability.- The Rise of ICS Malware: A Comparative Analysis.- CDT& SECOMANE 2021.- Framework proposal to measure the Stress as Adversarial Factor on Cyber Decision Making.- Measuring the impact of Tactical Denial of Sustainability.- A Mathematical Framework for Evaluation of SOAR Tools with Limited Survey Data.