CfP: CPSS 2017

I am on the PC of the Cyber-Physical System Security Workshop (CPSS), and the CfP was just released

Cyber-Physical Systems (CPS) consist of large-scale interconnected systems of heterogeneous components interacting with their physical environments. There are a multitude of CPS devices and applications being deployed to serve critical functions in our lives. The security of CPS becomes extremely important. This workshop will provide a platform for professionals from academia, government, and industry to discuss how to address the increasing security challenges facing CPS. Besides invited talks, we also seek novel submissions describing theoretical and practical security solutions to CPS. Papers that are pertinent to the security of embedded systems, SCADA, smart grid, and critical infrastructure networks are all welcome, especially in the domains of energy and transportation.

Submission deadline is December 1. CPSS will be held in conjunction with ACM AsiaCCS’17
Abu Dhabi, UAE, April 2, 2017.

Batadal announced

We have now officially announced the BATADAL competition.

The BATtle of the Attack Detection ALgorithms (BATADAL) will objectively compare the performance of algorithms for the detection of cyber attacks in water distribution systems. Participants will contribute an attack detection algorithm for a given water network following a set of rules that determine the exact goal of the algorithms.

Training datasets are now available. Deadline for first participant submissions is October 2 2016

SVN over SSH

Disclaimer: might only be interesting to SVN users

I use SVN for my personal documents, research and teaching material. I finally got around to configure the server in what I expect to be a secure and usuable setup for multiple users. In particular, I am now using SSH for authentication, without giving users a shell or requiring software like apache to be installed. The setup is super easy, and I would like to thank this blog for the detailed and helpful instructions. In the end, you just create SSH public/private keys for your SVN users, add an additional dummy linux user, set up the keys in that user’s SSH config in a specific way, and create corresponding SVN users with dummy passwords. Then, everything works out of the box. Way better than going with plain SVN or using monsters like apache. It only took 10 years to realize that this is possible 😉

bibrest – RESTful bibtex server

I recently got bibrest into a usable state, a pet project that is aimed at providing dynamic .bib files for websites. The goal is to have one central point to keep all the publication data, which then gets automatically updated on various websites. The secret long term goal is to use bibrest to keep all of ISTDs or even SUTDs publication data. As bibrest is using an HTTP api, it should be easy to integrate in other tools (e.g. to produce yearly reports). The RESTful part is currently limited to way the resources that are represented, and GET. I plan to add POST/PUT/PATCH in the future, but that will then also require authentication.

In particular, I use bibrest to provide the .bib data for the publication list on this webpage, together with the lists for individual projects (e.g., here). I also use it for similar lists on the scy-phy webpage. The API allows to query a large .bib database for a list of authors, projects (which are stored as new field in the .bib file), and years. Results are sorted chronologically or anti-chronologically. Example calls to the API look like this:,rocchetto&project=aspire&start=2013&inverted=True

The returned data is a bib.bib file with proper MIME type.

bibrest is based on python (flask+pybtex), and available as open source here.