The 22nd International Conference on Information Systems Security (ICISS-2026)

December 16 – 20, 2026, Chennai Mathematical Institute, India

Call for Papers (draft)

Important Dates for Regular Paper Submission (AoE):
Submission Deadline: July 10, 2026
Notification of Acceptance: September 10, 2026
Camera-ready Submission Deadline: September 30, 2026

The 22nd International Conference on Information Systems Security (ICISS-2026) invites researchers working in systems security domain to submit their previously unpublished, original work in systems security domain. The submission must not be under active review elsewhere. ICISS follows double-blind review process and provides at least 3 reviews. All submissions will be evaluated based on their merits, particularly their importance to practical aspects of computer and communications security and privacy, novelty, correctness, relevance, and presentation clarity. We welcome SoK submissions. Detailed submission guidelines are listed below on this page.

About ICISS-2026: The 22nd ICISS will be held at the Chennai Mathematical Institute, India between December 16 and 20, 2026. ICISS provides a forum for researchers and industry practitioners to present their accepted work to an audience working in systems security domain. ICISS starts with a set of excellent set of tutorials. The main program is accompanied by excellent Keynotes/ Invited talks from leading figures in security domain. The conference also runs two distinct tracks: Industry/Demo track and PhD Forum track along with the main technical research track.

Notable changes: This year we are bringing in the following changes:

  • We are encouraging authors to critique their own papers using LLMs before submission to check the quality. Authors must accept the Ethical declaration & AI Use policy: requires authors to adhere to two core principles regarding the use of AI and Large Language Models (LLMs): human accountability and transparency. Authors (must be human) remain ultimately responsible for the contents of the papers since LLMs cannot be responsible.
  • We are introducing Reciprocal Review Process to make reviewing more scalable. TPC chairs may request the authors of submitted papers to review others’ submissions. Submission to the conference indicates a willingness of qualified authors, especially senior ones, to help out with the review process, if needed. These will augment the reviews from TPC members and provide an additional perspective.

A broad but non-exhaustive list of areas of interest is as below:

  • Systems Security
    • OS, VM, containers, cloud
    • Network: SDN, NFV, SD-WAN
    • IoT, RFID, SCADA systems
    • IDS, IPS,  Honeypot, Botnet
  • Access control
    • Authentication, Authorization
    • PKI & Trust management
    • Zero Trust
  • Application Security
    • Vulnerabilities, Malware
    • Ransomware, APTs, MITRE
    • Information flow control
    • Threat Modelling, Attack graphs
  • Security in AI/ML
    • Adversarial learning/inputs
    • Prompt injection, RLHF strategies
    • Model stealing, Model poisoning
  • Formal Methods for Security
    • Verification of Security Protocols
    • FM for AI/ML Models & Apps
  • Hardware Security
    • Remote attestation, PUFs
    • Trojans, Backdoors, FPGA
    • TEE, TRNG, SGX
  • Privacy
    • PETs, anonymization tech
    • De-identification attacks
    • Surveillance & Censorship
    • Inference, correlation attacks
  • Blockchain
    • Cryptocurrency, stablecoins
    • Interoperability, scalability
    • Smart contracts, concurrency
    • DIDs, NFTs, CBDCs, AML
  • Emerging Tech/Standards
    • ChatGPT, LaMDA, Dall-E 2, etc
    • Security-by-design, SBOM
    • STIX/TAXII
  • Use Cases
    • e-voting, e-gov, smart cities
    • Healthcare, UPI payments

Submission Guidelines

All submissions must adhere to the following guidelines. Submissions found in violation of any of these guidelines will be desk-rejected without review.

  • Submissions must be written in English and must not exceed 20 pages in length using LNCS format (excluding well-marked appendices and references). However, the camera-ready version will have maximum 20 pages (including well-marked appendices and references). Authors are advised not to tinker with the LNCS format to adjust the paper length requirement.
  • Submissions must be uploaded as a single PDF file. Please make sure your submission can be opened using Adobe Reader. Please make sure your submission, and all embedded figures, are intelligible when printed in grayscale.
  • A double-blinded peer review process will be followed. Therefore, authors must remove any information that deanonimizes their submission easily: remove self-references, and the submitted manuscript should not reveal author names via an online search leading to their arXiv submission or Github repository or funding acknowledge, for example. Submissions not properly anonymized may be rejected without review. Consider using “Anonymous 4OpenScience”.
  • All submissions will be checked for plagiarism
  • Submissions must be uploaded by the deadline (11:59 PM AoE).
  • Authors must choose a correct submission track.
  • Submissions may be rejected for being out of scope, at the discretion of the TPC Chairs.
  • The list of authors must be finalised at the time of submission and new authors cannot be added later.
  • Submissions that raise ethical concerns, such as those involving human subjects, user data, or real-world vulnerability analysis, must include a dedicated “Ethical Considerations” section. This section should discuss the balance of risks vs. benefits and the steps taken to minimize potential harm (e.g., responsible disclosure, data anonymization). This section does not count toward the page limit and must be placed at the end.
  • Systematization of Knowledge (SoK) and Survey submissions must have their title prefixed with “SoK: “.

At the time of submission, you will have to:

  • declare potential conflict-of-interests with TPC members.
  • declare IRB status along with responsible disclosures while dealing with vulnerabilities and user privacy.
  • declare use of Gen-AI in the work submitted for review. Works submitted should constitute self-respecting work that upholds the author’s scientific values and personal dignity, that respects the time and energy of reviewers, and respects the importance of scientific inquiry and integrity.
  • agree that at least one author of “each” accepted paper MUST register for and commit to attending the conference at regular registration fee.
  • agree that the chairs retain the right to desk-reject any submissions which attempt to disrupt the reviewing process (e.g., attempting prompt injections or crashing PDF viewers with malicious PDFs).
  • provide consent (optional) to review other submissions as assigned by the TPC chairs.
  • provide consent (optional) to review their work by a private LLM.

In addition to considering ethics, we encourage authors to refer to the following two policies.

The proceedings will appear in the Springer LNCS series. ICISS has a best paper award.  The award will be announced during the conference.

Partial travel Grants will be available for students whose papers are accepted.

ICISS also accepts submissions under Industry/Demo track demonstrating implementations/PoC in the area of systems security, and a separate track for PhD students presenting their early/WiP through lightning talks & poster. ICISS has generous funds supporting student to attend pre-conference school (tutorials, etc.) and the main conference.

Contact: iciss.conf@gmail.com

Views: 530