CCSW 2025: The ACM Cloud Computing Security Workshop
in conjunction with the ACM Conference on Computer and Communications Security (CCS)

October 17, 2025, Taipei International Convention Center (TICC)

programme | dates | submission | organizers


The CCSW workshop aims to bring together researchers and practitioners in all security aspects of cloud-centric and outsourced computing, including:

  • Secure cloud resource virtualization mechanisms
  • Secure data management outsourcing
  • Practical privacy and integrity mechanisms for outsourcing
  • Foundations of cloud-centric threat models
  • Secure computation outsourcing
  • Remote attestation mechanisms in clouds
  • Sandboxing and VM-based enforcements
  • Trust and policy management in clouds
  • Secure identity management mechanisms
  • New cloud-aware web service security paradigms and mechanisms
  • Cloud-centric regulatory compliance issues and mechanisms
  • Business and security risk models and clouds
  • Cost and usability models and their interaction with security in clouds
  • Scalability of security in global-size clouds
  • Trusted computing technology and clouds
  • Binary analysis of software for remote attestation and cloud protection
  • Network security (DOS, IDS etc.) mechanisms for cloud contexts
  • Security for emerging cloud programming models
  • Cloud based side-channel attacks and countermeasures
  • Applied cryptographic schemes and protocols for the cloud

We would like to especially encourage novel paradigms and controversial ideas that are not on the above list. The workshop is to act as a fertile ground for creative debate and interaction in security-sensitive areas of computing impacted by clouds.


Programme

 09:00 Chairs' Welcome & Opening Remarks
 09:15 Keynote 1: Security Testing of Cloud-based Generative AI Services
 10:15 Tea/coffee break
 11:00 Technical Session 1
FssNBC: An Online Efficient and Secure Outsourced Naïve Bayes Classification via Function Secret Sharing
ThreatCompute: Leveraging LLMs for Automated Threat Modeling of Cloud-Native Applications
Lightweight Service Mesh for Intrusion Detection using KD-CNN in Cloud-Native Environments
 12:00 Lunch break
 13:30 Keynote 2: mlkem-native & mldsa-native: Open-source High-Speed High-Assurance PQC
 14:30 Technical Session 2
Revisiting SDN Security: Evaluating Attack Impact and Defense Effectiveness in Cloud and Enterprise Environments  
 15:00 Tea/coffee break
 15:30 Technical Session 3
WebAssembly Memory Tagging
Secure Fuzzy Deduplication: Definitions and Constructions
 16:15 Concluding Remarks

Keynotes

Keynote 1: Security Testing of Cloud-based Generative AI Services by Tianwei Zhang (Nanyang Technological University)

Abstract: Large Generative Models, exemplified by ChatGPT, Stable Diffusion, and Gemini, have advanced at an unprecedented pace in recent years. They now make it remarkably easy to generate high-quality content across diverse modalities, including text, images, and video, directly from user prompts. These capabilities are increasingly embedded into cloud-based services and applications, powering everything from conversational agents and search engines to software development assistants. Yet, the rapid adoption of generative AI also introduces significant security, ethical, and societal concerns. Issues such as data privacy, algorithmic bias, and the potential for malicious misuse of models have drawn widespread attention. In this talk, I will present recent efforts on systematically benchmarking and security testing of cloud-based generative AI services. These studies highlight not only the critical challenges facing today’s large-model ecosystems but also the opportunities for building more trustworthy, robust, and responsible AI systems.

Speaker bio: Dr. Tianwei Zhang is currently an associate professor at College of Computing and Data Science, Nanyang Technological University, Singapore. He received his Bachelor’s degree at Peking University in 2011, and Ph.D degree at Princeton University in 2017. His research focuses on building efficient and trustworthy computer systems. He has published more than 200 papers in top-tier security, AI, and system conferences and journals. He has received several research awards, including Distinguished Paper Award @ ASPLOS’23, Distinguished Paper Award @ ACL’24, Distinguished Artifact Award @ Usenix Security’24, Distinguished Artifact Award

Keynote 2: mlkem-native & mldsa-native: Open-source High-Speed High-Assurance PQC by Matthias Kannwischer (Chelpis Quantum Corp)

Abstract: This talk describes mlkem-native and mldsa-native, C/Assembly implementations of the ML-KEM and ML-DSA post-quantum cryptography standards. Both implementations are developed in collaboration with Amazon Web Services and belong to the Post-Quantum Code Package - a sub-project of the Post-Quantum Cryptography Alliance. mlkem-native and mldsa-native prioritize both performance and trustworthiness. For performance, we employ (super-)optimized assembly in performance-critical components - mlkem-native achieves state-of-the-art performance on Arm64 and x86_64 platforms, while mldsa-native is under active development. For trustworthiness, we apply formal verification: All C code is proved memory-safe and type-safe using CBMC, and Arm64 assembly in mlkem-native is proved functionally correct using HOL-Light. Additionally, we ensure protection against timing side-channels through extensive constant-time testing using Valgrind (including a patch allowing detection of secret-dependent divisions from the KyberSlash paper), fully integrated into our CI pipeline. Through formal verification and rigorous testing, these implementations enable the confident adoption of highly complex code that would otherwise be difficult to gain trust in.

Speaker bio: Dr. Matthias Kannwischer is the Research Director at the Taipei-based quantum-safe cryptography startup, Chelpis Quantum Corp. His group works on high-speed and high-assurance implementations of cryptography with a focus on quantum-safe constructions. Matthias has authored over 20 publications on quantum-safe cryptography implementations. In 2022, he obtained a PhD in post-quantum cryptography implementations from Radboud University, The Netherlands supervised by Peter Schwabe. Prior to joining Chelpis, Matthias was a postdoctoral researcher at Academia Sinica, Taiwan, and a researcher at the Max Planck Institute for Security and Privacy, Germany. Matthias contributes to open-source cryptographic software and is currently a maintainer of mlkem-native, mldsa-native, PQClean, and pqm4. He is also part of the design teams of the two promising quantum-safe signature schemes UOV and MAYO that have been shortlisted by NIST as promising round-2 candidates.


Important Dates

Submissions due: June 24, 2025 AoE

Author notification: August 8, 2025 AoE

Camera-ready: August 22, 2025

Workshop: October 17, 2025


Submissions

Submit your paper here.

CCSW is soliciting full papers of up to 12 pages which will be judged based on the quality and not on their length. Thus, high-quality papers are encouraged even with smaller than 12 pages length. Submissions must be single PDF files, no more than 12 pages long in double-column ACM format (the sigconf template from https://www.acm.org/publications/proceedings-template, with a simpler version at https://github.com/acmccs/format), excluding the bibliography, well-marked appendices, and supplementary material. Note that reviewers are not required to read the appendices or any supplementary material. Authors should not change the font or the margins of the ACM format. Submissions not following the required format may be rejected without review. Submissions not meeting these guidelines risk rejection without consideration of their merits. Accepted papers will be published by the ACM Press and/or the ACM Digital Library.

Submissions must be anonymous, and authors should refer to their previous work in the third-person. Submissions must not substantially overlap with papers that have been published or that are simultaneously submitted to a journal or a conference with proceedings. Each accepted paper must be presented by one registered author. Submissions not meeting these guidelines risk immediate rejection. For questions about these policies, please contact the chairs.

Proposals for panels are also solicited. The proposals are to be concise, up to 2 pages in length (at least 10 point font, two columns), describe the handled topics, name potential panelists and briefly scope the panel for CCSW. Disruptive and controversial panels are particularly encouraged.

PC Chairs

Paolo Palmieri, University College Cork, Ireland

Shivam Bhasin, Nanyang Technological University, Singapore

Programme Committee

Alessandro Brighente, University of Padua
Anupam Chattopadhyay, Nanyang Technological University
Apostolos Fournaris, Industrial Systems Institute/Research Center ATHENA
Chenglu Jin, CWI Amsterdam
Dimitrios Papadopoulos, The Hong Kong University of Science and Technology
Erik-Oliver Blass, Airbus
Fei Chen, Shenzhen University
Francesco Regazzoni, University of Amsterdam and Università della Svizzera italiana
Giorgos Vasiliadis, Hellenic Mediterranean University and FORTH
Guoxing Chen, Shanghai Jiao Tong University
Hoda Maleki, Augusta University
Mayank Varia, Boston University
Michael Zohner, Hochschule Fulda
Sean Smith, Dartmouth College
Sikhar Patranabis, IBM
Trevor E. Carlson, National University of Singapore

Steering Committee

Srdjan Capkun, ETH Zurich
Emiliano De Cristofaro, University College London
Marten van Dijk, Centrum Wiskunde & Informatica
Kristin Lauter, Meta
Radu Sion, Stony Brook University
Yinqian Zhang, Southern University of Science and Technology (chair)


Previous Workshops

2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2019, 2020, 2021, 2022, 2023 2024.