Call for Participation: FormaliSE 2021 (www.formalise.org) On-line conference on Formal Methods in Software Engineering (May 18-21, 2021) Co-located event of ICSE 2021 INTRODUCTION FormaliSE is a yearly conference on Formal Methods in Software Engineering. FormaliSE is organized by FME (Formal Methods Europe) and is co-located with ICSE (International Conference on Software Engineering). The main goal of the conference is to foster integration between the formal methods and the software engineering communities. The lack of formalization in key places makes software engineering overly sensitive to the weaknesses that are inevitable in the complex activities behind software creation. This is where formal methods (FMs) have a huge opportunity. PROGRAM This year FormaliSE will be held on-line, with real-time presentations by the authors of accepted papers, and by two keynote speakers. The Clowdr platform will be used for the presentation. Social interaction with the authors and other participants will be facilitated as well. See https://www.formalise.org/program for a detailed overview of keynotes and the list of accepted papers. REGISTRATION Registration for FormaliSE is open. You can register at https://conf.researchr.org/attending/icse-2021/registration. Registration is handled by ICSE. ORGANISATION Laura Semini and Simon Bliudze (PC Chairs) Stefania Gnesi and Nico Plat (General Chairs) Lucia Nasti (Social Media Chair) and Larisa Safina (Virtualisation Chair) KEYNOTE SPEAKERS Liliana Pasquale (University College Dublin & Lero, Ireland) `Towards Formalising Sustainable Security' Cyber-physical systems, such as smart buildings, cities, and industrial control systems are increasingly managed by software. As the cyber and physical spaces characterizing a software system operating environment are becoming more intertwined, their attack surface has increased and they have become more targeted by attackers. Considering the critical applications of CPS, adversaries can interrupt the functionality of critical infrastructure, also possibly causing human loss. Thus, CPS should be designed to adapt their security controls dynamically, in order to continuously protect valuable assets from harm and satisfy security goal at runtime (during execution). However, research in the adaptive security domain has rarely focused on mitigating unexpected security threats at runtime. Changes of security controls can affect satisfaction of safety-critical properties of a CPS and lead stakeholders (e.g., users and engineers) to lose trust in the system. This can even be more detrimental considering that stakeholders may need to actively monitor data, support decision making and/or execute security controls, in order to avoid security requirements violations. The objective of this talk is to propose the notion of sustainable security systems. Such systems will be capable of detecting new/changing threats and identify effective security controls dynamically. Also, they will endure engagement of the stakeholders in their operation and use. This talk will explore existing key research approaches that have been proposed to: · Formalise adaptive security (cyber-physical) systems and detect/mitigate unexpecteds security threats at runtime · Support runtime verification of large-scale (cyber-physical) systems · Assure and explain adaptive security systems The keynote will highlight research gaps and challenges towards formalising sustainable security systems and will outline a research agenda to tackle these challenges.