Marco Patrignani

FCS 2023: Workshop on Foundations of Computer Security

9th July 2023 - Dubrovnik, Croatia -- co-located with CSF23



All times are in Central European Time (CET), which is GMT+1.

  • 09:00 – 09:15 Opening
  • 09:15 – 10:15 Keynote by Marco Guarnieri
  • 10:15 – 10:30 (break) (location: outside)
  • 10:30 – 11:10 Technical session 1 (chair: Matteo Busi)
    • Emiel Lanckriet, Dominique Devriese and Frank Piessens “From Secure Compilers to Robust Abstractions: A general theory of secure compilation and reduction proofs”
    • Zilong Wang, Gideon Mohr, Klaus von Gleissenthall, Jan Reineke and Marco Guarnieri “Specification and Verification of Side-channel Security for Open-source Processors via Leakage Contracts”
  • 11:15 – 12:00 Mentoring panel
  • 12:00 – 14:00 Lunch + Mentoring (location: hangout room)
  • 14:00 – 15:00 Technical session 2 (chair: Ethan Cecchetti)
    • Matthias Grundmann and Hannes Hartenstein “Towards a Formal Verification of the Lightning Network with TLA+”
    • Federico Badaloni, Chrysoula Oikonomou, Pedro Moreno-Sanchez and Clara Schneidewind “BitMLx – Cross-chain Smart Contracts for Bitcoin-style Cryptocurrencies”
    • Stephan Dübler, Pedro Moreno-Sanchez and Clara Schneidewind “Generalized Swap Graphs for Blockchain Protocols”
  • 15:00 – 15:15 (break) (location: outside)
  • 15:15 – 15:55 Technical session 3 (chair: Roberto Blanco)
    • Matteo Busi, Flaminia Luccio and Riccardo Focardi “Don’t Get Stranded: Secure and Dynamic Key Management Policies with Strand Spaces”
    • Jan Menz, Andrew K. Hirsch and Deepak Garg “Compositional Higher-order Declassification Using Logical Relations”
  • 15:55 – 16:10 (break) (location: outside)
  • 16:10 – 16:50 Technical session 4 (chair: Robert Künnemann)
    • Stéphanie Delaune, Clément Hérouard and Joseph Lallemand “Secrecy by typing in the computational model” [ .pdf ]
    • Vivian Ding, Coşku Acay and Andrew C. Myers “An Array Intermediate Language for Mixed Cryptography” [ .pdf ]
  • 16:50 – 17:00 Closing


The keynote speaker for FCS'23 will be Marco Guarnieri who will talk about how formal verification can be used to reason about microarchitectural side-channel attacks.

New Format: a Workshop-Mentoring Event

Computer security is an established field of both theoretical and practical significance. In recent years, there has been sustained interest in the formal foundations of methods used in computer security. The first goal of the FCS'23 workshop is to provide a forum for the discussion of continued research in this area.
FCS'23 also wants to provide young researchers with a place where to form long-term connections in the research community, and to access the perspectives of researchers from other institutions. Thus, the second goal of FCS'23 is to address the mentoring needs of aspiring or junior researchers.

FCS'23 will contain both paper presentations as well as mentoring sessions throughout the day.


FCS'23 will be an in-person event, but we reserve the possibility to broadcast and present talks via zoom should the need arise.

FCS'23 will provide the space to for its partecipants to gather and benefit from mentoring sessions.
We plan to run a 2h-long mentoring lunch, where mentors and mentees will rotate, giving everyone a good chance to interact with as many people as possible.
Depending on the amount of attendees and of papers, we will adjust the schedule and provide additional mentoring sessions throughout the day.

Workshop Background, Aim, and Scope

FCS'23 welcomes papers on all topics related to the formal underpinnings of security and privacy, and their applications. The scope of FCS'23 includes, but is not limited to, formal specification, analysis, and design of cryptographic protocols and their applications; formal definitions of various aspects of security such as access control mechanisms, mobile code security and network security; modeling of information flow and its application to confidentiality policies, system composition, and covert channel analysis; foundations of privacy; applications of formal techniques to practical security and privacy.

We are interested in new theoretical results, in exploratory presentations that examine open questions and raise fundamental concerns about existing theories, and in the development of security/privacy tools using formal techniques. Demonstrations of tools based on formal techniques are welcome, as long as the demonstrations can be carried out on a standard digital projector (i.e., without any specialized equipment). We solicit the submission of both mature work and work in progress.

Possible topics include, but are not limited to:

Topics Goals
Automated reasoning techniques
Composition issues
Formal specification
Foundations of verification
Information flow analysis
Language-based security
Logic-based design
Program transformation
Security models
Static analysis
Statistical methods
Trust management
for Access control & resource usage control
Availability and denial of service
Blockchain & consensus protocols
Covert channels
Intrusion detection
Machine Learning
Malicious code
Mobile code
Mutual distrust
Security policies
Security protocols

Important Dates & Submission Details

Event Date
Submission for Papers: May 15th 2023 (24:00 AoE)
Notification of Acceptance: June 9th 2023 (24:00 AoE)
Workshop: 9th July 2023 (24:00 AoE)
Submission Server

The submission server is here:

Submission Kinds

FCS'23 welcomes two kinds of submissions:

  • long papers (at most 12 pages, excluding references and well-marked appendices)
  • short papers (at most 2 pages, excluding references and well-marked appendices)

FCS'23 will employ a light form of double-blind reviewing. Submitted papers must (a) omit any reference to the authors’ names or the names of their institutions, and (b) reference the authors’ own related work in the third person (e.g., not “We build on our previous work …” but rather “We build on the work of …”). Nothing should be done in the name of anonymity that weakens the submission or makes the job of reviewing the paper more difficult (e.g., important background references should not be omitted or anonymized). The author information will be revealed to the reviewers after reviews are submitted. Please see the CSF conference site for answers to frequently asked questions (FAQ) that address many common concerns. When in doubt, contact the program chairs.

All submissions will be peer-reviewed by the program committee listed below. Authors of accepted papers must guarantee that their papers will be presented at the workshop. Short papers will receive as rigorous a review as long papers.

Papers may be formatted using a two-column proceedings style accepted by IEEE, ACM, or USENIX conferences. The first page should include the paper’s title, an abstract, and a list of keywords. Committee members are not required to read appendices, so papers must be intelligible without them. Papers not adhering to the page limits may be rejected without consideration of their merits.

Informal Proceedings

The workshop has no published proceedings. Presenting a paper at the workshop should not preclude submission to or publication in other venues (before, after or concurrently with FCS'23). Papers presented at the workshop will be made available to workshop participants, but this does not constitute an official proceedings.


Registration is done through the main CSF website. When you register, you will need to check the box for “FCS: Foundations of Computer Security” to register for the workshop.

Program Committee

  • Chike Abuah, UVM
  • Bolton Bailey, UIUC
  • Matteo Busi, University of Venice
  • Joshua Gancher, CMU
  • Anitha Gollamudi, UMass Lowell
  • McKenna McCall, CMU
  • Jan Menz, MPI-SWS
  • Vineet Rajani, Kent
  • Rolph Recto, Cornell
  • Michael Sammler, MPI-SWS
  • Sarah Scheffler, Princeton
  • Clara Schneidewind, MPI-SP
  • Stelios Tsampas, FAU Erlangen


Past Editions