The book will provide an overview of the software security analysis in a DevOps cycle including security requirements formalization, verification and continuous monitoring. The book is dedicated to a general audience of computer engineers and does not require specific knowledge. It presents the current state of the art and practice in the field based on the analysis of the literature up to date. The manuscript is valuable as a one-stop shop for the recent advances in the area of engineering methods for software security.

Submission Guidelines

All papers must be original or a significant extension of previously published paper (at least +30% of new content) and not simultaneously submitted to another journal or conference. The following paper categories are welcome:

  • Full Chapter describing research results, methods, tools, processes, experimental results from applications to industrial systems, or systematic literature reviews are encouraged. We consider that contributions between 20 and 30 pages of length per chapter fit best for the book. Full chapter can target one or several topics listed below.

Each chapter will be assessed by at least 3 reviewers and an acceptance notification will be sent early November 2022. SecDevOps 2023 proceedings will be published in Springer LNCS

Important Dates

  • Abstract registration deadline: June 30th, 2022
  • Submission deadline: September 30th, 2022
  • Notification to authors: December 15th 2022
  • Final versions of chapters: January 31st 2023
  • Estimated publishing date: June 2023


  • Project results, case studies and experience reports
  • Security Requirements Analysis
  • Security at Development
  • Security at Operations
  • Security in DevOps environment
  • Security Requirements Patterns
  • Threat Oracles
  • Security Threats Monitoring
  • Root cause analysis
  • Security Verification using Metamorphic Testing
  • Security Monitoring and Attack Detection
  • Model-based Security Testing
  • Security controls and countermeasures
  • ML methods for security testing
  • ML methods for security monitoring
  • ML methods for root cause analysis
  • NLP for Security Requirements Analysis



  • Wissam Mallouli
  • Angel Longeira
  • Cristina Seceleanu
  • Eduard Enoiu
  • Aleksandr Naumchev
  • Etienne BROSSE
  • Ildar Nigmatullin
  • Sophie Ebersold
  • Jean-Michel Brue
  • Tanwir Ahmad
  • Zujany Salazar
  • Ana Cavalli
  • Vinh Hoa La
  • Andrey Sadovykh
  • To be completed


  • Andrey Sadovykh
  • Dragos Truscan
  • Alessandra Bagnato
  • Wissam Mallouli
  • Ana Cavalli
  • Cristina Seceleanu
  • Eduard Enoiu


For more information or questions, please visit https://easychair.org/cfp/SecDevOps2023External link. External link. or contact andrey.sadovykh@softeam.fr


H2020 VeriDevOps