INFORMS Open Forum

CFP: Workshop on the Economics of Information Security, 3-4 June 2019, Harvard University, Boston, MA

  • 1.  CFP: Workshop on the Economics of Information Security, 3-4 June 2019, Harvard University, Boston, MA

    Posted 01-06-2019 15:34
    The 18th Annual Workshop on the Economics of Information Security (WEIS 2019)

    Harvard University, Boston, Massachusetts, June 3-4, 2019

    Information security and privacy continue to grow in importance, as threats proliferate, privacy erodes, and attackers find new sources of value. Yet the security of information systems and the privacy offered by them depends on more than just technology. Each requires an understanding of the incentives and trade-offs inherent to the behavior of people and organizations. As society's dependence on information technology has deepened, policy-makers have taken notice. Now more than ever, careful research is needed to characterize accurately threats and countermeasures, in both the public and private sectors.

    The Workshop on the Economics of Information Security (WEIS) is the leading forum for interdisciplinary scholarship on information security and privacy, combining expertise from the fields of economics, social science, business, law, policy, and computer science. Prior workshops have explored the role of incentives between attackers and defenders of information systems, identified market failures surrounding Internet security, quantified risks of personal data disclosure, and assessed investments in cyber-defense. The 2019 workshop will build on past efforts using empirical and analytic tools not only to understand threats, but also to strengthen security and privacy through novel evaluations of available solutions.

    We encourage economists, computer scientists, legal scholars, business school researchers, security and privacy specialists, as well as industry experts to submit their research and participate by attending the workshop. Suggested topics include (but are not limited to) empirical and theoretical studies of:
    • Optimal investment in information security
    • Models and analysis of online crime (including botnets, ransomware, and underground markets)
    • Cyber-risk quantification and cyber-insurance
    • Security standards and regulation
    • Vulnerability discovery, disclosure, and patching
    • Incentives for information sharing and cooperation
    • Cyber-security policy
    • Economics of privacy and anonymity
    • Behavioral security and privacy
    • Incentives for and against pervasive monitoring threats
    • Cyber-defense strategy


    Submitted manuscripts should represent significant and novel research contributions. WEIS has no formal formatting guidelines. Previous contributors spanned fields from economics and psychology to computer science and law, each with different norms and expectations about manuscript length and formatting. This year, authors have the option to submit their manuscripts in anonymized form for double-blind review. Advisable rules of thumb include: using past WEIS accepted papers as templates and adhering to your community's publication standards.

    Please submit your papers via EasyChair (

    Authors whose papers appear at the workshop may be invited to submit a revised version to a special issue of the Journal of Cybersecurity, an interdisciplinary open access journal published by Oxford University Press.  Revised papers will undergo an additional round of peer review after the workshop, and accepted papers will appear in the special issue. Please note that publication charges must be paid to facilitate open access, but a publishing fund is available to authors whose institutions cannot pay. For more information please see

    Submission deadline: February 15, 2019 (by midnight EST)
    Notification of acceptance: April 7, 2019
    Final papers due (revisions): May 10, 2019
    Workshop dates: June 3-4, 2019

    Bruce Schneier, IBM Resilient
    Sam Ransbotham, Boston College

    Alessandro Acquisti, Carnegie Mellon University
    Idris Adjerid, Virginia Tech
    Ross Anderson, Cambridge University
    Daniel Arce, UT Dallas
    Terrence August, UC San Diego
    Johannes Bauer, Michigan State University
    Jesse Bockstedt, Emory University
    Rainer Böhme, University of Innsbruck
    Laura Brandimarte, University of Arizona
    Jean Camp, Indiana University
    Jonathan Cave, RAND Europe
    Huseyin Cavusoglu, University of Texas at Dallas
    Nicolas Christin, Carnegie Mellon University
    Richard Clayton, University of Cambridge
    Ben Edelman, Harvard Business School
    Ben Edwards, IBM Research
    Serge Egelman, ICSI & UC Berkeley
    Neil Gandal, Tel Aviv University
    Dan Geer, In-Q-Tel
    Lawrence Gordon, University of Maryland
    Sol Greenspan, National Science Foundation
    Jens Grossklags, TU Munich
    Chad Heitzenrater, Air Force Research Laboratory
    Kai-Lung Hui, HKUST
    M. Eric Johnson, Vanderbilt University
    Kartik Kannnan, Purdue University
    Aron Laszka, Vanderbilt University
    Martin Loeb, University of Maryland
    Thomas Maillart, University of Geneva
    Fabio Massacci, University of Trento
    Kanta Matsuura, University of Tokyo
    Damon McCoy, New York University
    Sabyasachi Mitra, Georgia Tech
    Tyler Moore, University of Tulsa
    Frank Nagle, Harvard Business School
    Andrew Odlyzko, University of Minnesota
    Min-Seok Pang, Temple University
    Wolter Pieters, TU Delft
    Lorenzo Pupillo, CEPS
    David Pym, University College London
    Sasha Romanosky, RAND
    Rahul Telang, Carnegie Mellon University
    Catherine Tucker, MIT
    Marie Vasek, University of New Mexico
    Liad Wagman, Illinois Institute of Technology
    Julian Williams, Durham University
    Dmitry Zhdanov, Georgia State University

    Sam Ransbotham
    Boston College
    Chestnut Hill MA