[Soups-announce] CFP: The 25th Workshop on the Economics of Information Security (WEIS)

Mon Dec 29 19:25:41 EST 2025

Happy holidays! This is likely relevant to folks on this list (since
"economics" includes behavioral/micro economics, for those not familiar
with WEIS):

===============================================================================
CALL FOR PAPERS
===============================================================================

The 25th Annual Workshop on the Economics of Information Security (WEIS
2026)
University of California, Berkeley, June 2-3, 2026
https://weis2026.econinfosec.org/

The Workshop on the Economics of Information Security (WEIS) is the leading
forum for interdisciplinary scholarship on information security and
privacy, combining expertise from the fields of economics, social science,
business, law, policy, and computer science. Prior workshops have explored
the role of incentives between attackers and defenders of information
systems, examined human behavior surrounding security decision-making,
identified market failures surrounding Internet security, quantified risks
of personal data disclosure, and assessed investments in cyber-defense.

WEIS 2026 will build on past efforts using empirical and analytic tools not
only to understand threats, but also to strengthen security and privacy
through novel evaluations of available solutions.

We encourage participation by submission of paper and attendance by
economists, computer scientists, legal scholars, business researchers (from
academia and elsewhere), and security and privacy researchers from academia
and industry to submit research on relevant topics, including but not
limited to:

* Cyber risk management
* Vulnerability discovery, disclosure, and patching
* Incentives for and against pervasive monitoring threats
* Cyber-risk quantification
* Cyber-insurance
* Economics and governance of privacy
* Economics of privacy and anonymity
* Behavioral economics of privacy
* Data protection risks: legal, reputational, financial
* Cybercrime
* Models and analysis of online crime (e.g. botnets, ransomware, and
underground markets)
* Analysis of costs of cybercrime and impacts of counter-measures
* Cybersecurity policy
* Security standards and regulation
* Incentives for information sharing and cooperation
* Cyber-defense strategy
* Geopolitical and international relations aspects of cybersecurity,
including cyberterrorism

DATES:
* Submission deadline: 23 January 2026
* Acceptance notification: 6 March 2026
* Final papers (revisions): 8 May 2026
* Conference dates: 2-3 June 2026

SUBMISSION WEBSITE:
Papers should be submitted via EasyChair at
https://easychair.org/conferences?conf=weis2026

SUBMISSION RULES:

Due to the interdisciplinary nature of the workshop, no detailed formatting
guidelines are set for submission. Authors may use whatever academic
formats are usual in their field, but should keep in mind the
interdisciplinary nature of the audience and try to write in a way that is
accessible to those from outside their field. However, submissions should
be in PDF to improve technical readability.

The workshop is for the presentation of novel conceptualisations or results
in the field. Although the conference does not produce a refereed
proceedings, papers should not be currently under review for or already
accepted for publication in a refereed conference or journal during the
workshop review period. The goal of the workshop is to provide a forum for
discussion and feedback before work is published formally, rather than for
the presentation of otherwise completed and published work.

Reviews will be conducted in a double anonymous manner (neither authors nor
reviewers know the other’s identity) to try to ensure a fair reviewing
process (see
https://cacm.acm.org/magazines/2018/6/228027-effectiveness-of-anonymization-in-double-blind-review/abstract).
The submission itself should not contain the names or affiliations of the
authors (those details will be held on the submission site but not
accessible to reviewers, only the PC chairs). References to previous work
by the authors should be cited in the third person, and only where it is
impossible to otherwise anonymise the current authors should references
themselves be anonymised.

Authors may continue to present and discuss their work while it is under
review, but should not deliberately seek to de-anonymise their submission
by seeking out Program Committee members. See the Workshops’ Reviewer
Ethics guidelines for more details.

For questions not answered on the website or inquiries about sponsorship
opportunities (to help defray the cost of student registrations), feel free
to email the general chair: egelman at cs.berkeley.edu

-- 
/*
Serge Egelman, Ph.D.
Research Director, Usable Security & Privacy
International Computer Science Institute (ICSI)

Research Scientist, Electrical Engineering and Computer Sciences (EECS)
University of California, Berkeley
*/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.srv.cs.cmu.edu/pipermail/soups-announce/attachments/20251229/29902b03/attachment.html>