We invite researchers and practitioners to submit original research papers for the inaugural Workshop on Secure and Trustworthy Superapps (SaTS 2023), co-located with ACM CCS 2023. The aim of this workshop is to bring together experts from academia and industry to discuss and address the security and privacy challenges posed by the increasing use of mobile super apps. A mobile super app is a mobile app that hosts and supports other applications (i.e., miniapps), enabling their execution by using the platform's resources (also see W3C MiniApp Standardization White Paper, https://www.w3.org/TR/mini-app-white-paper/). Despite their huge usability gain for users, unique security and privacy challenges are arising. For example, it is challenging for the superapps to soundly manage the miniapps for their access to systems resources and the superapp's resources, nor can prior protection mechanisms in the domains of operating systems, browsers, virtulization directly be used for governing security here. Privacy concerns and questions also arise to keep up with citizen expectation, including but not limiting to data sharing transparency in the context of mobile superapps.

Topics of interest in this workshop include, but are not limited to, the following categories:

• Privacy-preserving techniques for mobile super apps (including their miniapps)
• Security analysis of mobile super app ecosystems
• Authentication and authorization mechanisms for super apps
• Data protection and secure storage in super apps
• Privacy policies, compliance, and regulations for mobile super apps
• User behavior and privacy risk analysis
• Surveillance and censorship in mobile super apps
• Anonymity and pseudonymity in miniapp communication
• Security and privacy issues in third-party integrations
• Secure payment systems in mobile super apps
• Case studies and real-world experiences with mobile super app security and privacy

In addition, topics of interest include, but are not limited to other emerging paradigms in mobile and ubiquitous computing.The PC will select a best paper award for work that distinguishes itself in advancing the security and privacy of mobile superapps/miniapps and emerging computing paradigms through novel insights, attacks or defenses.

Submission Instructions

Submitted papers must be in English, unpublished, and must not be currently under review for any other publication. Submissions must be a PDF file in double-column ACM format (see ACM Proceedings Template, using the sigconf style). We accept (1) regular papers with up to 8 pages, (2) short papers or work-in-progress papers with up to 4 pages. The page limits does not include bibliography and well-marked appendices, which can be up to 2 pages long. Note that reviewers are not required to read the appendices or any supplementary material. Authors should not change the font or the margins of the ACM format. The review process is double-blind. All papers must be in Adobe Portable Document Format (PDF) and submitted through the web submission form via EasyChair at https://easychair.org/conferences/?conf=sats2023.