This is the Call for Papers (CFP) for talks and workshops and Call for Training (CFT) for the 12th edition of BruCON or #BruCON0x0C (28 September – 2 October 2020).
On the off chance you don’t know BruCON (where have you been?). We host a 2-day Security and Hacking Conference full of interesting presentations, workshops and security challenges for about 600 attendees. BruCON is an open-minded gathering of people discussing computer security, privacy, and information technology. The conference tries to build bridges between the various actors active in the computer security world including (but not limited to) hackers, security professionals, security communities, non-profit organisations, CERTs, students, law enforcement agencies, and many more.
Next to the conference we offer several world-class, deep-dive offensive and defensive technical training courses given by the most recognized experts with huge industry experience in their domain! These training sessions take place twice a year, Spring Training was planned 22, 23 and 24th of April 2020 but has been moved to 29, 30th of June and 1st of July (more info here) and conference training tracks are on 28th, 29th and 30th of September 2020. Our slogan is “Hacking for Beer” of which you’ll find plenty during and after the conference and training.
We understand that submitting a paper in April for a talk in October is not always easy. As things change so quickly between the time of submission and hosting the talk or you have not yet finished your research, we wanted to introduce something new!
Specially for these reasons we bring you project “Untapped” (Get it ?). Instead of selecting 12 talks in April, we will only select 10 and keep two slots open (one for each conference day). On August 1st, we will open the CFP again to select two “Untapped” talks where we are looking for talks which were never hosted before or are covering new and fresh InfoSEC topics that we can introduce for the first time at BruCON.
You can re-submit your paper from April in case it has not been presented yet and/or it has been updated with fresh content that is representing the evolutions in that specific deomain.
Topics of interest for the conference include, but are not limited to :
- Electronic/Digital Privacy
- IoT Security
- Wireless Network and Security
- Attacks on Information Systems and/or Digital Information Storage
- Web Application and Web Services Security
- Lockpicking & physical security
- Spyware, Phishing and Botnets (Distributed attacks)
- Hardware hacking, embedded systems and other electronic devices
- Mobile devices exploitation, Symbian, P2K and Bluetooth technologies
- Electronic Voting
- Vulnerability research and disclosure
- Free Software and Security
- Legal and Social Aspect of Information Security
- Software Engineering and Security
- Security in Information Retrieval
- Security aspects in SCADA, industrial environments and “obscure” networks
- Forensics and Anti-Forensics
- Mobile communications security and vulnerabilities
- Information warfare and industrial espionage
- Social Engineering
- Virtualisation Security
The ICS/IOT Village is a dedicated area where attendees with a relative “safe” environment to learn more about the (in)security of technologies that you are less likely to encounter on a day-to-day basis such as industrial control systems, electronic voting devices, etc.
Just like previous years we host the Village in a dedicated area where you can immersive yourself in technologies related to:
- Automotive security
- Electronic voting
- Embedded circuits
- Hardware hacking
- Industrial control systems or simply buzzword “SCADA”
- Radio frequency and other wireless networks
- (Industrial) IoT
Possible formats are:
- 1hr talk
- 2hr workshop (preferably hands on)
- 4hr workshop (preferably hands on)
If you want to get an idea about the atmosphere at BruCON, check out the previous talks on our Youtube channel.
Please take into account the following guidelines for submitting a training course for BruCON.
BruCON is shifting from hosting predominantly offensive technical security training sessions to a combination of offensive and defensive courses. We don’t have any specific focus areas, so please submit any training you deem interesting !
Training should be either 2 or 3 days. You are allowed to submit multiple training suggestions, however please specify if they can be hosted simultaneously.
If you have additional hardware that need to be taken into account, please specify including the additional costs.
If you submit a training, please include, at minimum, the following information :
- Course content
- Target audience
- Level (Beginner, Advanced, Expert)
- Trainer(s) Biography
- Hosted before? If so, where and when
Possible formats are:
- 2-day training (€ 1300 Early-bird / € 1400 Regular)
- 3-day training (€ 1600 Early-bird / € 1700 Regular)
Submissions will contain as much detail as possible and will be written in English. We use EasyChair to collect and review talk, workshop and training proposals. You will submit your proposal online: https://easychair.org/my/conference?conf=brucon0x0c
Your submission will contain at least the following details:
- Your name (duh)
- A picture of yourself
- Where do you live (country)
- How to reach you
- The title of your talk/workshop/training, including type
- 2h or 4h workshop
- 2- or 3-day training
- An abstract of your talk/workshop/training, including a brief biography
- A number of keywords to characterize your submission
- Whether you submitted and/or presented this proposal at other conferences
- Additionally you are encouraged to include, in plain text or PDF format, supporting materials such as slide decks, white papers, curriculum, prerequisites for talk/workshop/training, outline,…
Our speaker treatment hasn’t changed since the first year. You’re our guest and we will do anything to make your stay and experience as enjoyable as possible. This includes helping you with travel and accommodation and providing ample opportunities to sample the best of whatever Belgium has to offer. You know what we’re talking about and if you know anybody who has spoken at BruCON before, we invite you to talk to them. We make sure our speakers get the best treatment.
- CFP/CFT Open : April 1st 2020
- CFP/CFT Closes : April 31st 2020 Midnight CET
- Feedback on all talks and workshops : May 30rd 2020
- Talks / Workshops published : June 15th 2020
- Training published : June 30th 2020 (Potentially earlier)
- Untapped CFP Open : August 1st 2020
- Untapped CFP Closes : August 15th 2020
- Untapped CFP Feedback and published : August 31st 2020
- BruCON 0x0C Training : September 28,29 and 30th 2020
- BruCON 0cxC Conference : October 1st and 2nd 2020
Small print: We do not accept product or vendor related pitches. If your presentation involves an advertisement for a new product or service your company is offering, please do not submit. Also, we do not accept presentations submitted by a third party including (but not limited to) company representatives, management bureau’s, etc. BruCON presentations should be focused on topics that are of interest to security and technology professionals who are paying attention to current trends and issues. We want BruCON to be educational and entertaining to the attendees and the community.