July 20-22, 2011
Pittsburgh, PA


Call for papers





Symposium On Usable Privacy and Security


[plain text]

The 2011 Symposium on Usable Privacy and Security (SOUPS) will bring together an interdisciplinary group of researchers and practitioners in human computer interaction, security, and privacy. The program will feature technical papers, a poster session, panels and invited talks, discussion sessions, and in-depth sessions (workshops and tutorials). This year SOUPS will be held in Pittsburgh, PA.

See important dates below.


Deadline: March 11, 2011, 5:00PM US Pacific time
Anonymization: Authors are NOT to be anonymized
Length: 12 pages excluding bibliography & non-essential appendices (20 pages max)
Formatting: Use SOUPS MS Word or LaTeX templates
Submission site:
More guidance: Read this CFP in detail and see the common pitfalls document

We invite authors to submit original papers describing research or experience in all areas of usable privacy and security. Topics include, but are not limited to:

  • innovative security or privacy functionality and design,
  • new applications of existing models or technology,
  • field studies of security or privacy technology,
  • usability evaluations of new or existing security or privacy features,
  • security testing of new or existing usability features,
  • longitudinal studies of deployed security or privacy features,
  • the impact of organizational policy or procurement decisions, and
  • lessons learned from the deployment and use of usable privacy and security features.

All submissions must relate to both usability and either security or privacy. Papers on security or privacy applications that do not address usability or human factors will not be considered.

Papers need to describe the purpose and goals of the work, cite related work, show how the work effectively integrates usability and security or privacy, and clearly indicate the innovative aspects of the work or lessons learned as well as the contribution of the work to the field. Papers should mention how the authors addressed any ethical considerations applicable to the research and user studies, such as passing an IRB review (see examples).

Papers must use the SOUPS formatting template (available for MS Word or LaTeX) and be up to 12 pages in length, excluding the bibliography and any supplemental appendices. Authors have the option to attach to their paper supplemental appendices containing study materials (e.g. surveys) that would not otherwise fit within the body of the paper. These appendices may be included to assist reviewers who may have questions that fall outside the stated contribution of your paper, on which your work is to be evaluated. Reviewers are not required to read any appendices so your paper should be self contained without them. Accepted papers will be published online with their supplemental appendices included. Submissions must be no more than 20 pages including bibliography and appendices. For the body of your paper, brevity is appreciated, as evidenced by the fact that many papers in prior years have been well under this limit. All submissions must be in PDF format and should not be blinded.

Submit your paper electronically at

Technical paper submissions will close at 5 PM, US Pacific time, Friday, March 11. This is a hard deadline! Authors will be notified of technical paper acceptance by May 18, and camera-ready final versions of technical papers are due June 15.

Accepted papers will appear in the ACM Digital Library as part of the ACM International Conference Proceedings Series. Submitted papers must not significantly overlap papers that have been published or that are simultaneously submitted to a peer-reviewed venue or publication. Any overlap between your submitted paper and other work either under submission or previously published must be documented in a clearly-marked explanatory note at the front of the paper. State precisely how the two works differ in their goals, any use of shared experiments or data sources, and the unique contributions. If the other work is under submission elsewhere, the program committee may ask to review that work to evaluate the overlap. Please note that program committees frequently share information about papers under review and reviewers usually work on multiple conferences simultaneously. As technical reports are not peer reviewed they are exempt from this rule. You may also release pre-prints of your accepted work to the public at your discretion.

Authors are encouraged to review: Common Pitfalls in Writing about Security and Privacy Human Subjects Experiments, and How to Avoid Them.

New This Year: Borrowing heavily from the practices of top security and HCI conferences, SOUPS is adding a second stage of reviewing in which program committee members will be asked to provide additional reviews on papers for which the first-stage reviews did not reach a strong consensus. We are also introducing an in-person program committee meeting at which all PC members will be present. The goal of these changes is to ensure that all papers are evaluated to the same standards and by the full program committee. Please direct any questions or comments to the Technical Program Co-Chairs at soups-chairs AT cups DOT cs DOT cmu DOT edu.

Technical Papers Committee
Heather Lipford, University of North Carolina at Charlotte (Co-Chair)
Stuart Schechter, Microsoft Research (Co-Chair)
Ross Anderson, Cambridge
Lujo Bauer, Carnegie Mellon University
Konstantin Beznosov, University of British Columbia
Robert Biddle, Carleton University
Bill Cheswick, AT&T Research
Sonia Chiasson, Carleton University
Alexander De Luca, University of Munich
Rachna Dhamija, Usable Security Systems
Serge Egelman, NIST University
Simson Garfinkel, Naval Postgraduate School
Cormac Herley, Microsoft Research
Linda Little, Northumbria University, UK
Andrew Patrick, Office of the Privacy Commissioner of Canada
Rob Reeder, Microsoft
Angela Sasse, University College London
Rick Wash, Michigan State University
Hao-Chi Wong, Intel
Mary Ellen Zurko, IBM


We seek poster abstracts describing recent or ongoing research or experience in all areas of usable privacy and security. Submissions should use the SOUPS poster template [MS Word] [LaTeX] and be at most two pages including bibliography. Submissions should not be blinded. Accepted poster abstracts will be distributed to symposium participants and made available on the symposium web site. Please follow the final submission formatting instructions when preparing your poster abstract to avoid the need to revise poster abstracts after acceptance decisions are made. In addition, SOUPS will include a poster session in which authors will exhibit their posters. Note, poster abstracts should be formatted like short papers, not like posters. Authors of accepted posters will be sent information about how to prepare and format posters for the conference.

Submit your poster using the electronic submissions page.

We also welcome authors of recent papers (2010 to 2011) on usable privacy and security to present your work at the SOUPS poster session. Please submit in a PDF file: (1) the title and abstract of your conference paper, (2) full bibliographical citation, and (3) a link to the published (official) version, instead of the regular poster abstract.

Submissions will close at 5pm, US Pacific time, May 28.


SOUPS will feature parallel, moderated breakout sessions (similar to Birds of a feather sessions) in which symposium participants will discuss a topic related to usable privacy and security. These sessions may include a brief introduction to the topic by the moderator, but otherwise will not include formal presentations. Discussion session topics may include, but are not limited to, definitions or metrics, design critiques, research agendas, or frameworks for collaborative research. We seek proposals for discussion session topics. Proposals must include a one paragraph statement of the topic to be discussed and a one paragraph bio of each proposer that describes their experience or interest in the topic. Optionally, proposers may submit up to two pages of background material that can be distributed to participants and posted on the SOUPS website. Authors of accepted proposals will be expected to moderate their discussion session and provide a brief report on their session for posting on the SOUPS web site after the symposium.

Proposals for discussion sessions should be submitted via email to sessions AT cups DOT cs DOT cmu DOT edu

Submissions will close at 5pm, US Pacific time, May 28.


We are soliciting proposals for a small number of in-depth sessions on usable security and privacy. These sessions could run either a half or full day, and could be lecture-oriented (tutorial) or a group-oriented session designed to widely share experience (workshop). To get a better idea, please see the following examples of previous workshop and tutorial descriptions:

Examples of Previous Workshops:

Examples of Previous Tutorials:

Proposals should include the following:

  • Title
  • Leader(s) (including pertinent biographical information)
  • Format (tutorial or workshop)
  • Description
  • Duration (half or full day)
  • Target audience
  • (Workshops only) Goals and highlights of the call for participation.

In-depth sessions will be open to all SOUPS attendees. They will generate materials that will be made available on the SOUPS website (tutorial notes, workshop presentations and a report/summary). Workshops will have their own CFP for presentations, abstracts, or short papers, which will be published by February 15.

Send in-depth session proposals to sessions AT cups DOT cs DOT cmu DOT edu by January 12.


SOUPS is seeking proposals for panels. A good panel focuses on an issue of current concern, and has a strong and clear point of contention in the topic, in the questions, and in the panelist points of view. Full proposals should contain a title, description of the topic, and suggested panelists (with pertinent biographical information). We encourage panels structured as debates rather than just a series of short talks. We are also interested in ideas for panels you would like to see on the program, even if you do not wish to be a panel organizer.

Send suggestions or proposals for panels to sessions AT cups DOT cs DOT cmu DOT edu by January 12.


We're looking for ideas for invited speakers. Please suggest a speaker you would like to hear from, or have heard recently with something provocative or visionary to say on the topic of usable security and privacy.

Send suggestions for invited speakers to sessions AT cups DOT cs DOT cmu DOT edu by January 12.


Early registration deadline - June 10
Conference - July 20-22

Technical papers
Submission deadline - March 11, 5 pm US Pacific time (hard deadline!)
Notification of paper acceptance - May 18
Camera ready papers due - June 15

Posters and discussion sessions
Submission deadline - May 28, 5 pm US Pacific time
Notification of acceptance - June 10

In-depth sessions (tutorials and workshops)
In-depth session proposal submission deadline - January 12
Notification of in-depth session proposal acceptance - January 25
Workshop paper submission deadline - May 8
Notification of workshop paper acceptance - June 3
Camera ready papers due - June 15

Panels and invited talks
Panel proposal submission deadline - January 12
Speaker suggestion submission deadline - January 12


SOUPS 2011 is sponsored by Carnegie Mellon CyLab and Microsoft.