Below is a chronological list of my publications (also available at my university’s website).

  • 2023
    • Laurens Sion, Dimitri Van Landuyt, Koen Yskout, Stef Verreydt, Wouter Joosen, CTAM: a tool for Continuous Threat Analysis and Management, CyberSecurity in a DevOps Environment - From Requirements to Monitoring 7, pages 195-223, Springer Nature Switzerland AG, December 16, 2023
    • Quentin De Coninck, Shirin Kalantari, Laurens Sion, Danny Hughes, URLink: Using Names As Sole Internet Addresses to Tackle Scanning Attacks in IoT, The International Workshop on Security and Privacy of Sensing Systems, First International Workshop on Security and Privacy of Sensing Systems (Sensors S&P 2023), 7 pages, Istanbul, Turkiye, November 12, 2023
    • Omid Mirzamohammadi, Kristof Jannes, Laurens Sion, Dimitri Van Landuyt, Abuding Aishajiang, Dave Singelée, Security and Privacy Threat Analysis for Solid, IEEE SecDev 2023, IEEE Secure Development Conference (SecDev), pages 196-206, Atlanta, Georgia, October 18-20, 2023
    • Laurens Sion, Dimitri Van Landuyt, Pierre Dewitte, Peggy Valcke, Wouter Joosen, Demonstration of the DPMF for Data Protection Analysis, 26th International Conference on Model Driven Engineering Languages and Systems, 2023 ACM/IEEE International Conference on Model Driven Engineering Languages and Systems Companion (MODELS-C), 5 pages, Västerås, Sweden, October 1-6, 2023
  • 2022
    • Stef Verreydt, Laurens Sion, Koen Yskout, Wouter Joosen, Relationship-Based Threat Modeling, The 3rd International Workshop on Engineering and Cybersecurity of Critical Systems, 2022 IEEE/ACM 3rd International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS), 8 pages, Virtual, May 16, 2022
    • Laurens Sion, Dimitri Van Landuyt, Koen Yskout, Stef Verreydt, Wouter Joosen, Poster: Automated Threat Analysis and Management in a Continuous Integration Pipeline, Presented at the IEEE Secure Development Conference, Atlanta, GA, United States, 18 Oct 2022-20 Oct 2022
    • Ala’a Al-Momani, Christoph Bösch, Kim Wuyts, Laurens Sion, Wouter Joosen, Frank Kargl, Mitigation lost in translation: leveraging threat information to improve privacy solution selection, The 37th ACM/SIGAPP Symposium On Applied Computing, SAC ‘22: Proceedings of the 37th ACM/SIGAPP Symposium on Applied Computing, pages 1236-1247, Virtual Conference, April 25-29, 2022
  • 2021
    • Laurens Sion, Dimitri Van Landuyt, Koen Yskout, Stef Verreydt, Wouter Joosen, Automated Threat Analysis and Management in a Continuous Integration Pipeline, 2021 IEEE Secure Development Conference (SecDev 2021), Online, October 18–20, 2021.
    • Laurens Sion, Dimitri Van Landuyt, Wouter Joosen, An Overview of Runtime Data Protection Enforcement Approaches, 2021 International Workshop on Privacy Engineering (IWPE), Online, September 7, 2021.
    • Dimitri Van Landuyt, Liliana Pasquale, Laurens Sion, Wouter Joosen, Threat models at run time: the case for reflective and adaptive threat management, 16th International Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS2021) May 18–21, 2021.
    • Ala’a Al-Momani, Kim Wuyts, Laurens Sion, Frank Kargl, Wouter Joosen, Benjamin Erb, Christoph Bösch, Land of the Lost: Privacy Patterns’ Forgotten Properties: Enhancing Selection-Support for Privacy Patterns, the 36th Annual ACM Symposium on Applied Computing, Virtual Event, Republic of Korea, March 22–26, 2021.
  • 2020
    • Laurens Sion, Pierre Dewitte, Dimitri Van Landuyt, Kim Wuyts, Peggy Valcke, Wouter Joosen, DPMF: A Modeling Framework for Data Protection by Design, Enterprise Modelling and Information Systems Architectures (EMISAJ)-International Journal of Conceptual Modeling.
    • Laurens Sion (supervisors: Wouter Joosen, Koen Yskout), Automated Threat Analysis for Security and Privacy, Ph.D. Thesis, Doctor of Engineering Science (PhD) (Leuven), KU Leuven, October 19, 2020.
    • Katja Tuma, Laurens Sion, Riccardo Scandariato, Koen Yskout, Automating the Early Detection of Security Design Flaws, 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20), Virtual Event, Canada, October 18–23, 2020.
    • Laurens Sion, Dimitri Van Landuyt, Wouter Joosen, The Never-Ending Story: On the Need for Continuous Privacy Impact Assessment, 2020 International Workshop on Privacy Engineering (IWPE), Genova, Italy, September 7, 2020.
    • Kim Wuyts, Laurens Sion, Wouter Joosen, LINDDUN GO: A Lightweight Approach to Privacy Threat Modeling, 2020 International Workshop on Privacy Engineering (IWPE), Genova, Italy, September 7, 2020.
    • Shamal Faily, Riccardo Scandariato, Adam Shostack, Laurens Sion, Duncan Ki-Aries, Contextualisation of data flow diagrams for security analysis, Seventh International Workshop on Graphical Models for Security (GraMSec), June 22, 2020.
    • Laurens Sion, Koen Yskout, Dimitri Van Landuyt, Alexander van den Berghe, Wouter Joosen, Security Threat Modeling: Are Data Flow Diagrams Enough?, 1st International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS), In IEEE/ACM 42nd International Conference on Software Engineering Workshops (ICSEW’20), Seoul, South Korea, May 23–29, 2020.
    • Koen Yskout, Thomas Heyman, Dimitri Van Landuyt, Laurens Sion, Kim Wuyts, Wouter Joosen, Threat modeling: from infancy to maturity, International Conference on Software Engineering - New Ideas and Emerging Results (ICSE-NIER'20), Seoul, South Korea, May 23–29, 2020.
  • 2019
    • Laurens Sion, Katja Tuma, Riccardo Scandariato, Koen Yskout, Wouter Joosen, Towards Automated Security Design Flaw Detection, 2019 Second International Workshop on Security Awareness from Design to Deployment (SEAD), San Diego, California, US, November 11, 2019.
    • Dimitri Van Landuyt, Laurens Sion, Emiel Vandeloo, Wouter Joosen On the applicability of security and privacy threat modeling for blockchain applications, 3rd International Workshop on SECurity and Privacy Requirements Engineering (SECPRE 2019), Luxembourg, September 26–27, 2019.
    • Laurens Sion, Dimitri Van Landuyt, Kim Wuyts, Wouter Joosen, Poster: Privacy Risk Assessment for Data Subject-aware Threat Modeling, 2019 IEEE Symposium on Security and Privacy Posters, San Francisco, United States, May 20, 2019.
    • Laurens Sion, Dimitri Van Landuyt, Kim Wuyts, Wouter Joosen, Privacy Risk Assessment for Data Subject-aware Threat Modeling, 2019 International Workshop on Privacy Engineering (IWPE), San Francisco, United States, May 23, 2019.
    • Kim Wuyts, Laurens Sion, Dimitri Van Landuyt, Wouter Joosen, Knowledge is Power: Systematic Reuse of Privacy Knowledge for Threat Elicitation, 2019 International Workshop on Privacy Engineering (IWPE), San Francisco, United States, May 23, 2019.
    • Laurens Sion, Pierre Dewitte, Dimitri Van Landuyt, Kim Wuyts, Ivo Emanuilov, Peggy Valcke, Wouter Joosen, An Architectural View for Data Protection by Design, 2019 International Conference on Software Architecture (ICSA), Hamburg, Germany, March 29, 2019.
    • Pierre Dewitte, Kim Wuyts, Laurens Sion, Dimitri Van Landuyt, Ivo Emanuilov, Peggy Valcke, Wouter Joosen, A Comparison of System Description Models for Data Protection by Design, In SAC 2019: The 2nd track on Privacy by Design in Practice (PDP), Limassol, Cyprus, April 8–12, 2019.
  • 2018
    • Laurens Sion, Koen Yskout, Dimitri Van Landuyt, Wouter Joosen, Risk-based Design Security Analysis, 2018 IEEE/ACM First International Workshop on Security Awareness from Design to Deployment (SEAD), Gothenburg, Sweden, May 27, 2018.
    • Laurens Sion, Koen Yskout, Dimitri Van Landuyt, Wouter Joosen, Poster: Knowledge-enriched Security and Privacy Threat Modeling, 2018 IEEE/ACM 40th International Conference on Software Engineering Companion (ICSE-C), Gothenburg, Sweden, May 27 – June 3, 2018.
    • Laurens Sion, Dimitri Van Landuyt, Koen Yskout, Wouter Joosen, SPARTA: Security & Privacy Architecture through Risk-driven Threat Assessment, 2018 International Conference on Software Architecture Companion (ICSA-C), Seattle, United States, May 3, 2018.
    • Laurens Sion, Kim Wuyts, Koen Yskout, Dimitri Van Landuyt, Wouter Joosen, Interaction-based Privacy Threat Elicitation, 2018 International Workshop on Privacy Engineering (IWPE), London, United Kingdom, April 27, 2018.
    • Laurens Sion, Koen Yskout, Dimitri Van Landuyt, Wouter Joosen, Solution-aware Data Flow Diagrams for Security Threat Modeling, In SAC 2018: The 6th track on Software Architecture: Theory, Technology, and Applications (SA-TTA), Pau, France, April 9–13, 2018.
  • 2017
    • Laurens Sion, Koen Yskout, Riccardo Scandariato, Wouter Joosen, A Modular Meta-model for Security Solutions, In Modularity in Modelling Workshop (MoMo), Programming ’17, Brussels, Belgium, April 03–06, 2017.
  • 2016
    • Laurens Sion, Dimitri Van Landuyt, Wouter Joosen, Gjalt de Jong, Systematic quality trade-off support in the software product-line configuration process, Proceedings of the 20th International Systems and Software Product Line Conference, volume 20, pages 164-173, Beijing, China, 16–23 September 2016.
    • Laurens Sion, Dimitri Van Landuyt, Koen Yskout, Wouter Joosen, Towards systematically addressing security variability in software product lines, Proceedings of the 20th International Systems and Software Product Line Conference, volume 20, pages 342-343, Beijing, China, 16–23 September 2016.
  • 2015
    • Laurens Sion, Koen Yskout, Alexander van den Berghe, Riccardo Scandariato, Wouter Joosen, MASC: Modelling architectural security concerns, 2015 IEEE/ACM 7th International Workshop on Modeling in Software Engineering (MiSE), volume 7, pages 36–41, Florence, Italy, 16-17 May 2015.