Who publishes IEEE Security & Privacy?

IEEE Security & Privacy is published by IEEE.

What is the ISSN of IEEE Security & Privacy?

The ISSN of IEEE Security & Privacy is 1540-7993.

What is the impact factor of IEEE Security & Privacy?

The reported impact factor of IEEE Security & Privacy is 3.0. Impact factor values are reproduced from publishers and may lag the latest JCR release.

Journal Information

IEEE Security & Privacy

Please Login to view website of journal

Impact Factor:

3.0

Publisher:

IEEE

ISSN:

1540-7993

Viewed:

37023

Tracked:

Call For Papers

IEEE Security & Privacy is an academic journal published by IEEE. (ISSN 1540-7993, impact factor 3.0).

About IEEE Security & Privacy

IEEE Security & Privacy (S&P)’s mission is to be the best source of reliable, useful, peer-reviewed information for those aiming to understand how systems, data, and people are protected in a world of rapid technology evolution. This bimonthly magazine publishes articles that have clarity and context, targeting a wide audience who understand technology, from developers to executives, managers to policy-makers, and researchers interested in problems with practical impact. Peer-reviewed articles and columns by real-world experts illuminate all aspects of the field, including systems, attacks and defenses, software security, applied cryptography, usability, forensics, big data, ethics, biometrics, and more, with special issues focusing on targeted topics as well as issues devoted to key events and conferences.

S&P is copublished by the IEEE Computer Society and the IEEE Reliability Society. Technical cosponsors are the IEEE Signal Processing Society and IEEE Engineering in Medicine & Biology Society. S&P accepts commercial and classified advertisements. S&P‘s 2024 impact factor is 3.0. Learn about the magazine’s history by exploring the S&P index site, curated by a volunteer.

S&P aims to provide a unique combination of research articles, case studies, tutorials, and departments covering diverse aspects of security and dependability of computer-based systems, including legal and ethical issues, privacy concerns, tools to help secure information, methods for development and assessment of trustworthy systems, analysis of vulnerabilities and attacks, trends and new developments, pedagogical and curricular issues in educating the next generation of security professionals, secure operating systems and applications, security issues in wireless networks, design and test strategies for secure and survivable systems, and cryptology, and other topics of interest to a general, technically oriented readership. Topics include, but are not limited to:

    Network Security
    Software and Hardware Security
    Systems Security
    Embedded Security
    Privacy-Enhancing Technologies
    Data Analytics for Security and Privacy
    Usable Security and Privacy
    Physical and Human Security
    Wireless and Mobile Security
    Security Foundations
    Security Economics
    Security and Privacy Policies
    Integrated Security Design Methods
    Critical Infrastructures
    Sociotechnical Security and Privacy
    Social Networks and Computing
    Surveillance
    Cybercrime and Forensics
    Developer and User Training
    Real-World Cryptography
    Intrusion Detection
    Malware

Scope

IEEE Security & Privacy is the premier magazine of the IEEE Computer and Reliability Societies for informing their members about recent and forthcoming advances in information technology pertaining to security, privacy, and dependability. The magazine seeks creative and novel perspectives on industry practices, research directions, and policy and regulatory matters. In addition to feature articles, special and themed issues, columns, and departments, experts from our community of interest provide insightful commentary on current issues and paradigm shifts via virtual roundtables and podcasts.

In particular, IEEE Security & Privacy looks for articles that identify key research problems for improving computing defenses and for developing more secure and privacy-aware systems, as well as articles that teach readers about emerging technologies that show promise in such areas. IEEE Security & Privacy encompasses a broad range of topics regarding security and privacy and features both peer-reviewed articles as well as departments and columns, which describe perspectives on hot topics from academic and industry leaders in the field.

Last updated by Dou Sun in 2026-01-03

Special Issues

Special Issue on Cyber Hard Problems
Submission Date: 2026-06-01

The rapid evolution of computing and communication technologies has rendered them nearly ubiquitous, underpinning the global economy, critical infrastructure, and national security. However, as these systems scale in complexity, they are outpacing our collective capacity to keep them safe and resilient.

The 2025 National Academies report Cyber Hard Problems: Focused Steps Toward a Resilient Digital Future characterized cyber hard problems as challenges that are “well defined, and progress toward their solution would significantly improve the safety and resiliency of cyber and cyber-enabled systems.” These challenges are particularly resistant to solutions due to a combination of technical difficulty, misaligned economic incentives, and complex human-system interactions. Hard problems are also distinct from those whose solutions would be beneficial but would not meaningfully improve resiliency and problems that are not solved by money or technology alone.

For the purposes of this special issue, a hard problem is not merely a difficult technical challenge or a persistent threat. Submissions must explicitly address why the problem is "hard" by identifying the specific collision of technical complexity, misaligned incentives, and human/organizational friction that has prevented a solution to date. We are looking for work that addresses the "why" of the deadlock as much as the "how" of the solution.

This special issue seeks contributions that advance the understanding of, or demonstrate meaningful progress against, cyber hard problems. We welcome submissions across a broad spectrum: original research presenting novel methods, tools, or findings; practice and experience reports offering lessons from real-world deployments; policy analyses examining regulatory, economic, or institutional approaches. There will be a separate category for position papers presenting bold, evidence-based proposals for unconventional solutions.

We are particularly interested in work that identifies barriers to solving hard problems and proposes actionable ways to remove them. While the NASEM report provides a useful framework, we also encourage submissions that identify and characterize hard problems not captured in that report, as well as contributions offering international perspectives on cyber resilience challenges and approaches. Work that bridges disciplinary boundaries, including connecting technical research with human behavior, organizational dynamics, or policy implications, is especially welcome.

Suggested topics include, but are not limited to:

    Predictive metrics for systemic cyber risk
    Verifying integrity in opaque global supply chains
    Engineering resilience against inherent human fallibility
    Security controls that enhance human performance
    Authenticating synthetic media at internet scale
    Securing legacy technology against modern connectivity
    Addressing the asymmetry of AI-powered attacks
    Hardening AI models against adversarial poisoning
    Graceful degradation during state-level cyberattacks
    Balancing autonomous defense with human oversight
    Secure composition of untrusted software components
    Liability frameworks for complex digital ecosystems
    Verification of complex systems' behavior, structure, and functionality
    Aligning market incentives for vendor accountability
    Reconciling rapid innovation with long-term security sustainability
    Evolving cybersecurity governance models to encompass broader stakeholders (not just organizations and governments, but also consumers and citizens)

https://www.computer.org/digital-library/magazines/sp/cfp-cyber-hard-problems

Last updated by Dou Sun in 2026-04-25

Special Issue on Inclusive Security and Privacy Engineering
Submission Date: 2026-08-17

This special issue will explore methodological & engineering advances in inclusive security  and privacy engineering. Security & privacy provisioning exercises should not only recognize  the heterogeneity of individual needs but also reflect them into how systems are conceived,  designed and engineered. This is key to security mechanism provisioning exercises  particularly for marginalized and disadvantaged groups. Complementing on prior research to bring users at the center of systems design, we focus on methodological considerations  to achieve security and privacy for all and not just few. To that end, we solicit research  articles, case studies, on the following (but not restricted to) topics.

    Methodological advances to capture the security & privacy needs of disadvantaged  groups at the intersection of their diverse beings.
    Process interventions for inclusive security & privacy engineering in the software  development lifecycle.
    Novel developer tools for inclusive security & privacy engineering.  • AI powered assistants for inclusive security & privacy engineering.
    De-colonizing inclusive security and privacy engineering.
    PETs for global south.
    Accessible PETs for diverse ability individuals.
    Study of platform accessibility interventions with respect to security & privacy of their  users.
    Economics of inclusive security & privacy engineering.
    Tech policy interventions for inclusive security and privacy engineering. • Socio technical aspects of methodological interventions to support inclusive  security engineering.
    Theoretical and empirical contributions to measure security & privacy poverty

Last updated by Dou Sun in 2026-01-10

Special Issue on Real-World Security: Impact Beyond the Publications
Submission Date: 2026-11-01

Now, more than ever, it is clear that security and privacy are real-world challenges affecting companies, institutions, and individuals in all aspects of daily life. The research community has contributed significantly towards addressing these challenges through finding impactful security vulnerabilities and developing innovative solutions that are now widely deployed. However, achieving this type of direct real-world impact comes with its own set of challenges, which often go beyond what would typically be presented in a research paper.

This special issue solicits articles describing research that has had a direct impact on real-world security and privacy, going beyond a scientific publication. This could range from identifying vulnerabilities in deployed systems through to developing solutions that have been used in practice. Importantly, articles for this special issue should focus on the specific challenges encountered in the process of achieving real-world impact, and how they were overcome. These could include experiences with Coordinated Vulnerability Disclosure (CVD), technical challenges in deploying a mitigation, or socio-technical challenges in navigating ethical, legal, or regulatory considerations. If applicable, articles can group together experiences from several different projects or papers and describe their overall impact.

An ideal article would demonstrate that security and privacy research can have direct real world impact beyond publications, and summarize the lessons learned from that process to help other researchers achieve similar goals. Topics of interest include, but are not limited to:

    Experiences with Coordinated Vulnerability Disclosure to industry or open-source projects
    Responsibly measuring or quantifying security and privacy risks in real-world systems
    Collaborating with industry to improve the security of deployed systems
    Defining or contributing to standards that are used in practice

https://www.computer.org/digital-library/magazines/sp/cfp-real-world-security-impact

Last updated by Dou Sun in 2026-04-25

Special Issue on One Decade of GDPR – Contributions to Data Protection and Future Challenges
Submission Date: 2026-12-01

The EU General Data Protection Regulation (GDPR) was adopted by the European Parliament and the Council of the European Union in 2016 and has, over the last decade, become a “gold standard” for data protection worldwide. It has especially contributed as a global benchmark for strong and comprehensive data privacy by strengthening the fundamental data subject rights of individuals and enhancing accountability and the level of compliance for data controllers and processors, both within and outside Europe, that target customers or track individuals in the EU. Also, other countries outside Europe, including, for instance, Brazil, South Africa, or China, have, partly to achieve compliance with the GDPR and/or to keep up with new technical and societal developments, revised or adopted new data protection laws. Another example is the California Consumer Privacy Act (CCPA) of 2018, which is one of the strongest state privacy laws in the US.

The GDPR has notably promoted the field of privacy-enhancing technologies and other privacy engineering and management approaches by specifically mandating Data Protection by Design and by Default, and by promoting the advantages of standardized privacy icons for enhancing usable transparency, as well as certification in data protection and requirements for conducting data impact assessments.

Despite the important new rules and opportunities that the GDPR has contributed to improving data protection, challenges persist in the area of data protection – both in practice and in research. Particularly, Data Protection by Design is often not systematically implemented on a broad scale in practice, privacy notices, cookie banner and consent forms are still lacking usable transparency, data protection standardization efforts are not well considered and utilized in practice, there is often a lack of efforts put into systematically conducting Data Protection Impact Assessments (DPIAs), and the EU-US data privacy framework for enabling transatlantic data transfers is criticized by privacy experts due to issues with GDPR compliance. Moreover, in our current time of political crisis, an increasing number of cybersecurity attacks have resulted in serious data leaks and breaches.

In addition, emerging technologies as well as modern tracking and online profiling technologies provide serious privacy and data protection threats, and foremost, the recent AI revolution have posed challenges for data protection and for implementing GDPR and ethical principles related to data protection, data governance, data accuracy, transparency, human oversight, and fairness.  This has also led to debates and proposals for weakening GDPR principles that are difficult for AI systems, such as Large Language Models (LLMs), to comply with.

Further efforts are needed to develop robust and trustworthy AI technologies, including privacy-enhancing technologies for AI, as well as utilizing AI technologies in a privacy-enhancing manner to improve usable privacy.

This Special Issue is dedicated to the 10th Anniversary of the GDPR. We invite articles providing a critical appraisal of the implementation of the GDPR, and/or of other novel data protection or privacy legal frameworks, including CCPA, from other parts of the world, in practice. We particularly also seek articles addressing challenges for upholding privacy principles despite geopolitical barriers and/or rapid technical changes and issues, including, but not limited to,

    Privacy threats by advanced tracking and profiling technologies
    Privacy- and Transparency-enhancing Technologies
    Data Protection by Design and by Default
    Data Protection and Fundamental Rights Impact Assessment Frameworks
    Privacy and data protection standardization and certification
    Usable privacy and transparency
    Consent Management
    Data protection and digital sovereignty
    Personalized Privacy Assistants
    AI-based attacks and challenges for enforcing data protection principles
    Privacy threats of agentic AI and LLM-based systems
    Analysis of simplification proposals for the GDPR, incl. EU Omnibus Regulation, and other new privacy and data protection legislation
    Privacy engineering methods, tools. techniques and empirical studies

https://www.computer.org/digital-library/magazines/sp/cfp-one-decade-gdpr-challenges

Last updated by Dou Sun in 2026-04-25

Best Papers

Year	Best Papers
2024	CHERI: Hardware-Enabled C/C++ Memory Protection at Scale

People who viewed this also viewed

CCF	Full Name	Impact Factor	Publisher	ISSN
a	IEEE Transactions on Dependable and Secure Computing	7.5	IEEE	1545-5971
c	Future Generation Computer Systems	6.1	Elsevier	0167-739X
b	Pattern Recognition	7.6	Elsevier	0031-3203
b	The Journal of Systems Architecture: Embedded Software Design	4.1	Elsevier	1383-7621
b	Advanced Engineering Informatics	9.9	Elsevier	1474-0346
b	Information Processing & Management	6.9	Elsevier	0306-4573
b	Information Sciences	6.8	Elsevier	0020-0255
b	Information Systems	3.4	Elsevier	0306-4379
c	Engineering Applications of Artificial Intelligence	8.0	Elsevier	0952-1976
c	Neurocomputing	6.5	Elsevier	0925-2312

Related Journals

Full Name	Impact Factor	Publisher	ISSN
IEEE Computer	2.3	IEEE	0018-9162
IEEE Software	3.3	IEEE	0740-7459
IEEE Intelligent Systems	6.1	IEEE	1541-1672
IEEE Network	6.3	IEEE	0890-8044
IEEE MultiMedia	3.3	IEEE	1070-986X
IEEE Wireless Communications	11.5	IEEE	1536-1284
IEEE Computer Graphics and Applications	1.4	IEEE	0272-1716
IEEE Transactions on Control Systems Technology	3.9	IEEE	1063-6536
IEEE Transactions on Power Systems	7.2	IEEE	0885-8950
IEEE Transactions on Signal Processing	5.8	IEEE	1053-587X

Related Conferences

CCF	CORE	QUALIS	Short	Full Name	Submission	Notification	Conference
b	a	a1	ACSAC	Annual Computer Security Applications Conference	2026-05-26	2026-07-13	2026-12-07
b	a	a2	PACT	International Conference on Parallel Architectures and Compilation Techniques	2026-04-17	2026-08-05	2026-10-19
a	a*		S&P	IEEE Symposium on Security and Privacy	2025-11-13	2026-03-19	2026-05-18
			IEEE S&B	IEEE Security & Privacy on the Blockchain Workshop	2021-05-21	2021-06-15	2021-09-07
a	a*	a1	Security	USENIX Security Symposium	2026-01-29		2026-08-12
			IoT S&P	Workshop on Internet of Things Security and Privacy	2017-08-11	2017-09-07	2017-11-03
c	b	b2	IEEE CLOUD	IEEE International Conference on Cloud Computing	2023-03-25	2023-05-08	2023-07-02
			PCDS	IEEE International Conference on Privacy Computing and Data Security	2024-08-04	2024-09-15	2024-12-02
c			EuroS&P	IEEE European Symposium on Security and Privacy	2025-11-13	2026-03-05	2026-07-06
			TPS	IEEE International Conference on Trust, Privacy and Security in Intelligent Systems, and Applications	2025-06-21	2025-07-21	2025-11-11

Tracker
Iris Chen (87)
Mx Yan (85)
Perley Ry (165)
Songbo Bu (171)
Cherryl Chen (235)
ZhengLiang Fang (30)
Urko Zurutuza (126)
ZhaoJian Zhou (153)
Jianhua Wang (707)
Qiwei Hu (87)
Tan Benny (28)
X.X Xiong (477)
Binbin Li (145)
Yongkang Jiang (579)
Riccardo Spolaor (880)
Jiyuan Liu (877)
Hao Zhang (691)
Xiaokang Yin (670)
Wle3@163.com Wang (362)
Frank Xu (2123)
Shuiguang Zeng (876)
Junyang Bai (71)
Bruno Vavala (99)
Jianhua Liu (1537)
Qing Hu (1228)
Ya Xiao (1399)
Pei Chen (798)
Chaoping Ding (410)
Zhiqiang He (478)
Limin Shen (85)
YQ L (223)
Roger Luo (435)
Pengfei Wang (3557)
Ronglei Wei (999)
Ke Li (120)
Li-e Wang (512)
Merry Liuer (99)
MC Zheng (969)
Brian Min (47)

Advertisment