We invite talks in the following areas. Cross-area submissions are welcome — pick the closest fit.
Headline Area
AI & Autonomy Attacks
VLM/VLA adversarial inputs, LLM prompt injection into task planners, perception manipulation, AI decision-making hijack. If it breaks the robot's brain, it belongs here.
Robot System & Protocol Exploitation
ROS 2 / DDS vulnerabilities, RTPS message tampering, middleware privilege escalation, authentication weaknesses in control frameworks.
Sensor Spoofing & Physical Attacks
LiDAR, camera, IMU spoofing. GPS manipulation on mobile robots. Actuator fault injection. EM/laser side-channel attacks on robot MCUs.
Firmware, Supply Chain & Cloud API
Firmware reverse engineering, OTA update hijacking, 3rd-party SDK vulnerabilities, cloud API abuse, digital twin and fleet management platform attacks.
Simulation Platforms & Defensive Design
Sim-to-real attack transfer in Gazebo, NVIDIA Isaac Sim, or Webots. Secure robot architecture and threat modeling. Runtime anomaly detection on CAN/DDS.