NordSec 2022 The 27th Nordic Conference on Secure IT Systems, Reykjavik, Iceland, November 30 - December 2, 2022 (submissions due 22 August 2022) NordSec is an annual research conference series that has been running since 1996. The NordSec conferences address a broad range of topics on IT security. The events bring together security researchers from the Nordic countries, Northern Europe, and beyond and encourage interaction between academia and industry. Possible topics include, but are not limited to: - Access control and security models - Applied cryptography - Blockchains - Cloud security - Cryptanalysis - Cryptographic protocols - Cyber crime, warfare, and forensics - Economic, legal, and social aspects of security - Formal analysis - Hardware and smart card security - Information flow security - Intrusion detection and mitigation - Language-based security - Mobile, embedded, and Internet of Things security - Operating System security - Privacy and anonymity - Security and machine learning - Security education and training - Security management and audit - Security metrics - Security protocols - Security usability - Social engineering and phishing - Software security and malware - Threat modelling - Trust and identity management - Trusted computing - Vulnerability testing - Web application security Contributions should reflect original research, developments, studies and experience. Submitted papers should not exceed 16 pages (excluding references and appendices) in Springer LNCS format. Nordsec 2022 proceedings will be published in Springer Lecture Notes in Computer Science series. For more information, please see https://nordsec2022.ru.is/