Je recherche

634 résultats

• • Séminaire

  • SoSysec

  Automated verification of privacy-type properties for security protocols

  • 16 mars 2018

  • Inria Center of the University of Rennes - -Petri/Turing room

  Orateur : Ivan Gazeau (LORIA, Inria Nancy)

  The applied pi-calculus is a powerful framework to model protocols and to define security properties. In this symbolic model, it is possible to verify automatically complex security properties such as strong secrecy, anonymity and unlinkability properties which are based on equivalence of processes.In this talk, we will see an overview of a verification method used by a tool, Akiss. The tool is[…]

• • Séminaire

  • SoSysec

  La protection des flux en télévision numérique

  • 22 novembre 2019

  • Inria Center of the University of Rennes - -Petri/Turing room

  Orateur : Eric Desmicht (DGA)

  En télévision numérique, des flux numériques comportant de la vidéo sont mis à la disposition des utilisateurs via différents média (cable, satellite, TNT, IP…) et différentes techniques (broadcast, multicast, unicast, support numérique…). Pour garantir les revenus des opérateurs de télévision à péage proposant des contenus à forte valeur ajoutée, il est essentiel que seuls les consommateurs ayant[…]

• • Séminaire

  • SoSysec

  A Compositional and Complete approach to Verifying Privacy Properties using the Applied Pi-calculus

  • 08 février 2019

  • Inria Center of the University of Rennes - -Petri/Turing room

  Orateur : Ross Horne (University of Luxembourg)

  The pi-calculus was introduced for verifying cryptographic protocols by Abadi and Fournet in 2001. They proposed an equivalence technique, called bisimilarity, useful for verify privacy properties. It is widely acknowledged (cf. Paige and Tarjan 1987), that bisimilarity is more efficient to check than trace equivalence; however, surprisingly, tools based on the applied pi-calculus typically still[…]

• • Séminaire

  • SoSysec

  How to decrypt without keys with GlobalPlatform SCP02 protocol

  • 06 juillet 2018

  • Inria Center of the University of Rennes - -Petri/Turing room

  Orateur : par Loic Ferreira (Orange Labs, IRISA)

  The GlobalPlatform SCP02 protocol is a security protocol implemented in smart cards, and used by transport companies, in the banking world and by mobile network operators (UICC/SIM cards). We describe how to perform a padding oracle attack against SCP02. The attack allows an adversary to efficiently retrieve plaintext bytes from an encrypted data field. We provide results of our experiments done[…]

• • Séminaire

  • SoSysec

  Not so AdHoc testing: formal methods in the standardization of the EDHOC protocol

  • 16 décembre 2022

  • Inria Center of the University of Rennes - -Petri/Turing room

  Orateur : Charlie Jacomme (Inria Paris)

  We believe that formal methods in security should be leveraged in all the standardisation’s of security protocols in order to strengthen their guarantees. To be effective, such analyses should be:* maintainable: the security analysis should be performed on every step of the way, i.e. each iteration of the draft;* pessimistic: all possible threat models, notably all sort of compromise should be[…]

• • Séminaire

  • SoSysec

  Ransomware Detection Using Markov Chain Models Over File Headers

  • 26 novembre 2021

  • Inria Center of the University of Rennes - -Petri/Turing room

  Orateur : David Lubicz (DGA-MI)

  In this paper, a new approach for the detection of ransomware based on the runtime analysis of their behaviour is presented. The main idea is to get samples by using a mini-filter to intercept write requests, then decide if a sample corresponds to a benign or a malicious write request. To do so, in a learning phase, statistical models of structured file headers are built using Markov chains. Then[…]