Je recherche

669 résultats

• • Séminaire

  • SoSysec

  A theory of assertions for Dolev-Yao models

  • 08 juin 2018

  • Inria Center of the University of Rennes - - Room TBD

  Orateur : Vaishnavi Sundararajan (Chennai Mathematical Institute, India)

  We undertake an abstract study of certification in security protocols, concentrating on the logical properties and derivability of certificates. Specifically, we extend the Dolev-Yao model with a new class of objects called ‘assertions’, along with an associated algebra for deriving new assertions from old ones. We obtain complexity results for the derivability problem and active intruder problem[…]

• • Séminaire

  • SoSysec

  La protection des flux en télévision numérique

  • 22 novembre 2019

  • Inria Center of the University of Rennes - - Room TBD

  Orateur : Eric Desmicht (DGA)

  En télévision numérique, des flux numériques comportant de la vidéo sont mis à la disposition des utilisateurs via différents média (cable, satellite, TNT, IP…) et différentes techniques (broadcast, multicast, unicast, support numérique…). Pour garantir les revenus des opérateurs de télévision à péage proposant des contenus à forte valeur ajoutée, il est essentiel que seuls les consommateurs ayant[…]

• • Séminaire

  • SoSysec

  Automated verification of privacy-type properties for security protocols

  • 16 mars 2018

  • Inria Center of the University of Rennes - - Room TBD

  Orateur : Ivan Gazeau (LORIA, Inria Nancy)

  The applied pi-calculus is a powerful framework to model protocols and to define security properties. In this symbolic model, it is possible to verify automatically complex security properties such as strong secrecy, anonymity and unlinkability properties which are based on equivalence of processes.In this talk, we will see an overview of a verification method used by a tool, Akiss. The tool is[…]

• • Séminaire

  • SoSysec

  A Compositional and Complete approach to Verifying Privacy Properties using the Applied Pi-calculus

  • 08 février 2019

  • Inria Center of the University of Rennes - - Room TBD

  Orateur : Ross Horne (University of Luxembourg)

  The pi-calculus was introduced for verifying cryptographic protocols by Abadi and Fournet in 2001. They proposed an equivalence technique, called bisimilarity, useful for verify privacy properties. It is widely acknowledged (cf. Paige and Tarjan 1987), that bisimilarity is more efficient to check than trace equivalence; however, surprisingly, tools based on the applied pi-calculus typically still[…]

• • Séminaire

  • SoSysec

  How to decrypt without keys with GlobalPlatform SCP02 protocol

  • 06 juillet 2018

  • Inria Center of the University of Rennes - - Room TBD

  Orateur : par Loic Ferreira (Orange Labs, IRISA)

  The GlobalPlatform SCP02 protocol is a security protocol implemented in smart cards, and used by transport companies, in the banking world and by mobile network operators (UICC/SIM cards). We describe how to perform a padding oracle attack against SCP02. The attack allows an adversary to efficiently retrieve plaintext bytes from an encrypted data field. We provide results of our experiments done[…]

• • Séminaire

  • SoSysec

  Breaking and fixing HB+DB: A Short Tale of Provable vs Experimental Security and Lightweight Designs

  • 02 février 2018

  • Inria Center of the University of Rennes - - Room TBD

  Orateur : Ioana Boureanu (University of Surrey)

  HB+ is a well-know authentication scheme purposely designed to be lightweight. However, HB+ is vulnerable to a key-recovery, man-in-the-middle (MiM) attack dubbed GRS. To this end, at WiSec2015, the HB+DB protocol added a distance-bounding dimension to HB+, which was experimentally shown to counteract the GRS attack.In this talk, we will exhibit however a number of security flaws in the HB+DB[…]