Je recherche

656 résultats

• • Séminaire

  • SoSysec

  A formal study of injection-based attacks and some tools it will enable

  • 19 février 2021

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Pierre-François Gimenez (Inria Rennes, CentraleSupélec)

  Many systems work by receiving instructions and processing them: e.g., a browser receives and then displays an HTML page and executes Javascript scripts, a database receives a query and then applies it to its data, an embedded system controlled through a protocol receives and then processes a message. When such instructions depend on user input, one generally constructs them with concatenation or[…]

• • Séminaire

  • SoSysec

  Search-Based Local Black-Box Deobfuscation: Understand, Improve and Mitigate

  • 25 février 2022

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Grégoire Menguy (CEA LIST)

  Code obfuscation aims at protecting Intellectual Property and other secrets embedded into software from being retrieved. Recent works leverage advances in artificial intelligence (AI) with the hope of getting blackbox deobfuscators completely immune to standard (whitebox) protection mechanisms. While promising, this new field of AI-based, and more specifically search-based blackbox deobfuscation,[…]

• • Séminaire

  • SoSysec

  QUIC: que faut-il attendre de ce nouveau protocole de communication sécurisé ?

  • 29 mai 2020

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Olivier Levillain (Telecom Sudparis)

  Depuis plusieurs années, les grands acteurs du web travaillent à l’amélioration des communications entre leurs utilisateurs et leurs services. Ces améliorations peuvent porter sur la vitesse des connexions ou sur la sécurité des échanges. QUIC fait partie des efforts en cours. Il s’agit d’un protocole en cours de standardisation à l’IETF, qu’on peut résumer à un protocole sur UDP fournissant les[…]

• • Séminaire

  • SoSysec

  Formal security proofs in a post-quantum world

  • 19 novembre 2021

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Charlie Jacomme (CISPA)

  In the recent years, formals methods for security and their associated tools have been used successfully both to find novel and complex attacks on many protocols [A] and to help in their standardization process. They however face a new challenge with the increasing probability of quantum computers coming into the real-world: we need to be able to provide guarantees against quantum attackers.In[…]

• • Séminaire

  • SoSysec

  Learning-Based Network Intrusion Detection: an Imbalanced, Constantly Evolving and Timely Problem

  • 07 octobre 2022

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Maxime Pelcat (INSA Rennes)

  Network intrusion detection systems (NIDS) observe network traffic and aim to pinpoint intrusions, i.e. effective threats on the integrity, availability or confidentiality of services and data provided by this network. There are two types of NIDS:1) signature-based intrusion detection systems that identify known intrusions by referring to an existing knowledge base, and2) anomaly-based intrusion[…]

• • Séminaire

  • SoSysec

  Does Facebook use sensitive data for advertising?

  • 12 mars 2021

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : José González Cabañas (Universidad Carlos III de Madrid, Spain)

  Large online platforms use personal data, for example, your interests, to allow advertisers to reach you based on the things you like. But did you know some of these interests they use are associated with sensitive information directly linked to your social profile? In this talk, I will talk about the definition of sensitive data in terms of the General Data Protection Regulation in Europe (GDPR).[…]