Filter by content type

Select one or more filters. This choice will reload the page to display the filtered results.

Remove all filters

701 results

    • Seminar

    • SoSysec

    How to decrypt without keys with GlobalPlatform SCP02 protocol

    • July 06, 2018

    • Inria Center of the University of Rennes - - See the page of each talk for the room.

    Speaker : par Loic Ferreira (Orange Labs, IRISA)

    The GlobalPlatform SCP02 protocol is a security protocol implemented in smart cards, and used by transport companies, in the banking world and by mobile network operators (UICC/SIM cards). We describe how to perform a padding oracle attack against SCP02. The attack allows an adversary to efficiently retrieve plaintext bytes from an encrypted data field. We provide results of our experiments done[…]
    • Seminar

    • SoSysec

    Breaking and fixing HB+DB: A Short Tale of Provable vs Experimental Security and Lightweight Designs

    • February 02, 2018

    • Inria Center of the University of Rennes - - See the page of each talk for the room.

    Speaker : Ioana Boureanu (University of Surrey)

    HB+ is a well-know authentication scheme purposely designed to be lightweight. However, HB+ is vulnerable to a key-recovery, man-in-the-middle (MiM) attack dubbed GRS. To this end, at WiSec2015, the HB+DB protocol added a distance-bounding dimension to HB+, which was experimentally shown to counteract the GRS attack.In this talk, we will exhibit however a number of security flaws in the HB+DB[…]
    • Seminar

    • SoSysec

    Voting : You Can’t Have Privacy without Individual Verifiability

    • March 01, 2019

    • Inria Center of the University of Rennes - - See the page of each talk for the room.

    Speaker : Joseph Lallemand (Loria)

    Electronic voting typically aims at two main security goals: vote privacy and verifiability. These two goals are often seen as antagonistic and some national agencies even impose a hierarchy between them: first privacy, and then verifiability as an additional feature. Verifiability typically includes individual verifiability (a voter can check that her ballot is counted); universal verifiability […]
    • Seminar

    • SoSysec

    Binary Edwards Curves for intrinsically secure ECC implementations for the IoT

    • September 07, 2018

    • Inria Center of the University of Rennes - - See the page of each talk for the room.

    Speaker : Antoine Loiseau (CEA)

    Even if recent advances in public key cryptography tend to focus on algorithms able to survive the post quantum era, at present, there is a urgent need to propose fast, low power and securely implemented cryptography to address the immediate security challenges of the IoT. In this talk, we present a new set of Binary Edwards Curves which have been defined to achieve the highest security levels (up[…]
    • Seminar

    • SoSysec

    Differentially Private Linear Sketches: Efficient Implementations and Applications

    • February 10, 2023 (09:30 - 10:30)

    • Inria Center of the University of Rennes - - See the page of each talk for the room.

    Speaker : Fuheng Zhao (University of California Santa Barbara)

    Linear sketches have been widely adopted to process fast data streams, and they can be used to accurately answer frequency estimation, approximate top K items, and summarize data distributions. When data are sensitive, it is desirable to provide privacy guarantees for linear sketches to preserve private information while delivering useful results with theoretical bounds. To address these[…]
    • Seminar

    • SoSysec

    Security and privacy in personal data management systems

    • January 28, 2022

    • Inria Center of the University of Rennes - - See the page of each talk for the room.

    Speaker : Nicolas Anciaux (INRIA)

    Personal Data Management Systems (called PDMS) provide individuals with a hardware and/or software solution to manage their data under control. From a data management and security/privacy perspective, the issues involved are complex and differ significantly from the traditional database setting. The emergence of trusted execution environments (such as Intel SGX) could be a game changer. This[…]