Je recherche

669 résultats

• • Séminaire

  • SoSysec

  Built on sand: on the security of Collaborative Machine Learning

  • 25 mars 2022

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Dario Pasquini (EPFL)

  This talk is about inaccurate assumptions, unrealistic trust models, and flawed methodologies affecting current collaborative machine learning techniques. In the presentation, we cover different security issues concerning both emerging approaches and well-established solutions in privacy-preserving collaborative machine learning. We start by discussing the inherent insecurity of Split Learning and[…]

• • Séminaire

  • SoSysec

  Not so AdHoc testing: formal methods in the standardization of the EDHOC protocol

  • 16 décembre 2022

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Charlie Jacomme (Inria Paris)

  We believe that formal methods in security should be leveraged in all the standardisation’s of security protocols in order to strengthen their guarantees. To be effective, such analyses should be:* maintainable: the security analysis should be performed on every step of the way, i.e. each iteration of the draft;* pessimistic: all possible threat models, notably all sort of compromise should be[…]

• • Séminaire

  • SoSysec

  Ransomware Detection Using Markov Chain Models Over File Headers

  • 26 novembre 2021

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : David Lubicz (DGA-MI)

  In this paper, a new approach for the detection of ransomware based on the runtime analysis of their behaviour is presented. The main idea is to get samples by using a mini-filter to intercept write requests, then decide if a sample corresponds to a benign or a malicious write request. To do so, in a learning phase, statistical models of structured file headers are built using Markov chains. Then[…]

• • Séminaire

  • SoSysec

  Reasoning over leaks of information for Access Control of Databases

  • 13 octobre 2022

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Pierre Bourhis (CNRS, CRISTAL)

  Controlling the access of data in Database management systems is a classical problem and it has been solved through different mechanisms. One of the most common mechanism implemented in most Database management systems is the mechanism of views, i.e defining the accessible data of a user as the result of a query. This mechanism is also used in principle in other systems such as in social networks.[…]

• • Séminaire

  • SoSysec

  Les cyberopérations: entre technique et droit international. Attribution, preuve et responsabilité.

  • 02 avril 2021

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Anne-Thida Norodom (Professeur de droit public, Université de Paris)

  L’objet de cette intervention est de montrer à quel point le juridique est dépendant du technique lorsqu’il s’agit de réguler les cyberopérations. L’approche choisie sera celle du droit international public, c’est-à-dire du droit applicable entre Etats. Alors qu’il existe un consensus au niveau international sur l’applicabilité du droit international dans le domaine numérique, les négociations en[…]

• • Séminaire

  • SoSysec

  An evaluation of Symbolic Execution Systems and the benefits of compilation with SymCC

  • 25 septembre 2020

  • Inria Center of the University of Rennes - - Petri/Turing room

  Orateur : Aurélien Francillon (Eurecom)

  In this talk I will discuss our recent work, together with Sebastian Poeplau, on Symbolic execution. Symbolic execution has become a popular technique for software testing and vulnerability detection, in particular, because it allows to generate test cases for difficult to reach program paths. However, a major impediment to practical symbolic execution is speed, especially when compared to near[…]