BREJON Jean-Baptiste

PhD student at Sorbonne University
Team : ALSOC
https://lip6.fr/Jean-Baptiste.Brejon

Supervision : Karine HEYDEMANN, Emmanuelle ENCRENAZ

Co-supervision : MEUNIER Quentin

Quantification de la sécurité des applications en présence d'attaques physiques et détection de chemins d'attaques

Fault attacks are a serious threat to the security of embedded systems. To address this threat, the code can be hardened by inserting software protections aiming to detect or tolerate the faults. The resulting robustness of the code must be assessed. In this thesis, we present an approach combining static and dynamic code analysis with formal verification as well as a set of metrics to assess the robustness of binaries under faults attacks. Our approach models the vulnerabilities search by equivalence-checking problems solved through SMT solving. The proposed approach has been implemented into a tool, RobustB, which analyse the robustness of the code and, thanks to the metrics, which allows the compare the robustness of codes exposing different protections and/or compiled with different compilers and/or at different optimisation levels.

Defence : 06/26/2020

Jury members :

M. Jean-Max Dutertre, Professeur, Ecole Nationale Supérieure des Mines de Saint-Étienne, LIMOS [Rapporteur]
Mme. Marie-Laure Potet, Professeur, Ensimag - Grenoble INP, Verimag [Rapporteur]
M. Robin David, Ingénieur expert sécurité, Quarkslab
Mme. Emmanuelle Encrenaz, Maître de conférence HDR, Sorbonne Université, LIP6
Mme. Karine Heydemann, Maître de conférence HDR, Sorbonne Université, LIP6
M. Quentin Meunier, Maître de conférence, Sorbonne Université, LIP6
M. Antoine Miné, Professeur, Sorbonne Université, LIP6
Mme. Patricia Mouy, Ingénieur expert sécurité, ANSSI

Departure date : 06/26/2020

2015-2020 Publications

All Journal articles Communications Thesis

2020
- J.‑B. Brejon : “Quantification de la sécurité des applications en présence d’attaques physiques et détection de chemins d’attaques”, thesis, phd defence 06/26/2020, supervision Heydemann, Karine Encrenaz, Emmanuelle, co-supervision : Meunier, Quentin (2020)
2019
- J.‑B. Bréjon, K. Heydemann, E. Encrenaz, Quentin L. Meunier, S. Vu : “Fault attack vulnerability assessment of binary code”, Cryptography and Security in Computing Systems (CS2’19), Valencia, Spain, pp. 13-18, (ACM) (2019)
2016
- A. Drebes, J.‑B. Bréjon, A. Pop, K. Heydemann, A. Cohen : “Language-Centric Performance Analysis of OpenMP Programs with Aftermath”, IWOMP 2016 - 12^th International Workshop on OpenMP, vol. 9903, Lecture Notes in Computer Science, Nara, Japan, pp. 237-250, (Springer) (2016)
- C. Dévigne, J.‑B. Bréjon, Quentin L. Meunier, F. Wajsbürt : “Executing Secured Virtual Machines within a Manycore Architecture”, Microprocessors and Microsystems: Embedded Hardware Design, (Elsevier) (2016)
2015
- C. Dévigne, J.‑B. Bréjon, Quentin L. Meunier, F. Wajsbürt : “Executing secured virtual machines within a manycore architecture”, Proceedings of the IEEE Nordic Circuits and Systems Conference (NORCAS), Oslo, Norway (2015)