Dans le cadre de notre séminaire « La Cybersécurité sur un plateau » (Cybersecurity on a Plate), nous aurons 2 présentations le mardi 08 avril prochain. Le séminaire CoaP aura lieu à 10h30 dans le bâtiment IMT/TP/TSP, en salle 3.A213.
Si vous venez participer pour la première fois, n'hésitez pas à contacter les organisateurs pour ne pas être bloqué à l'entrée.
Ayoub WEHBY (Telecom Paris) - Towards Secure Connected Cars: AI-Based Defense Against CAM-Based DDoS Attacks
Abstract: The increasing connectivity of modern cars enhances driver safety and comfort but also expands the attack surface for cyber threats. In this presentation, we first explore the vulnerabilities of connected cars, focusing on Distributed Denial-of-Service (DDoS) attacks leveraging Cooperative Awareness Messages (CAMs) and their impact on safety-critical applications. We then introduce a machine-learning detection approach, developed using a CAM-based DDoS dataset generated from a realistic traffic scenario in Luxembourg City. Next, we demonstrate the generalizability of our models against morphing DDoS attacks. Finally, we unveil a new attack model incorporating Sybil-based techniques that challenge our detection system and discuss the strategies employed to restore detection accuracy. This work highlights the urgent need for robust intrusion detection systems in connected car environments.
Sirdey Renaud (CEA) - Beyond CPA security for FHE
Abstract: Since its inception more than ten years ago, Fully Homomorphic Encryption has been the subject of a lot of research towards more efficiency and better practicality. From a security perspective, however, FHE still raises a number of questions and challenges, in particular due to the fact that all the FHE used in practice achieve only CPA-security (and all of these schemes are trivially CCA1 insecure). Over the last few years, very active research has been done to explore the security of FHE beyond that regime with new security notions, attacks and constructions emerging. In this talk, we will cover recent “slightly beyond CPA” security notions, such as CPAD, as well as new attacks on FHE in that model. We’ll then move on to CCA security for FHE and present recent results towards answering the two questions: can we build FHE schemes offering some degree of CCA security? And, what is the strongest degree of CCA-security achievable by FHE?