Hervé Debar

Proceedings of the 18th International Conference on Availability, Reliability and Security, 2023

2022

Towards a Systematic and Automatic Use of State Machine Inference to Uncover Security Flaws and Fingerprint TLS Stacks.

[BibT_eX]

[DOI]

Aina Toky Rasoamanana

Olivier Levillain

Proceedings of the Computer Security - ESORICS 2022, 2022

2021

CVSS-BERT: Explainable Natural Language Processing to Determine the Severity of a Computer Security Vulnerability from its Description.

[BibT_eX]

[DOI]

Mustafizur R. Shahid

Proceedings of the 20th IEEE International Conference on Machine Learning and Applications, 2021

2020

Solving security constraints for 5G slice embedding: A proof-of-concept.

[BibT_eX]

[DOI]

François Boutigny

Stéphane Betgé-Brezetz

Comput. Secur., 2020

Generative Deep Learning for Internet of Things Network Traffic Generation.

[BibT_eX]

[DOI]

Proceedings of the 25th IEEE Pacific Rim International Symposium on Dependable Computing, 2020

Automated Saturation Mitigation Controlled by Deep Reinforcement Learning.

[BibT_eX]

[DOI]

Proceedings of the 28th IEEE International Conference on Network Protocols, 2020

A Quantitative Study of Vulnerabilities in the Internet of Medical Things.

[BibT_eX]

[DOI]

Razvan Beuran

Yasuo Tan

Proceedings of the 6th International Conference on Information Systems Security and Privacy, 2020

2019

A Survey on Game-Theoretic Approaches for Intrusion Detection and Response Optimization.

[BibT_eX]

[DOI]

ACM Comput. Surv., 2019

Anomalous Communications Detection in IoT Networks Using Sparse Autoencoders.

[BibT_eX]

[DOI]

Proceedings of the 18th IEEE International Symposium on Network Computing and Applications, 2019

Methodology of a Network Simulation in the Context of an Evaluation: Application to an IDS.

[BibT_eX]

[DOI]

Pierre-Marie Bajan

Christophe Kiennert

Proceedings of the 5th International Conference on Information Systems Security and Privacy, 2019

2018

Dynamic risk management response system to handle cyber threats.

[BibT_eX]

[DOI]

Future Gener. Comput. Syst., 2018

Multi-Provider Secure Virtual Network Embedding.

[BibT_eX]

[DOI]

François Boutigny

Stéphane Betgé-Brezetz

Proceedings of the 9th IFIP International Conference on New Technologies, 2018

IoT Devices Recognition Through Network Traffic Analysis.

[BibT_eX]

[DOI]

Proceedings of the IEEE International Conference on Big Data (IEEE BigData 2018), 2018

2017

A polytope-based approach to measure the impact of events against critical infrastructures.

[BibT_eX]

[DOI]

Joaquín García

J. Comput. Syst. Sci., 2017

Selection of Pareto-efficient response plans based on financial and operational assessments.

[BibT_eX]

[DOI]

Alexander Motzek

Joaquín García

Ralf Möller

EURASIP J. Inf. Secur., 2017

ArOMA: An SDN based autonomic DDoS mitigation framework.

[BibT_eX]

[DOI]

Comput. Secur., 2017

Choosing Models for Security Metrics Visualization.

[BibT_eX]

[DOI]

Maxim Kolomeec

Proceedings of the Computer Network Security, 2017

Adaptive Policy-driven Attack Mitigation in SDN.

[BibT_eX]

[DOI]

Proceedings of the 1st International Workshop on Security and Dependability of Multi-Domain Infrastructures, 2017

2016

Bayesian Attack Model for Dynamic Risk Assessment.

[BibT_eX]

[DOI]

François-Xavier Aguessy

CoRR, 2016

Considering Internal Vulnerabilities and the Attacker's Knowledge to Model the Impact of Cyber Events as Geometrical Prisms.

[BibT_eX]

[DOI]

Jose Rubio-Hernan

Proceedings of the 2016 IEEE Trustcom/BigDataSE/ISPA, 2016

New Types of Alert Correlation for Security Information and Event Management Systems.

[BibT_eX]

[DOI]

Mohammed El-Barbori

Proceedings of the 8th IFIP International Conference on New Technologies, 2016

Towards an Automated and Dynamic Risk Management Response System.

[BibT_eX]

[DOI]

Ender Alvarez

Alexander Motzek

Matteo Merialdo

Proceedings of the Secure IT Systems - 21st Nordic Conference, NordSec 2016, Oulu, Finland, 2016

ML: DDoS Damage Control with MPLS.

[BibT_eX]

[DOI]

Proceedings of the Secure IT Systems - 21st Nordic Conference, NordSec 2016, Oulu, Finland, 2016

Hybrid Risk Assessment Model Based on Bayesian Networks.

[BibT_eX]

[DOI]

François-Xavier Aguessy

Proceedings of the Advances in Information and Computer Security, 2016

Security Issues and Mitigation in Ethernet POWERLINK.

[BibT_eX]

[DOI]

Jonathan Yung

Louis Granboulan

Proceedings of the Security of Industrial Control Systems and Cyber-Physical Systems, 2016

An n-Sided Polygonal Model to Calculate the Impact of Cyber Security Events.

[BibT_eX]

[DOI]

Proceedings of the Risks and Security of Internet and Systems, 2016

StemJail: Dynamic Role Compartmentalization.

[BibT_eX]

[DOI]

Mickaël Salaün

Marion Daubignard

Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security, 2016

Selection of Mitigation Actions Based on Financial and Operational Impact Assessments.

[BibT_eX]

[DOI]

Alexander Motzek

Proceedings of the 11th International Conference on Availability, Reliability and Security, 2016

2015

Selecting optimal countermeasures for attacks against critical systems using the attack volume model and the RORI index.

[BibT_eX]

[DOI]

Ender Alvarez

Mohammed El-Barbori

Comput. Electr. Eng., 2015

Using a 3D Geometrical Model to Improve Accuracy in the Evaluation and Selection of Countermeasures Against Complex Cyber Attacks.

[BibT_eX]

[DOI]

Proceedings of the Security and Privacy in Communication Networks, 2015

Evaluating the Comprehensive Complexity of Authorization-based Access Control Policies using Quantitative Metrics.

[BibT_eX]

[DOI]

Malek Belhaouane

Proceedings of the SECRYPT 2015, 2015

Automated Classification of C&C Connections Through Malware URL Clustering.

[BibT_eX]

[DOI]

Dingqi Yang

Proceedings of the ICT Systems Security and Privacy Protection, 2015

Considering technical and financial impact in the selection of security countermeasures against Advanced Persistent Threats (APTs).

[BibT_eX]

[DOI]

Christophe Ponchel

Laura Rodriguez Martin

Proceedings of the 7th International Conference on New Technologies, Mobility and Security, 2015

Attack Volume Model: Geometrical Approach and Application.

[BibT_eX]

[DOI]

Proceedings of the Risks and Security of Internet and Systems, 2015

TLS Record Protocol: Security Analysis and Defense-in-depth Countermeasures for HTTPS.

[BibT_eX]

[DOI]

Olivier Levillain

Baptiste Gourdin

Proceedings of the 10th ACM Symposium on Information, 2015

On the Isofunctionality of Network Access Control Lists.

[BibT_eX]

[DOI]

Malek Belhaouane

Proceedings of the 10th International Conference on Availability, Reliability and Security, 2015

2014

RORI-based countermeasure selection using the OrBAC formalism.

[BibT_eX]

[DOI]

Malek Belhaouane

Int. J. Inf. Sec., 2014

Combining Technical and Financial Impacts for Countermeasure Selection.

[BibT_eX]

[DOI]

Christophe Ponchel

Proceedings of the Proceedings 2014 International Workshop on Advanced Intrusion Detection and Prevention, 2014

Policy Enforcement Point Model.

[BibT_eX]

[DOI]

Proceedings of the International Conference on Security and Privacy in Communication Networks, 2014

Classification of SSL Servers based on their SSL Handshake for Automated Security Assessment.

[BibT_eX]

[DOI]

Sirikarn Pukkawanna

Youki Kadobayashi

Proceedings of the Third International Workshop on Building Analysis Datasets and Gathering Experience Returns for Security, 2014

2013

Attribute-Based Mining Process for the Organization-Based Access Control Model.

[BibT_eX]

[DOI]

Ahmad Samer Wazan

Proceedings of the 12th IEEE International Conference on Trust, 2013

Service Dependencies-Aware Policy Enforcement Framework Based on Hierarchical Colored Petri Net.

[BibT_eX]

[DOI]

Proceedings of the Security in Computing and Communications - International Symposium, 2013

An Adaptive Mitigation Framework for Handling Suspicious Network Flows via MPLS Policies.

[BibT_eX]

[DOI]

Proceedings of the Secure IT Systems - 18th Nordic Conference, 2013

A TCP delay-based mechanism for detecting congestion in the Internet.

[BibT_eX]

[DOI]

Proceedings of the Third International Conference on Communications and Information Technology, 2013

Parsifal: Writing efficient and robust binary parsers, quickly.

[BibT_eX]

[DOI]

Olivier Levillain

Proceedings of the 2013 International Conference on Risks and Security of Internet and Systems (CRiSIS), 2013

2012

An ontology-driven approach to model SIEM information and operations using the SWRL formalism.

[BibT_eX]

[DOI]

Int. J. Electron. Secur. Digit. Forensics, 2012

Network Attack Detection and Defense Early Warning Systems - Challenges and Perspectives (Dagstuhl Seminar 12061).

[BibT_eX]

[DOI]

Dagstuhl Reports, 2012

Challenges for Advanced Security Monitoring - The MASSIF Project.

[BibT_eX]

[DOI]

Proceedings of the Trust, Privacy and Security in Digital Business, 2012

Limitation of Honeypot/Honeynet Databases to Enhance Alert Correlation.

[BibT_eX]

[DOI]

Proceedings of the Computer Network Security, 2012

Individual Countermeasure Selection Based on the Return On Response Investment Index.

[BibT_eX]

[DOI]

Proceedings of the Computer Network Security, 2012

HADEGA: A novel MPLS-based mitigation solution to handle network attacks.

[BibT_eX]

[DOI]

Proceedings of the 31st IEEE International Performance Computing and Communications Conference, 2012

VESPA: multi-layered self-protection for cloud resources.

[BibT_eX]

[DOI]

Aurélien Wailly

Marc Lacoste

Proceedings of the 9th International Conference on Autonomic Computing, 2012

Cross-domain vulnerabilities over social networks.

[BibT_eX]

[DOI]

Catherine Bernard

Salim Benayoune

Proceedings of the Fourth International Conference on Computational Aspects of Social Networks, 2012

One year of SSL internet measurement.

[BibT_eX]

[DOI]

Proceedings of the 28th Annual Computer Security Applications Conference, 2012

2011

An Ontology-Based Model for SIEM Environments.

[BibT_eX]

[DOI]

Proceedings of the Global Security, Safety and Sustainability & e-Democracy, 2011

2010

Ex-SDF: An Extended Service Dependency Framework for Intrusion Impact Assessment.

[BibT_eX]

[DOI]

Proceedings of the Security and Privacy - Silver Linings in the Cloud, 2010

Challenges for Cloud Networking Security.

[BibT_eX]

[DOI]

Proceedings of the Mobile Networks and Management - Second International ICST Conference, 2010

Service Dependencies in Information Systems Security.

[BibT_eX]

[DOI]

Proceedings of the Computer Network Security, 2010

A Service Dependency Model for Cost-Sensitive Intrusion Response.

[BibT_eX]

[DOI]

Proceedings of the Computer Security, 2010

Formalization of Viruses and Malware Through Process Algebras.

[BibT_eX]

[DOI]

Proceedings of the ARES 2010, 2010

2009

Functional polymorphic engines: formalisation, implementation and use cases.

[BibT_eX]

[DOI]

J. Comput. Virol., 2009

Processing intrusion detection alert aggregates with time series modeling.

[BibT_eX]

[DOI]

Inf. Fusion, 2009

A logic-based model to support alert correlation in intrusion detection.

[BibT_eX]

[DOI]

Inf. Fusion, 2009

An ontology-based approach to react to network attacks.

[BibT_eX]

[DOI]

Fabien Autrel

Int. J. Inf. Comput. Secur., 2009

Formalization of malware through process calculi

[BibT_eX]

[DOI]

CoRR, 2009

Malware Detection using Attribute-Automata to parse Abstract Behavioral Descriptions

[BibT_eX]

[DOI]

CoRR, 2009

XeNA: an access negotiation framework using XACML.

[BibT_eX]

[DOI]

Ann. des Télécommunications, 2009

Malware Behavioral Detection by Attribute-Automata Using Abstraction from Platform and Language.

[BibT_eX]

[DOI]

Proceedings of the Recent Advances in Intrusion Detection, 12th International Symposium, 2009

A Service Dependency Modeling Framework for Policy-Based Response Enforcement.

[BibT_eX]

[DOI]

Proceedings of the Detection of Intrusions and Malware, 2009

2008

Malware as interaction machines: a new framework for behavior modelling.

[BibT_eX]

[DOI]

J. Comput. Virol., 2008

Behavioral detection of malware: from a survey towards an established taxonomy.

[BibT_eX]

[DOI]

J. Comput. Virol., 2008

Analysis of Computer Infection Risk Factors Based on Customer Network Usage.

[BibT_eX]

[DOI]

Proceedings of the Second International Conference on Emerging Security Information, 2008

Negotiation of Prohibition: An Approach Based on Policy Rewriting.

[BibT_eX]

[DOI]

Proceedings of The IFIP TC-11 23rd International Information Security Conference, 2008

08102 Outcome Working Group -- Situational Awareness.

[BibT_eX]

[DOI]

Proceedings of the Perspectives Workshop: Network Attack Detection and Defense, 2.3., 2008

8102 Working Group -- Attack Taxonomy.

[BibT_eX]

[DOI]

Proceedings of the Perspectives Workshop: Network Attack Detection and Defense, 2.3., 2008

An ontology-based approach to react to network attacks.

[BibT_eX]

[DOI]

Jorge E. López de Vergara

Enrique Vázquez

Javier Guerra

Proceedings of the CRiSIS '08, 2008

2007

The Intrusion Detection Message Exchange Format (IDMEF).

[BibT_eX]

[DOI]

David A. Curry

Benjamin S. Feinstein

RFC, March, 2007

Enabling automated threat response through the use of a dynamic security policy.

[BibT_eX]

[DOI]

Yohann Thomas

J. Comput. Virol., 2007

Introduction Selection of articles from the SAR-SSI 2006.

[BibT_eX]

[DOI]

Ann. des Télécommunications, 2007

Resource Classification Based Negotiation in Web Services.

[BibT_eX]

[DOI]

Proceedings of the Third International Symposium on Information Assurance and Security, 2007

2006

Security information management as an outsourced service.

[BibT_eX]

[DOI]

Inf. Manag. Comput. Secur., 2006

WebAnalyzer: accurate detection of HTTP attack traces in web server logs.

[BibT_eX]

[DOI]

Elvis Tombini

Ann. des Télécommunications, 2006

Foreword.

[BibT_eX]

Elisa Bertino

Ann. des Télécommunications, 2006

An extended RBAC profile of XACML.

[BibT_eX]

[DOI]

Proceedings of the 3rd ACM Workshop On Secure Web Services, 2006

Using Contextual Security Policies for Threat Response.

[BibT_eX]

[DOI]

Yohann Thomas

Nora Boulahia-Cuppens

Proceedings of the Detection of Intrusions and Malware & Vulnerability Assessment, 2006

Time series modeling for IDS alert management.

[BibT_eX]

[DOI]

Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, 2006

Improving Security Management through Passive Network Observation.

[BibT_eX]

[DOI]

Yohann Thomas

Proceedings of the The First International Conference on Availability, 2006

2005

Conceptual Analysis of Intrusion Alarms.

[BibT_eX]

[DOI]

Proceedings of the Image Analysis and Processing, 2005

Intrusion Detection: Introduction to Intrusion Detection and Security Information Management.

[BibT_eX]

[DOI]

Proceedings of the Foundations of Security Analysis and Design III, 2005

2004

Détection d'intrusions : corrélation d'alertes.

[BibT_eX]

[DOI]

Tech. Sci. Informatiques, 2004

Monitoring IDS Background Noise Using EWMA Control Charts and Alert Information.

[BibT_eX]

[DOI]

Proceedings of the Recent Advances in Intrusion Detection: 7th International Symposium, 2004

Honeypots: Practical Means to Validate Malicious Fault Assumptions.

[BibT_eX]

[DOI]

Fabien Pouget

Proceedings of the 10th IEEE Pacific Rim International Symposium on Dependable Computing (PRDC 2004), 2004

A Serial Combination of Anomaly and Misuse IDSes Applied to HTTP Traffic.

[BibT_eX]

[DOI]

Proceedings of the 20th Annual Computer Security Applications Conference (ACSAC 2004), 2004

2003

Correlation of Intrusion Symptoms: An Application of Chronicles.

[BibT_eX]

[DOI]

Proceedings of the Recent Advances in Intrusion Detection, 6th International Symposium, 2003

2002

M2D2: A Formal Data Model for IDS Alert Correlation.

[BibT_eX]

[DOI]

Proceedings of the Recent Advances in Intrusion Detection, 5th International Symposium, 2002

Evaluation of the Diagnostic Capabilities of Commercial Intrusion Detection Systems.

[BibT_eX]

[DOI]

Proceedings of the Recent Advances in Intrusion Detection, 5th International Symposium, 2002

2001

Aggregation and Correlation of Intrusion-Detection Alerts.

[BibT_eX]

[DOI]

Proceedings of the Recent Advances in Intrusion Detection, 4th International Symposium, 2001

2000

Fixed- vs. Variable-Length Patterns for Detecting Suspicious Process Behavior.

[BibT_eX]

[DOI]

J. Comput. Secur., 2000

A revised taxonomy for intrusion-detection systems.

[BibT_eX]

[DOI]

Ann. des Télécommunications, 2000

Intrusion Detection Using Variable-Length Audit Trail Patterns.

[BibT_eX]

[DOI]

Proceedings of the Recent Advances in Intrusion Detection, Third International Workshop, 2000

A Lightweight Tool for Detecting Web Server Attacks.

[BibT_eX]

[DOI]

Magnus Almgren

Proceedings of the Network and Distributed System Security Symposium, 2000

1999

Towards a taxonomy of intrusion-detection systems.

[BibT_eX]

[DOI]

Comput. Networks, 1999

Authenticating public terminals.

[BibT_eX]

[DOI]

Comput. Networks, 1999

Building an Intrusion-Detection System to Detect Suspicious Process Behavior.

[BibT_eX]

[DOI]

Proceedings of the Recent Advances in Intrusion Detection, Second International Workshop, 1999

1992

A neural network component for an intrusion detection system.

[BibT_eX]

[DOI]