Cybersecurity conferences and project - 5AMPX511

Goal(s)

The students carry out a research study on a given cybersecurity related topic, and must also carry out a demonstrator. The results of this study are presented in front of the whole promotion. The objective of these working sessions is to make the students:

• Autonomous is skills acquisition.
• Aware of the difficulties in defining the scope of a technological study (exhaustiveness, research and choice of documentary sources, etc.)
• Aware of the difficulties in estimating the difference between “paper” study and technical implementation.
• Work on the shape of this work restitution.

Content(s)

• Examples of topics:

• Analysis of various cloud architectures (private, hybrid, public) attacks, and presentation of main implemented solutions.
• "Network diodes" ("data diodes", "unidirectional network").
• Acoustic cryptanalysis consists of analyzing the sounds emitted by some material to extract valuable information for the analyst.
• Connecting a completely harmless USB device (key, mouse, disk) is a major security risk.
• DNS cache poisoning attacks, and protection mechanisms.
• ABI of 64-bit processors, ASLR & Return Oriented Programming.
• How to contain the attacks of type XSS, CSRF, XEE and injections…
• Spring framework and security
• Application of principal component analysis for intrusion detection.
• Securing WEB applications against brute force password attack.
• Sniffing is not playing, what security for 802.15.x networks, how to listen to radio frames.
• Security of java applications in thick client mode.

Network, OS, programming - confirmed skills.