{"id":6335,"date":"2023-09-25T14:47:07","date_gmt":"2023-09-25T12:47:07","guid":{"rendered":"https:\/\/samovar.telecom-sudparis.eu\/?p=6335"},"modified":"2023-09-25T14:47:08","modified_gmt":"2023-09-25T12:47:08","slug":"avis-de-soutenance-de-monsieur-nathanael-denis","status":"publish","type":"post","link":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/2023\/09\/25\/avis-de-soutenance-de-monsieur-nathanael-denis\/","title":{"rendered":"AVIS DE SOUTENANCE de Monsieur Nathana\u00ebl DENIS"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\">L&rsquo;Ecole doctorale : Ecole Doctorale de l&rsquo;Institut Polytechnique de Paris<br><br>et le Laboratoire de recherche SAMOVAR &#8211; Services r\u00e9partis, Architectures, Mod\u00e9lisation, Validation, Administration des R\u00e9seaux<\/h2>\n\n\n\n<p>pr\u00e9sentent<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">l\u2019AVIS DE SOUTENANCE de Monsieur Nathana\u00ebl DENIS<\/h2>\n\n\n\n<p>Autoris\u00e9 \u00e0 pr\u00e9senter ses travaux en vue de l\u2019obtention du Doctorat de l&rsquo;Institut Polytechnique de Paris, pr\u00e9par\u00e9 \u00e0 T\u00e9l\u00e9com SudParis en :<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Informatique<\/h2>\n\n\n\n<h1 class=\"wp-block-heading\">\u00ab Pour un internet des objets s\u00e9curis\u00e9 et respectueux de la vie priv\u00e9e bas\u00e9 sur le contr\u00f4le d&rsquo;usage et les registres distribu\u00e9s \u00bb<\/h1>\n\n\n\n<p>le mardi 3 octobre 2023 \u00e0 14h00 \u00e0<\/p>\n\n\n\n<p>Amphi 2<br>T\u00e9l\u00e9com SudParis, 19 Place Marguerite Perey, 91120 Palaiseau<\/p>\n\n\n\n<p><strong>Membres du jury :<\/strong><\/p>\n\n\n\n<p><strong>Mme Maryline&nbsp;LAURENT<\/strong>, Professeure, T\u00e9l\u00e9com SudParis, FRANCE &#8211; Directrice de th\u00e8se<br><strong>Mme Sophie&nbsp;CHABRIDON<\/strong>, Directrice d&rsquo;\u00e9tudes, T\u00e9l\u00e9com SudParis, FRANCE &#8211; Co-encadrante de th\u00e8se<br><strong>Mme Sara&nbsp;TUCCI<\/strong>, Cheffe de laboratoire, CEA-LIST, FRANCE &#8211; Examinatrice<br><strong>M. Philippe&nbsp;PUCHERAL<\/strong>, Professeur, Universit\u00e9 de Versailles\/St-Quentin, FRANCE &#8211; Examinateur<br><strong>M. Vincent&nbsp;ROCA<\/strong>, Charg\u00e9 de recherche, INRIA, FRANCE &#8211; Rapporteur<br><strong>M. Mawloud&nbsp;OMAR<\/strong>, Professeur, ENSIBS, FRANCE &#8211; Rapporteur<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">\u00ab Pour un internet des objets s\u00e9curis\u00e9 et respectueux de la vie priv\u00e9e bas\u00e9 sur le contr\u00f4le d&rsquo;usage et les registres distribu\u00e9s \u00bb<\/h2>\n\n\n\n<h2 class=\"wp-block-heading\">pr\u00e9sent\u00e9 par Monsieur Nathana\u00ebl DENIS<\/h2>\n\n\n\n<p><strong>R\u00e9sum\u00e9 :<\/strong><\/p>\n\n\n\n<p>Les objets connect\u00e9s repr\u00e9sentent l&rsquo;une des principales cibles de la cybercriminalit\u00e9. Les raisons en sont multiples : d&rsquo;abord, pour limiter le co\u00fbt de la s\u00e9curit\u00e9, les fabricants peuvent vendre des produits vuln\u00e9rables avec des failles de s\u00e9curit\u00e9. Deuxi\u00e8mement, de nombreux objets connect\u00e9s sont soumis \u00e0 des contraintes de performance et ne disposent pas de la puissance n\u00e9cessaire pour ex\u00e9cuter des logiciels de s\u00e9curit\u00e9. Enfin, l&rsquo;h\u00e9t\u00e9rog\u00e9n\u00e9it\u00e9 des applications, du mat\u00e9riel et des logiciels \u00e9largit la surface d&rsquo;attaque. Pour parer \u00e0 ces menaces, l&rsquo;Internet des Objets (IoT) a besoin de technologies de s\u00e9curit\u00e9 et de pr\u00e9servation de la vie priv\u00e9e sur mesure. En ce qui concerne la protection de la vie priv\u00e9e, le contr\u00f4le d&rsquo;usage donne aux utilisateurs la possibilit\u00e9 de sp\u00e9cifier comment leurs donn\u00e9es peuvent \u00eatre utilis\u00e9es et par qui. Le contr\u00f4le d&rsquo;usage \u00e9tend le contr\u00f4le d&rsquo;acc\u00e8s classique en introduisant des obligations, c&rsquo;est-\u00e0-dire des actions \u00e0 effectuer pour obtenir l&rsquo;acc\u00e8s, et des conditions qui sont li\u00e9es \u00e0 l&rsquo;\u00e9tat du syst\u00e8me, comme la charge du r\u00e9seau ou le temps. Cette th\u00e8se vise \u00e0 apporter des r\u00e9ponses aux d\u00e9fis de l&rsquo;internet des objets en termes de performance, de s\u00e9curit\u00e9 et de respect de la vie priv\u00e9e. Pour cela, les registres distribu\u00e9s (DLT) constituent, de par leur caract\u00e8re d\u00e9centralis\u00e9, une solution prometteuse aux contraintes de l&rsquo;internet des objets, en particulier pour les micro-transactions. Cela se traduit par trois contributions: 1. un ensemble de technologies pour des transactions sans frais pr\u00e9servant la vie priv\u00e9e, con\u00e7u pour passer \u00e0 l&rsquo;\u00e9chelle; 2. une m\u00e9thode d&rsquo;int\u00e9gration du contr\u00f4le d\u2019usage et des registres distribu\u00e9s pour permettre une protection efficace des donn\u00e9es des utilisateurs; 3. un mod\u00e8le \u00e9tendu pour le contr\u00f4le d&rsquo;usage dans les syst\u00e8mes distribu\u00e9s, afin d&rsquo;y ajouter le contr\u00f4le de flux d\u00e9centralis\u00e9 et les aspects li\u00e9s \u00e0 l&rsquo;internet des objets. Une preuve de concept de l&rsquo;int\u00e9gration (2) a \u00e9t\u00e9 mise en place pour d\u00e9montrer la faisabilit\u00e9 et effectuer des tests de performance. Elle s&rsquo;appuie sur IOTA, un registre distribu\u00e9 qui utilise un graphe orient\u00e9 acyclique pour son graphe de transactions au lieu d&rsquo;une blockchain. Les r\u00e9sultats des tests de performance sur un r\u00e9seau priv\u00e9 montrent une diminution d&rsquo;environ 90% du temps n\u00e9cessaire pour effectuer des transactions et pour \u00e9valuer des politiques de contr\u00f4le d&rsquo;usage, dans le cas o\u00f9 ce dernier est int\u00e9gr\u00e9 au r\u00e9seau.<\/p>\n\n\n\n<p><br><strong>Abstract :<\/strong><\/p>\n\n\n\n<p>IoT devices represent one of the major targets for malicious activities. The grounds for this are manifold: first, to reduce the cost of security, manufacturers may sell vulnerable products, leaving users with security concerns. Second, many IoT devices have performance constraints and lack the processing power to execute security software. Third, the heterogeneity of applications, hardware, and software widens the attack surface. As a result, IoT networks are subject to a variety of cyber threats. To counter such a variety of attacks, the IoT calls for security and privacy-preserving technologies. For privacy concerns, usage control grants the users the power to specify how their data can be used and by whom. Usage control extends classic access control by introducing obligations, i.e., actions to be performed to be granted access, and conditions that are related to the system state, such as the network load or the time. This thesis aims at providing answers to the challenges in the Internet of Things in terms of performance, security and privacy. To this end, distributed ledger technologies (DLTs) are a promising solution to Internet of Things constraints, in particular for micro-transactions, due to the decentralization they provide. This leads to three related contributions: 1. a framework for zero-fee privacy-preserving transactions in the Internet of Things designed to be scalable; 2. an integration methodology of usage control and distributed ledgers to enable efficient protection of users&rsquo; data; 3. an extended model for data usage control in distributed systems, to incorporate decentralized information flow control and IoT aspects. A proof of concept of the integration (2) has been designed to demonstrate feasibility and conduct performance tests. It is based on IOTA, a distributed ledger using a directed acyclic graph for its transaction graph instead of a blockchain. The results of the tests on a private network show an approximate 90% decrease in the time needed to push transactions and make access decisions in the integrated setting.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>L&rsquo;Ecole doctorale : Ecole Doctorale de l&rsquo;Institut Polytechnique de Paris et le Laboratoire de recherche SAMOVAR &#8211; Services r\u00e9partis, Architectures, Mod\u00e9lisation, Validation, Administration des R\u00e9seaux pr\u00e9sentent l\u2019AVIS DE SOUTENANCE de Monsieur Nathana\u00ebl DENIS Autoris\u00e9 \u00e0 pr\u00e9senter ses travaux en vue de l\u2019obtention du Doctorat de l&rsquo;Institut Polytechnique de Paris, pr\u00e9par\u00e9 \u00e0 T\u00e9l\u00e9com SudParis en : [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"0","ocean_second_sidebar":"0","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"0","ocean_custom_header_template":"0","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"0","ocean_menu_typo_font_family":"0","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"0","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"off","ocean_gallery_id":[],"footnotes":""},"categories":[286,549,603],"tags":[],"class_list":["post-6335","post","type-post","status-publish","format-standard","hentry","category-fractualites-ennews-fr","category-seminaire-acmes","category-seminaire-scn","entry"],"_links":{"self":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/6335","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/comments?post=6335"}],"version-history":[{"count":1,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/6335\/revisions"}],"predecessor-version":[{"id":6336,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/6335\/revisions\/6336"}],"wp:attachment":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/media?parent=6335"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/categories?post=6335"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/tags?post=6335"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}