pr\u00e9sentent<\/p>\n\n\n\n
Autoris\u00e9e \u00e0 pr\u00e9senter ses travaux en vue de l\u2019obtention du Doctorat de l’Institut Polytechnique de Paris, pr\u00e9par\u00e9 \u00e0 T\u00e9l\u00e9com SudParis en :<\/p>\n\n\n\n
le\u00a0VENDREDI 5 AVRIL 2024\u00a0\u00e0 10h30 \u00e0<\/p>\n\n\n\n
Amphi 2, 19 Pl. Marguerite Perey, 91120 Palaiseau<\/p>\n\n\n\n
Membres du jury :<\/strong><\/p>\n\n\n\n M. Marc SHAPIRO<\/strong>, Directeur de recherche \u00e9m\u00e9rite, Sorbonne Universit\u00e9 LIP6, FRANCE – Rapporteur R\u00e9sum\u00e9 :<\/strong><\/p>\n\n\n\n Pendant plus de vingt ans, plusieurs outils ont \u00e9t\u00e9 propos\u00e9s pour partitionner automatiquement une application entre une zone de m\u00e9moire s\u00e9curis\u00e9e et une zone de m\u00e9moire non s\u00e9curis\u00e9e. Ces outils analysent le flux de donn\u00e9es de l’application afin d’identifier les emplacements m\u00e9moire susceptibles de contenir des valeurs sensibles. La plupart de ces outils se comportent de mani\u00e8re incorrecte en pr\u00e9sence de pointeurs. Lorsqu’ils sont corrects, ils sont incapables de g\u00e9rer les threads en raison de la difficult\u00e9 \u00e0 suivre les pointeurs dans une application multi-thread. Les outils actuels sont \u00e9galement incapables de diviser une application en plus de deux partitions, en raison de la sur-approximation, qui entra\u00eene le partage erron\u00e9 d’emplacements m\u00e9moire entre les deux partitions. Dans cette th\u00e8se, au lieu de partir de l’analyse du flux de donn\u00e9es, nous proposons de partir d’une technique plus pr\u00e9cise : le typage de langage. Nous introduisons le typage s\u00e9curis\u00e9, qui consiste \u00e0 incorporer un identifiant de partition dans le syst\u00e8me de types d’un langage. Sur la base du typage s\u00e9curis\u00e9, nous avons con\u00e7u un compilateur ind\u00e9pendant du langage bas\u00e9 sur LLVM. Le compilateur prend en entr\u00e9e une application enrichie de types s\u00e9curis\u00e9s et g\u00e9n\u00e8re plusieurs partitions pour Intel SGX. Notre \u00e9valuation avec des micro- et macro-applications montre que (i) le typage s\u00e9curis\u00e9 peut g\u00e9rer les pointeurs, les threads multiples et plus de deux partitions, (ii) l’ajout de types s\u00e9curis\u00e9s dans une application h\u00e9rit\u00e9e est simple, (iii) le typage s\u00e9curis\u00e9 r\u00e9duit la base de confiance en informatique et est plus efficace que l’incorporation d’une application compl\u00e8te dans une enclave.<\/p>\n\n\n\n Abstract :<\/strong><\/p>\n\n\n\n For more than twenty years, several tools have been proposed to automatically partition an application between a secure memory zone and a non-secure memory zone. These tools analyze the data flow of the application in order to identify the memory locations that may contain sensitive values. Most of these tools behave incorrectly in the presence of pointers. When they are correct, they are unable to handle threads because of the difficulty to track pointers in a multi-threaded application. The current tools are also unable to split an application in more than two partitions. This is caused by over-approximation, which leads to memory locations falsely shared between the two partitions. In the thesis, instead of starting from data flow analysis, we propose to start from a more accurate technique: language typing. We introduce secure typing, which consists in embedding a partition identifier in the type system of a language. Based on secure typing, we designed a language-agnostic compiler based on LLVM. The compiler takes a legacy application enriched with secure types as input, and generates multiple partitions for Intel SGX. Our evaluation with micro- and macro-applications show that (i) secure typing can handle pointers, multiple threads and more than two partitions, (ii) adding secure types in a legacy application is easy, (iii) secure typing reduces the trusted computing base, and is more efficient than embedding a full application inside an enclave.<\/p>\n","protected":false},"excerpt":{"rendered":" L’Ecole doctorale : Ecole Doctorale de l’Institut Polytechnique de Paris et le Laboratoire de recherche SAMOVAR – Services r\u00e9partis, Architectures, Mod\u00e9lisation, Validation, Administration des R\u00e9seaux pr\u00e9sentent l\u2019AVIS DE SOUTENANCE de Madame Subashiny TANIGASSALAME Autoris\u00e9e \u00e0 pr\u00e9senter ses travaux en vue de l\u2019obtention du Doctorat de l’Institut Polytechnique de Paris, pr\u00e9par\u00e9 \u00e0 T\u00e9l\u00e9com SudParis en : […]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[286,549],"tags":[],"class_list":["post-6543","post","type-post","status-publish","format-standard","hentry","category-fractualites-ennews-fr","category-seminaire-acmes","entry"],"_links":{"self":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/6543","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/comments?post=6543"}],"version-history":[{"count":1,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/6543\/revisions"}],"predecessor-version":[{"id":6544,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/6543\/revisions\/6544"}],"wp:attachment":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/media?parent=6543"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/categories?post=6543"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/tags?post=6543"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
M. Laurent R\u00c9VEILL\u00c8RE<\/strong>, Professeur, Universit\u00e9 de Bordeaux, FRANCE – Rapporteur
Mme Sonia BEN MOKHTAR<\/strong>, Directrice de recherche, LIRIS CNRS, FRANCE – Examinateur
M. St\u00e9phane DUCASSE<\/strong>, Directeur de recherche, Inria, FRANCE – Examinateur
M. Ga\u00ebl THOMAS<\/strong>, Directeur de recherche, Inria Saclay, FRANCE – Directeur de these<\/p>\n\n\n\n\u00ab Privagic: Utilisation d’environnement d\u2019ex\u00e9cution s\u00e9curis\u00e9 rendu pratique avec typage \u00bb<\/h2>\n\n\n\n
pr\u00e9sent\u00e9 par Madame Subashiny TANIGASSALAME<\/h2>\n\n\n\n