Quand: Le 22\/09\/2016 \u00e0 10h00 –
\nO\u00f9: Salle A303 \u00e0 T\u00e9l\u00e9com SudParis, 9 rue Charles Fourier, 91000 Evry.<\/p>\n
Cette th\u00e8se a \u00e9t\u00e9 r\u00e9alis\u00e9e sous la direction du Professeur Herv\u00e9 Debar et du Professeur Vania CONAN. <\/p>\n
Le jury sera compos\u00e9 de :<\/p>\n
Directeurs de th\u00e8se<\/strong><\/p>\n M. Herv\u00e9 Debar, Professeur – T\u00e9l\u00e9com SudParis<\/p>\n M. Vania Conan, HDR – Thales Services<\/p>\n Rapporteurs<\/strong><\/p>\n TOTEL Eric – Professeur Centrale-Sup\u00e9lec Examinateurs<\/em><\/p>\n DEFUDE Bruno – Professeur T\u00e9l\u00e9com SudParis<\/p>\n DOYEN Guillaume – Maitre de conf\u00e9rences Universit\u00e9 de Technologie de Troyes<\/p>\n BLANC Gr\u00e9gory – Maitre de conf\u00e9rences T\u00e9l\u00e9com SudParis<\/p>\n BETTAN Olivier – Ing\u00e9nieur, responsable du laboratoire de cybers\u00e9curit\u00e9 Thales Services<\/p>\n R\u00e9sum\u00e9 de th\u00e8se :<\/em><\/p>\n Les syst\u00e8mes d’information sont une cible de plus en plus attractive pour les attaquants. Dans cette th\u00e8se de doctorat, nous construisons une m\u00e9thodologie compl\u00e8te d’analyse statique et dynamique de risque prenant en compte la connaissance \u00e0 priori d’un syst\u00e8me avec les \u00e9v\u00e9nements dynamiques, afin de proposer des r\u00e9ponses permettant d’emp\u00eacher les attaques futures. Tout d’abord, nous \u00e9tudions comment corriger les attaques potentielles qui peuvent arriver dans un syst\u00e8me, en s’appuyant sur les graphes d’attaque logiques. Nous proposons une m\u00e9thodologie de rem\u00e9diation corrigeant les chemins d’attaque les plus significatifs. Les rem\u00e9diations candidates sont class\u00e9es en fonction de leur co\u00fbt op\u00e9rationnel et leur impact sur le syst\u00e8me. Les graphes d’attaques ne peuvent pas \u00eatre directement utilis\u00e9s pour l’\u00e9valuation dynamique de risque. Nous \u00e9tendons donc ce mod\u00e8le pour construire des mod\u00e8les d’analyse dynamique de risque bas\u00e9s sur des r\u00e9seaux bay\u00e9siens. Le mod\u00e8le hybride d’\u00e9valuation de risque se divise en deux mod\u00e8les compl\u00e9mentaires: (1) Les mod\u00e8les de corr\u00e9lation de risque, permettant d’analyser les attaques en cours et fournir les probabilit\u00e9s de compromission des \u00e9tats du syst\u00e8me, (2) les mod\u00e8les d’\u00e9valuation du risque futur, permettant \u00e9valuer les attaques futures les plus probables. Nous analysons la sensibilit\u00e9 des param\u00e8tres probabilistes du mod\u00e8le et en validons les r\u00e9sultats \u00e0 partir de graphes d’attaque topologiques.<\/p>\n Abstract :<\/em><\/p>\n Information systems constitute an increasingly attractive target for attackers. Given the number and complexity of attacks, security teams need to focus their actions, in order to select the most appropriate security controls. Because of the threat posed by advanced multi-step attacks, it is difficult for security operators to fully cover all vulnerabilities when deploying countermeasures. In this PhD thesis, we build a complete framework for static and dynamic risk assessment including prior knowledge on the information system and dynamic events, proposing responses to prevent future attacks. First, we study how to remediate the potential attacks that can happen in a system, using logical attack graphs. We build a remediation methodology to prevent the most relevant attack paths extracted from a logical attack graph. In order to help an operator to choose between several remediation candidates, we rank them according to a cost of remediation combining operational and impact costs. Then, we study the dynamic attacks that can occur in a system. Attack graphs are not directly suited for dynamic risk assessment. Thus, we extend this mode to build dynamic risk assessment models to evaluate the attacks that are the most likely. The hybrid model is subdivided in two complementary models: (1) the first ones analysing ongoing attacks and provide the hosts’ compromise probabilities, and (2) the second ones assessing the most likely future attacks. We study the sensitivity of their probabilistic parameters. Finally, we validate the accuracy and usage of both models in the domain of cybersecurity, by building them from a topological attack graph.<\/p>\n","protected":false},"excerpt":{"rendered":" Quand: Le 22\/09\/2016 \u00e0 10h00 – O\u00f9: Salle A303 \u00e0 T\u00e9l\u00e9com SudParis, 9 rue Charles Fourier, 91000 Evry. Cette th\u00e8se a \u00e9t\u00e9 r\u00e9alis\u00e9e sous la direction du Professeur Herv\u00e9 Debar et du Professeur Vania CONAN. Le jury sera compos\u00e9 de : Directeurs de th\u00e8se M. Herv\u00e9 Debar, Professeur – T\u00e9l\u00e9com SudParis M. Vania Conan, HDR […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ocean_post_layout":"","ocean_both_sidebars_style":"","ocean_both_sidebars_content_width":0,"ocean_both_sidebars_sidebars_width":0,"ocean_sidebar":"","ocean_second_sidebar":"","ocean_disable_margins":"enable","ocean_add_body_class":"","ocean_shortcode_before_top_bar":"","ocean_shortcode_after_top_bar":"","ocean_shortcode_before_header":"","ocean_shortcode_after_header":"","ocean_has_shortcode":"","ocean_shortcode_after_title":"","ocean_shortcode_before_footer_widgets":"","ocean_shortcode_after_footer_widgets":"","ocean_shortcode_before_footer_bottom":"","ocean_shortcode_after_footer_bottom":"","ocean_display_top_bar":"default","ocean_display_header":"default","ocean_header_style":"","ocean_center_header_left_menu":"","ocean_custom_header_template":"","ocean_custom_logo":0,"ocean_custom_retina_logo":0,"ocean_custom_logo_max_width":0,"ocean_custom_logo_tablet_max_width":0,"ocean_custom_logo_mobile_max_width":0,"ocean_custom_logo_max_height":0,"ocean_custom_logo_tablet_max_height":0,"ocean_custom_logo_mobile_max_height":0,"ocean_header_custom_menu":"","ocean_menu_typo_font_family":"","ocean_menu_typo_font_subset":"","ocean_menu_typo_font_size":0,"ocean_menu_typo_font_size_tablet":0,"ocean_menu_typo_font_size_mobile":0,"ocean_menu_typo_font_size_unit":"px","ocean_menu_typo_font_weight":"","ocean_menu_typo_font_weight_tablet":"","ocean_menu_typo_font_weight_mobile":"","ocean_menu_typo_transform":"","ocean_menu_typo_transform_tablet":"","ocean_menu_typo_transform_mobile":"","ocean_menu_typo_line_height":0,"ocean_menu_typo_line_height_tablet":0,"ocean_menu_typo_line_height_mobile":0,"ocean_menu_typo_line_height_unit":"","ocean_menu_typo_spacing":0,"ocean_menu_typo_spacing_tablet":0,"ocean_menu_typo_spacing_mobile":0,"ocean_menu_typo_spacing_unit":"","ocean_menu_link_color":"","ocean_menu_link_color_hover":"","ocean_menu_link_color_active":"","ocean_menu_link_background":"","ocean_menu_link_hover_background":"","ocean_menu_link_active_background":"","ocean_menu_social_links_bg":"","ocean_menu_social_hover_links_bg":"","ocean_menu_social_links_color":"","ocean_menu_social_hover_links_color":"","ocean_disable_title":"default","ocean_disable_heading":"default","ocean_post_title":"","ocean_post_subheading":"","ocean_post_title_style":"","ocean_post_title_background_color":"","ocean_post_title_background":0,"ocean_post_title_bg_image_position":"","ocean_post_title_bg_image_attachment":"","ocean_post_title_bg_image_repeat":"","ocean_post_title_bg_image_size":"","ocean_post_title_height":0,"ocean_post_title_bg_overlay":0.5,"ocean_post_title_bg_overlay_color":"","ocean_disable_breadcrumbs":"default","ocean_breadcrumbs_color":"","ocean_breadcrumbs_separator_color":"","ocean_breadcrumbs_links_color":"","ocean_breadcrumbs_links_hover_color":"","ocean_display_footer_widgets":"default","ocean_display_footer_bottom":"default","ocean_custom_footer_template":"","ocean_post_oembed":"","ocean_post_self_hosted_media":"","ocean_post_video_embed":"","ocean_link_format":"","ocean_link_format_target":"self","ocean_quote_format":"","ocean_quote_format_link":"post","ocean_gallery_link_images":"on","ocean_gallery_id":[],"footnotes":""},"categories":[350],"tags":[],"class_list":["post-767","post","type-post","status-publish","format-standard","hentry","category-theses-2016-fr","entry"],"_links":{"self":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/767","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/comments?post=767"}],"version-history":[{"count":1,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/767\/revisions"}],"predecessor-version":[{"id":1666,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/posts\/767\/revisions\/1666"}],"wp:attachment":[{"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/media?parent=767"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/categories?post=767"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/samovar.telecom-sudparis.eu\/index.php\/wp-json\/wp\/v2\/tags?post=767"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nSTATE Radu – Professeur Universit\u00e9 du Luxembourg<\/p>\n