Who are we?

The Systems and Data Security team is a research team part of Laboratoire d’Informatique d’Orléans, a computer science lab. Contrarily to other lab teams, all our members belong to INSA Centre Val de Loire, and teach at Computer Security and Technologies (STI) department. Our offices are located in this public engineering school in Bourges town, more than 100km away from Orléans.

Research Topics

We focus on cybersecurity. We target both data security (privacy, anonymity, and secure computation)  and system security (cryptography, protocol security, access control,  traceability, and networking security).  We also focus on more theoretical areas of modeling and formalization of knowledge (epistemic, substructural logics) and systems (temporal logic, graphs, automata) with the aim of applying this research to cybersecurity.

We are committed to applying our research, mainly in the domain of healthcare and agriculture, and to disseminating our produced knowledge to a large audience, with a special emphasis on sharing the culture of privacy and cybersecurity with the private sector.

Data Security Axis

This axis concerns privacy in a broader sense, and secure computation. We deal with both theoretical and practical aspects of these thematics.  Some of our work includes:

  • Secure and private computation
    • Secure MapReduce computation with no information leakage
    • SQL requests computation in a distributed environment relying on secure hardware
    • Secure and private computation of influence metrics
  • Anonymization
    • in linked data
    • in presence of customized user constraints
  • Privacy, minimal exposure of personal information in automatized decision processes

System Security Axis

Since its pioneering work in France in the domain of mandatory access control, this axis continues to work on emerging technologies over time (IoT, Cloud, blockchain, Android-based systems to name a few). Some of our work includes:

  • Mandatory Access control
    • MAC in Clouds, in the Java Virtual Machine, and on Android using static rules
    • MAC using automata in embedded real-time systems
  • IoT security
    • Interoperability, authentification, confidentiality, and integrity in heterogeneous systems
    • Secure payments using blockchain
    • Tractability in IoT using blockchain
  • Network and distributed systems security: protocol security,  Intrusion Detection and Network Security based on AI/Federated Learning.

Modeling and Formalization of Systems and Knowledge Axis

More formal work in our team focuses on:

  • Formalization of knowledge (epistemic logics, substructural logics, and relationships with belief functions) mainly applied to:
    • Need-to-know evaluation and minimization
    • Privacy exposure
    • Trust modeling in Zero Trust Architecture
  •  Term rewriting, automata theory, and formal verification, mainly applied to:
    • Graph databases
    • Embedded automotive systems
    • Workflow engines
  • Zero Knowledge proofs and proved protocols.

Current Research Projects

  • DIFPRIPOS: Making PostgreSQL Differentially Private for Transparent AI, (local contact: Cédric Eichler), partners: FEMTO-ST/ Université de Franche-Comté (UFC), LIRIS/INSA-Lyon, The DALIBO cooperative society, LIFO / INSA-CVL, INRIA/Comète
  • AMI CyberINSA: regional cyber-campus, leader: Benjamin Nguyen, partners: Algosup, ASB, CCI du Cher, Crédit Agricole, Ledger, INSA CVL, CNAM, Vistory, Collège de Paris, SII, CETIM, Entreloups, Lycée Henri Brisson, Orange Cybersécurité
  • PEPR Santé Numérique TracIA (local contact: Patrice Clemente), partners: Télécom SudParis, IMT Atlantique, INSA CVL, LIFO, CEA, LaTIM, CHU de Rennes
  • ISIF Asia PumonAI: Multi-Institutional Collaboration for Pneumonia Screening (local contact: Dr. Laurent Bobelin), partner: Universitas Prasetiya Mulya
  • IPoP: Interdisciplinary Project on Privacy (local contact: Benjamin Nguyen), partners: CNRS, EDHEC, INSA Lyon, Inria, Université Grenoble Alpes, Univ. Lille, Univ Rennes 1, Univ. Versailles Saint-Quentin-en-Yveline
  • APR IA Ethnos, leader: Pr. Christian Toinard, partner: Université de Tours
  • MERIAVINO: Multiscale Sensing for Disease Monitoring in Vineyard Production (team contact: Laurent Bobelin), partners: ATOS, Institut Français du Vin (IFV), Constanta Maritime University (Romania), SCDVV Murfatlar (Romania), University of West Attica (Greece),
  • H2020 RISE MOSAIC, leader: CSIS, Spain, 29 European partners, including INSA CVL (local contact: Dr. Sabine Frittella)
  • APR IA SIOMedic: Security for the Internet of Medical Things, leader: Dr. Patrice Clemente
  • ANR PRELAP: Probabilistic Epistemic Logic Applied to Privacy, leader: Dr. Sabine Frittella (INSA CVL), partners: Université de Versailles, CEA LIST, Utrecht University (Netherland), University of the Witwatersrand (South Africa), Chapman University (USA), Czech Academy of Sciences (Czech Republic)
  • ANR SEND-UP: SEmantic Network of Data: Utility and Privacy , leader: Dr. Cédric Eichler (INSA CVL), partners: Université d’Orléans, Université de Grenoble-Alpes

Recent Past Research Projects

  • APR IR ADOPTER: Analyse de DOnnées issues de TEsts volontaiRes (cosmetics data and privacy), leader: Pr. Benjamin Nguyen, partner: Université d’Orléans, ended in 2022
  • Projet Nusanthara MAMAS: Massive Anonymous Mammography Analysis and Storage, leader: Dr. Laurent Bobelin (INSA CVL), partner: Universitas Prasetiya Mulya (Indonesia), ended in 2020
  • PHC Van Gogh (leader: Dr. Sabine Frittella), ended in 2020
  • FUY ATELYN (local contact: Dr. Jérémy Briffaut) , ended in 2020
  • IOT-CIA-DATA: IoT Confidentiality, Integrity and Availability (local contact: Dr. Cédric Eichler), ended in 2020
  • Seed4C, European project (local contact: Pr. Christian Toinard), ended in 2015
  • INRIA-CAPRIS (local contact: Pr. Benjamin Nguyen), ended in 2016
  • APR Girafon (local contact: Pr. Benjamin Nguyen), ended in 2018
  • ANR Lyrics (Lightweught privacY-enhancing cRypography for mobIle Contactless Services), leader: Pr. Jean-François Lalande (INSA CVL), ended in 2015