Security breaches presented by two TELECOM Nancy graduates during the SuriCon 2021 international conference (Boston, USA).
Bastien Del-Valle and Louis Jacotot, two graduate students of TELECOM Nancy, were selected to present their work relating to the discovery of cyber-security vulnerabilities on the Suricata intrusion detection system during the SuriCon 2021 international conference on October 22 2021.
Discovery of escape vulnerabilities on Suricata
During a research discovery project carried out at TELECOM Nancy in partnership with the company CatenaCyber, Bastien Del-Valle and Louis Jacotot discovered three vulnerabilities of Suricata escape on the SMB protocol, including one applicable for other protocols . The SMB protocol, enabled by default on Windows, notably allows files to be shared between several systems.
This research was carried out on the cyber-range training platform for cyber-security of TELECOM Nancy. This first-rate equipment makes it possible to build, deploy and test realistic and complex IT infrastructures (company networks, industrial networks, internet of things), from which different attack and defense scenarios are simulated and analyzed. The students proposed corrections to the software and reported any weaknesses discovered to the project development team.
Student work recognized by the open-source community and the Open Information Security Foundation .
The Suricon international conference is a major event for the open-source community relating to the Suricata intrusion detection tool. It is organized by the Open Information Security Foundation, of which the ANSSI belongs in particular.
“We are very proud to support an open-source community project and to meet cyber-security experts from around the world. Participating in this conference is a great opportunity in terms of visibility of our work internationally. In 2A, We carried out our inter-disciplinary research project (PIDR) in partnership with Mr. Philippe Antoine from CatenaCyber on the search for breakouts on the Suricata intrusion detection software.This conference allows us to present the various flaws to the community. discoveries. ” Bastien and Louis testify.
TELECOM Nancy congratulates these students for this recognition and the results of this industrial partnership with CatenaCyber.
Cyber security at TELECOM Nancy
TELECOM Nancy trains engineers in computer science and digital sciences over three years and offers a specialization in cyber-security called ” Internet Systems and Security “.
The school is also a member of the European cyber-security networks Concordia and Rewire, and participates in the cyber-reservists pole in collaboration with the Ministry of the Armed Forces.
Equipped with cutting-edge technological equipment and supported by the expertise of its teacher-researchers and its partner companies, TELECOM Nancy now offers a cyber-security training offer that is unique in the Grand Est region and meets a crucial need: the global shortage of cyber-security experts (1.8 million unfilled positions by 2022 according to Gartner).