Maxime Puys

Me

Maxime Puys
Ph.D. in Computer Science Security
Maître de conférences / Associate Professor
E-mail:	Maxime (dot) Puys (at) uca (dot) fr
Institution:	LIMOS (UMR 6158), Univ. Clermont Auvergne
Office:	Département Informatique
	Université Clermont Auvergne - IUT de Clermont-Ferrand
	5 avenue Blaise-Pascal
	TSA 90110 - 63178 Aubière
	France
Links:

Curriculum Vitæ

Fields of Expertise

Cybersecurity	Industrial Control Systems / SCADA IoT and Network Cybersecurity Cryptography / Security Protocols Formal Methods for Cybersecurity Certification Standards
Machine Learning	ML-based attack detection Supervised and unsupervised ML Embedded ML
Teaching and Scientific Supervision	2 defended Ph.D and 2 on-going 6 articles in international jourals 22 articles in international conferences 10 defended MSc Teaching Cybersecurity, AI and Web

Professional Experience

Since 2023	Associate Professor Univ. Clermont Auvergne, France Critical IoT Security, ML-based attack detection: Industrial Control Systems / SCADA IoT and Network Cybersecurity ML-based attack detection
2018 - 2023	Research Engineer CEA-LETI, Grenoble, France Smart-Home and Industrial IoT Security: IoT/SCADA device security assessment Design of lightweight security solutions
2014 - 2018	Ph.D Student Vérimag, St Martin d'Hères, France Industrial Systems Cybersecurity: Applicative Filtering Industrial Protocols Verification Research of Applicative Attack Scenarios

Computer Science Skills

Cybersecurity	SSH, Wireshark, Scapy, NMap, OpenSSL, Burp, John, Snort, Ettercap
Development	Python 100% PHP 70% C 70% LUA 30%
Linux	Admin (Debian, Alpine, Arch)
Windows	Advanced user
DevOps	Vim, Git, Jenkins, Virtualenv, Gitlab CI, Docker, VirtualBox, Ansible
Reports	LaTeX, Office and alternatives
Languages	French 100% English 80% Japanese 30%

Scholar Formation

2014 - 2018	Ph.D in Cybersecurity Univ. Grenoble Alpes
2012 - 2014	Master in Cybersecurity Univ. Grenoble Alpes Magna Cum Laude
2009 - 2014	Magister in Computer Science Univ. Grenoble Alpes Summa Cum Laude
2009 - 2012	Bachelor in Computer Science Univ. Grenoble Alpes Cum Laude

Publications

Thesis

[1]

M. Puys. Sécurité des systèmes industriels : filtrage applicatif et recherche de scénarios d'attaques. PhD thesis, Communauté Université Grenoble-Alpes, Feb. 2018. [bib] [pdf] [slides]

@phdthesis{phdThesisMaximePuys,
  author = {Maxime Puys},
  title = {S{\'e}curit{\'e} des syst{\`e}mes industriels : filtrage applicatif et recherche de sc{\'e}narios d'attaques},
  school = {Communaut{\'e} Universit{\'e} Grenoble{-}Alpes},
  year = {2018},
  month = {Feb.},
  url = {https://maxime.puys.name/pdf/publications/phdThesis/phdThesisMaximePuys.pdf}
}

International Peer-Reviewed Journals

[6]	M. Da Silva, S. Mocanu, M. Puys, and P.-H. Thevenon. Safety-security convergence: Automation of iec 62443-3-2. Computers & Security, Elsevier (Rank Sciamago Q1), 156:104477, 2025. [bib] [pdf] @article{DMPT25, author = {Da Silva, Mike and Mocanu, Stéphane and Puys, Maxime and Thevenon, Pierre-Henri}, title = {Safety-Security Convergence: Automation of IEC 62443-3-2}, journal = {Computers \& Security, Elsevier (Rank Sciamago Q1)}, volume = {156}, pages = {104477}, year = {2025}, url = {https://hal.science/hal-05032416v1}, ranking = {Sciamago}, rank = {Q1} }
[5]	P.-H. Thevenon, S. Riou, D.-M. Tran, M. Puys, N. F. Polychronou, M. El Majihi, and C. Sivelle. iMRC: integrated monitoring & recovery component, a solution to guarantee the security of embedded systems. Journal of Internet Services and Information Security (JISIS) (Rank Scimago Q3), 13(1):4--32, 2022. [bib] [pdf] @article{TRDPPES22, author = {Thevenon, Pierre-Henri and Riou, Sebastien and Tran, Duc-Minh and Puys, Maxime and Polychronou, Nikolaos Foivos and El Majihi, Mustapha and Sivelle, Camille}, title = {{iMRC:} Integrated Monitoring \& Recovery Component, a Solution to Guarantee the Security of Embedded Systems}, journal = {Journal of Internet Services and Information Security (JISIS) (Rank Scimago Q3)}, volume = {13}, number = {1}, pages = {4--32}, year = {2022}, url = {https://hal.science/cea-04072866v1}, ranking = {Sciamago}, rank = {Q3} }
[4]	M. Puys, P.-H. Thevenon, S. M. Mocanu, M. Gallissot, and C. Sivelle. SCADA cybersecurity awareness and teaching with hardware-in-the-loop platforms. Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications (JoWUA) (Rank Scimago Q2), 13(1):4--32, 2022. [bib] [pdf] @article{PTMGS22, author = {Puys, Maxime and Thevenon, Pierre-Henri and Mocanu, St\'{e}phane Mocanu and Gallissot, Mathieu and Sivelle, Camille}, title = {{SCADA} Cybersecurity Awareness and Teaching with Hardware-In-The-Loop Platforms}, journal = {Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications (JoWUA) (Rank Scimago Q2)}, volume = {13}, number = {1}, pages = {4--32}, year = {2022}, url = {https://hal.science/hal-03636896v1}, ranking = {Sciamago}, rank = {Q2} }
[3]	N.-F. Polychronou, P.-H. Thevenon, M. Puys, and V. Beroulle. A comprehensive survey of attacks without physical access targeting hardware vulnerabilities in IoT/IIoT devices, and their detection mechanisms. ACM Transactions on Design Automation of Electronic Systems (Rank Sciamago Q2), 27(1):1--35, 2021. [bib] [pdf] @article{PTPB21a, author = {Polychronou, Nikolaos-Foivos and Thevenon, Pierre-Henri and Puys, Maxime and Beroulle, Vincent}, title = {A Comprehensive Survey of Attacks without Physical Access Targeting Hardware Vulnerabilities in {IoT/IIoT} Devices, and Their Detection Mechanisms}, journal = {ACM Transactions on Design Automation of Electronic Systems (Rank Sciamago Q2)}, volume = {27}, number = {1}, pages = {1--35}, year = {2021}, url = {https://hal.science/hal-03600586v1}, ranking = {Sciamago}, rank = {Q2} }
[2]	J. Dreier, M. Puys, M.-L. Potet, P. Lafourcade, and J.-L. Roch. Formally and practically verifying flow properties in industrial systems. Computers & Security, Elsevier (Rank Sciamago Q1), 86(1):453--470, 2019. [bib] [pdf] @article{DPPLR19, author = {Dreier, Jannik and Puys, Maxime and Potet, Marie-Laure and Lafourcade, Pascal and Roch, Jean-Louis}, title = {Formally and practically verifying flow properties in industrial systems}, journal = {Computers \& Security, Elsevier (Rank Sciamago Q1)}, volume = {86}, number = {1}, pages = {453--470}, year = {2019}, url = {https://hal.science/hal-01959766v2}, ranking = {Sciamago}, rank = {Q1} }
[1]	J.-G. Dumas, P. Lafourcade, J.-B. Orfila, and M. Puys. Dual protocols for private multi-party matrix multiplication and trust computations. Computers & Security, Elsevier (Rank Sciamago Q1), 71(1):51--70, 2017. [bib] [pdf] @article{DLOP17, author = {Dumas, Jean-Guillaume and Lafourcade, Pascal and Orfila, Jean-Baptiste and Puys, Maxime}, title = {Dual protocols for private multi-party matrix multiplication and trust computations}, journal = {Computers \& Security, Elsevier (Rank Sciamago Q1)}, volume = {71}, number = {1}, pages = {51--70}, year = {2017}, url = {https://hal.science/hal-01497866v1}, ranking = {Sciamago}, rank = {Q1} }

International Peer-Reviewed Conferences with Proceedings

[22]	A. Ben Hassen, P. Lafourcade, D. Mahmoud, and M. Puys. Formal analysis of sdnsec: Attacks and corrections for payload, route integrity and accountability. To appear in: 20th ACM ASIA Conference on Computer and Communications Security (ACM ASIACCS 2025, Rank Core A), Hanoi, Vietnam [bib] [pdf] @inproceedings{BLMP25, title = {Formal Analysis of SDNsec: Attacks and Corrections for Payload, Route Integrity and Accountability}, author = {Ben Hassen, Ayoub and Lafourcade, Pascal and Mahmoud, Dhekra and Puys, Maxime}, booktitle = {To appear in: 20th ACM ASIA Conference on Computer and Communications Security (ACM ASIACCS 2025, Rank Core A)}, address = {Hanoi, Vietnam}, year = {2025}, ranking = {Core}, rank = {A}, url = {https://hal.science/hal-04998270v1} }
[21]	S. Kaneko, P. Lafourcade, L.-B. Mallordy, D. Miyahara, M. Puys, and K. Sakiyama. Secure voting protocol using balance scale. Foundations and Practice of Security - 17th International Symposium, FPS 2024, Montreal, Canada, December 9-11, 2024, Revised Selected Papers, Montreal, Canada [bib] [pdf] @inproceedings{KLMMPS24b, title = {Secure Voting Protocol Using Balance Scale}, author = {Kaneko, Shohei and Lafourcade, Pascal and Mallordy, Lola-Baie and Miyahara, Daiki and Puys, Maxime and Sakiyama, Kazuo}, booktitle = {Foundations and Practice of Security - 17th International Symposium, FPS 2024, Montreal, Canada, December 9-11, 2024, Revised Selected Papers}, address = {Montreal, Canada}, year = {2024}, url = {https://hal.science/hal-04831163v1} }
[20]	S. Kaneko, P. Lafourcade, L.-B. Mallordy, D. Miyahara, M. Puys, and K. Sakiyama. Balance-based zkp protocols for pencil-and-paper puzzles. Information Security Conference, Washington DC, United States, Oct 2024, 2024 [bib] [pdf] @inproceedings{KLMMPS24a, title = {Balance-Based ZKP Protocols for Pencil-and-Paper Puzzles}, author = {Kaneko, Shohei and Lafourcade, Pascal and Mallordy, Lola-Baie and Miyahara, Daiki and Puys, Maxime and Sakiyama, Kazuo}, booktitle = {Information Security Conference, Washington DC, United States, Oct 2024}, year = {2024}, url = {https://hal.science/hal-04671562v2} }
[19]	M. Da Silva, M. Puys, P.-H. Thevenon, and S. Mocanu. Plc logic-based cybersecurity risks identification for ics. The 18th International Conference on Availability, Reliability and Security, ARES 2023 (Rank Core B) - Workshop on Cybersecurity in Industry 4.0 (SecIndustry 2023), Benevento, Italy, Aug. 29 – Sept. 1, 2023, 2023 [bib] [pdf] @inproceedings{DPTM23, title = {PLC Logic-Based Cybersecurity Risks Identification for ICS}, author = {Da Silva, Mike and Puys, Maxime and Thevenon, Pierre-Henri and Mocanu, St\'{e}phane}, booktitle = {The 18th International Conference on Availability, Reliability and Security, {ARES} 2023 (Rank Core B) - Workshop on Cybersecurity in Industry 4.0 ({SecIndustry} 2023), Benevento, Italy, Aug. 29 – Sept. 1, 2023}, year = {2023}, url = {https://hal.science/hal-04165414v1}, ranking = {Core}, rank = {B} }
[18]	M. Da Silva, M. Puys, P.-H. Thevenon, S. Mocanu, and N. Nkawa. Automated ics template for stride microsoft threat modeling tool. The 18th International Conference on Availability, Reliability and Security, ARES 2023 (Rank Core B) - Workshop on Cybersecurity in Industry 4.0 (SecIndustry 2023), Benevento, Italy, Aug. 29 – Sept. 1, 2023, 2023 [bib] [pdf] @inproceedings{DPTMN23, title = {Automated ICS template for STRIDE Microsoft Threat Modeling Tool}, author = {Da Silva, Mike and Puys, Maxime and Thevenon, Pierre-Henri and Mocanu, St\'{e}phane and Nkawa, Nelson}, booktitle = {The 18th International Conference on Availability, Reliability and Security, {ARES} 2023 (Rank Core B) - Workshop on Cybersecurity in Industry 4.0 ({SecIndustry} 2023), Benevento, Italy, Aug. 29 – Sept. 1, 2023}, year = {2023}, url = {https://hal.science/hal-04165419v1}, ranking = {Core}, rank = {B} }
[17]	N. F. Polychronou, P.-H. Thevenon, M. Puys, and V. Beroulle. A hybrid solution for constraint devices to detect microarchitectural attacks. IEEE European Symposium on Security and Privacy (EuroS&P 2023) - Workshops, Delft, Netherlands, July 3-7, 2023, 2023 [bib] [pdf] @inproceedings{PTPB23, title = {A Hybrid Solution for Constraint Devices to Detect Microarchitectural Attacks}, author = {Polychronou, Nikolaos Foivos and Thevenon, Pierre-Henri and Puys, Maxime and Beroulle, Vincent}, booktitle = {IEEE European Symposium on Security and Privacy (EuroS\&P 2023) - Workshops, Delft, Netherlands, July 3-7, 2023}, year = {2023}, url = {https://hal.science/hal-04149021v1} }
[16]	C. Sivelle, L. Debbah, M. Puys, P. Lafourcade, and T. Franco-Rondisson. Automatic implementations synthesis of secure protocols and attacks from abstract models. 27th Nordic Conference on Secure IT Systems (NordSec), Reykjavik, Iceland, Nov. 30 -- Dec. 2, 2022 (Rank ERA C), 2022 [bib] [pdf] @inproceedings{SDPLF22, title = {Automatic Implementations Synthesis of Secure Protocols and Attacks from Abstract Models}, author = {Sivelle, Camille and Debbah, Lorys and Puys, Maxime and Lafourcade, Pascal and Franco-Rondisson, Thibault}, booktitle = {27th Nordic Conference on Secure IT Systems (NordSec), Reykjavik, Iceland, Nov. 30 -- Dec. 2, 2022 (Rank ERA C)}, year = {2022}, url = {https://hal.science/hal-03835049v1}, ranking = {Core}, rank = {C} }
[15]	N. F. Polychronou, P.-H. Thevenon, M. Puys, and V. Beroulle. MaDMAN: Detection of software attacks targeting hardware vulnerabilities. 24th IEEE Euromicro Conference on Digital System Design (DSD), Palermo, Italy, Sept, 1-3, 2021 (Rank Qualis B1), pages 355--362, 2021 [bib] [pdf] @inproceedings{PTPB21b, title = {{MaDMAN}: Detection of Software Attacks Targeting Hardware Vulnerabilities}, author = {Polychronou, Nikolaos Foivos and Thevenon, Pierre-Henri and Puys, Maxime and Beroulle, Vincent}, booktitle = {24th IEEE Euromicro Conference on Digital System Design (DSD), Palermo, Italy, Sept, 1-3, 2021 (Rank Qualis B1)}, pages = {355-362}, year = {2021}, url = {https://hal.science/hal-03601312v1}, ranking = {Qualis}, rank = {B1} }
[14]	N. F. Polychronou, P.-H. Thevenon, M. Puys, and V. Beroulle. Securing IoI/IIoT from software attacks targeting hardware vulnerabilities. 2021 19th IEEE International New Circuits and Systems Conference (NEWCAS), Toulon, France, June 13-16, 2021 (Rank Qualis B4), pages 1--4, 2021 [bib] [pdf] @inproceedings{PTPB21c, title = {Securing {IoI}/{IIoT} from Software Attacks Targeting Hardware Vulnerabilities}, author = {Polychronou, Nikolaos Foivos and Thevenon, Pierre-Henri and Puys, Maxime and Beroulle, Vincent}, booktitle = {2021 19th {IEEE} International New Circuits and Systems Conference ({NEWCAS}), Toulon, France, June 13-16, 2021 (Rank Qualis B4)}, pages = {1--4}, year = {2021}, url = {https://hal.science/hal-03601214v1}, ranking = {Qualis}, rank = {B4} }
[13]	M. Puys, P.-H. Thevenon, and S. Mocanu. Hardware-in-the-loop labs for scada cybersecurity awareness and training. The 16th International Conference on Availability, Reliability and Security, ARES 2021 (Rank Core B) - Workshop on Education, Training and Awareness in Cybersecurity (ETACS 2021), Vienna, Austria, August 17-20, 2021, pages 1--10, 2021 [bib] [pdf] @inproceedings{PTM21, title = {Hardware-In-The-Loop Labs for SCADA Cybersecurity Awareness and Training}, author = {Puys, Maxime and Thevenon, Pierre-Henri and Mocanu, St\'{e}phane}, booktitle = {The 16th International Conference on Availability, Reliability and Security, {ARES 2021} (Rank Core B) - Workshop on Education, Training and Awareness in Cybersecurity ({ETACS} 2021), Vienna, Austria, August 17-20, 2021}, pages = {1--10}, year = {2021}, url = {https://hal.science/hal-03282601v1}, ranking = {Core}, rank = {B} }
[12]	M. Puys, J.-P. Krimm, and R. Collado. Towards cybersecurity act: A survey on iot evaluation frameworks. SECURWARE 2020-The Fourteenth International Conference on Emerging Security Information, Systems and Technologies (Rank Qualis B3), pages 69--74, 2020 [bib] [pdf] @inproceedings{PKC20, title = {Towards Cybersecurity Act: A Survey on IoT Evaluation Frameworks}, author = {Puys, Maxime and Krimm, Jean-Pierre and Collado, Rapha{\"e}l}, booktitle = {{SECURWARE} 2020-The Fourteenth International Conference on Emerging Security Information, Systems and Technologies (Rank Qualis B3)}, pages = {69--74}, year = {2020}, url = {https://hal.science/cea-03019512v1}, ranking = {Qualis}, rank = {B3} }
[11]	J. Dumas, P. Lafourcade, J. López Fenner, D. Lucas, J. Orfila, C. Pernet, and M. Puys. Secure multiparty matrix multiplication based on strassen-winograd algorithm. Advances in Information and Computer Security - 14th International Workshop on Security, IWSEC 2019, Tokyo, Japan, August 28-30, 2019, Proceedings (Rank Core B), pages 67--88, 2019 [bib] [pdf] @inproceedings{DLFLPP19, author = {Dumas, Jean{-}Guillaume and Lafourcade, Pascal and L{\'{o}}pez Fenner, Julio and Lucas, David and Orfila, Jean{-}Baptiste and Pernet, Cl{\'{e}}ment and Puys, Maxime}, title = {Secure Multiparty Matrix Multiplication Based on Strassen-Winograd Algorithm}, booktitle = {Advances in Information and Computer Security - 14th International Workshop on Security, {IWSEC} 2019, Tokyo, Japan, August 28-30, 2019, Proceedings (Rank Core B)}, pages = {67--88}, year = {2019}, url = {https://hal.science/hal-01781554v3}, ranking = {Core}, rank = {B} }
[10]	B. Badrignans, V. Danjean, J. Dumas, P. Elbaz-Vincent, S. Machenaud, J. Orfila, F. Pebay-Peyroula, F. Pebay-Peyroula, M. Potet, M. Puys, J. Richier, and R. Jean-Louis. Security Architecture for Embedded Point-to-Points Splitting Protocols. WCICSS 2017 - IEEE World Congress on Industrial Control Systems Security, 2017 [bib] [pdf] @inproceedings{BDDEOPPPRR17, author = {Badrignans, Benoit and Danjean, Vincent and Dumas, Jean{-}Guillaume and Elbaz{-}Vincent, Philippe and Machenaud, Sabine and Orfila, Jean{-}Baptiste and Pebay{-}Peyroula, Florian and Pebay{-}Peyroula, François and Potet, Marie{-}Laure and Puys, Maxime and Richier, Jean{-}Luc and Jean{-}Louis, Roch}, title = {{Security Architecture for Embedded Point-to-Points Splitting Protocols}}, booktitle = {{WCICSS 2017 - IEEE World Congress on Industrial Control Systems Security}}, year = {2017}, url = {https://hal.science/hal-01657605v1} }
[9]	M. Puys, M. Potet, and A. Khaled. Generation of applicative attacks scenarios against industrial systems. Foundations and Practice of Security - 10th International Symposium, FPS 2017, Nancy, France, October 23-25, 2017, Revised Selected Papers, pages 127--143, 2017 [bib] [pdf] @inproceedings{PPK17, author = {Puys, Maxime and Potet, Marie{-}Laure and Khaled, Abdelaziz}, title = {Generation of Applicative Attacks Scenarios Against Industrial Systems}, booktitle = {Foundations and Practice of Security - 10th International Symposium, {FPS} 2017, Nancy, France, October 23-25, 2017, Revised Selected Papers}, pages = {127--143}, year = {2017}, url = {https://hal.science/hal-01615534v1} }
[8]	J. Dreier, M. Puys, M. Potet, P. Lafourcade, and J. Roch. Formally verifying flow integrity properties in industrial systems. Proceedings of the 14th International Joint Conference on e-Business and Telecommunications (ICETE) 2017) - Volume 4: SECRYPT, Madrid, Spain, July 24-26, 2017 (Rank Core B), pages 55--66, Best Student Paper Award, 2017 [bib] [pdf] @inproceedings{DPPLR17, author = {Dreier, Jannik and Puys, Maxime and Potet, Marie{-}Laure and Lafourcade, Pascal and Roch, Jean{-}Louis}, title = {Formally Verifying Flow Integrity Properties in Industrial Systems}, booktitle = {Proceedings of the 14th International Joint Conference on e-Business and Telecommunications {(ICETE)} 2017) - Volume 4: SECRYPT, Madrid, Spain, July 24-26, 2017 (Rank Core B)}, pages = {55--66}, year = {2017}, note = {Best Student Paper Award}, url = {https://hal.science/hal-01527913v1}, ranking = {Core}, rank = {B} }
[7]	M. Puys, J. Roch, and M. Potet. Domain specific stateful filtering with worst-case bandwidth. Critical Information Infrastructures Security - 11th International Conference, CRITIS 2016, Paris, France, October 10-12, 2016, Revised Selected Papers (Rank Core C), pages 321--327, 2016 [bib] [pdf] @inproceedings{PRP16, author = {Puys, Maxime and Roch, Jean{-}Louis and Potet, Marie{-}Laure}, title = {Domain Specific Stateful Filtering with Worst{-}Case Bandwidth}, booktitle = {Critical Information Infrastructures Security - 11th International Conference, {CRITIS} 2016, Paris, France, October 10-12, 2016, Revised Selected Papers (Rank Core C)}, pages = {321--327}, year = {2016}, url = {https://hal.science/hal-01393829v1}, ranking = {Core}, rank = {C} }
[6]	M. Puys, M. Potet, and P. Lafourcade. Formal analysis of security properties on the OPC-UA SCADA protocol. Computer Safety, Reliability, and Security - 35th International Conference, SAFECOMP 2016, Trondheim, Norway, September 21-23, 2016, Proceedings (Rank Core B), pages 67--75, 2016 [bib] [pdf] @inproceedings{PPL16, author = {Puys, Maxime and Potet, Marie{-}Laure and Lafourcade, Pascal}, title = {Formal Analysis of Security Properties on the {OPC-UA} {SCADA} Protocol}, booktitle = {Computer Safety, Reliability, and Security - 35th International Conference, {SAFECOMP} 2016, Trondheim, Norway, September 21-23, 2016, Proceedings (Rank Core B)}, pages = {67--75}, year = {2016}, url = {https://hal.science/hal-01366059v1}, ranking = {Core}, rank = {B} }
[5]	J. Dumas, P. Lafourcade, J. Orfila, and M. Puys. Private multi-party matrix multiplication and trust computations. Proceedings of the 13th International Joint Conference on e-Business and Telecommunications (ICETE 2016) - Volume 4: SECRYPT, Lisbon, Portugal, July 26-28, 2016 (Rank Core B), pages 61--72, Best Paper Award, 2016 [bib] [pdf] @inproceedings{DLOP16, author = {Dumas, Jean{-}Guillaume and Lafourcade, Pascal and Orfila, Jean{-}Baptiste and Puys, Maxime}, title = {Private Multi-party Matrix Multiplication and Trust Computations}, booktitle = {Proceedings of the 13th International Joint Conference on e-Business and Telecommunications ({ICETE} 2016) - Volume 4: SECRYPT, Lisbon, Portugal, July 26-28, 2016 (Rank Core B)}, pages = {61--72}, year = {2016}, note = {Best Paper Award}, url = {https://hal.science/hal-01344750v2}, ranking = {Core}, rank = {B} }
[4]	P. Lafourcade and M. Puys. Performance evaluations of cryptographic protocols verification tools dealing with algebraic properties. Foundations and Practice of Security - 8th International Symposium, FPS 2015, Clermont-Ferrand, France, October 26-28, 2015, Revised Selected Papers, pages 137--155, 2015 [bib] [pdf] @inproceedings{LP15, author = {Lafourcade, Pascal and Puys, Maxime}, title = {Performance Evaluations of Cryptographic Protocols Verification Tools Dealing with Algebraic Properties}, booktitle = {Foundations and Practice of Security - 8th International Symposium, {FPS} 2015, Clermont-Ferrand, France, October 26-28, 2015, Revised Selected Papers}, pages = {137--155}, year = {2015}, url = {https://hal.science/hal-01306395v1} }
[3]	L. Rivière, M. Potet, T. Le, J. Bringer, H. Chabanne, and M. Puys. Combining high-level and low-level approaches to evaluate software implementations robustness against multiple fault injection attacks. Foundations and Practice of Security - 7th International Symposium, FPS 2014, Montreal, QC, Canada, November 3-5, 2014. Revised Selected Papers, pages 92--111, 2014 [bib] [pdf] @inproceedings{RPLBCP14, author = {Rivi{\`{e}}re, Lionel and Potet, Marie{-}Laure and Le, Thanh{-}Ha and Bringer, Julien and Chabanne, Herv{\'{e}} and Puys, Maxime}, title = {Combining High-Level and Low-Level Approaches to Evaluate Software Implementations Robustness Against Multiple Fault Injection Attacks}, booktitle = {Foundations and Practice of Security - 7th International Symposium, {FPS} 2014, Montreal, QC, Canada, November 3-5, 2014. Revised Selected Papers}, pages = {92--111}, year = {2014}, url = {https://hal.science/hal-01229261v1} }
[2]	M. Puys, L. Rivière, J. Bringer, and T. Le. High-level simulation for multiple fault injection evaluation. Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance - 9th International Workshop, DPM 2014, 7th International Workshop, SETOP 2014, and 3rd International Workshop, QASA 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers, pages 293--308, 2014 [bib] [pdf] @inproceedings{PRBL14, author = {Puys, Maxime and Rivi{\`{e}}re, Lionel and Bringer, Julien and Le, Thanh{-}Ha}, title = {High-Level Simulation for Multiple Fault Injection Evaluation}, booktitle = {Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance - 9th International Workshop, {DPM} 2014, 7th International Workshop, {SETOP} 2014, and 3rd International Workshop, {QASA} 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers}, pages = {293--308}, year = {2014}, url = {https://hal.science/hal-01229279v1} }
[1]	M. Potet, L. Mounier, M. Puys, and L. Dureuil. Lazart: A symbolic approach for evaluation the robustness of secured codes against control flow injections. Seventh IEEE International Conference on Software Testing, Verification and Validation, ICST 2014, March 31 2014-April 4, 2014, Cleveland, Ohio, USA (Core Rank A), pages 213--222, 2014 [bib] [pdf] @inproceedings{PMPD14, author = {Potet, Marie{-}Laure and Mounier, Laurent and Puys, Maxime and Dureuil, Louis}, title = {Lazart: {A} Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections}, booktitle = {Seventh {IEEE} International Conference on Software Testing, Verification and Validation, {ICST} 2014, March 31 2014-April 4, 2014, Cleveland, Ohio, {USA} (Core Rank A)}, pages = {213--222}, year = {2014}, url = {https://hal.science/hal-01229274v1}, ranking = {Core}, rank = {A} }

French Peer-Reviewed Conferences with Proceedings

[8]	M. Puys and P.-H. Thevenon. PULSE - cybersécurité des systèmes industriels. Rendez-Vous de la Recherche et de l'Enseignement de la Sécurité des Systèmes d'Information, RESSI 2022, Chambon-sur-Lac, France, 2022 [bib] [pdf] @inproceedings{PT22, author = {Puys, Maxime and Thevenon, Pierre-Henri}, title = {{PULSE} - Cybersécurité des systèmes industriels}, booktitle = {{Rendez-Vous de la Recherche et de l'Enseignement de la S{\'e}curit{\'e} des Syst{\`e}mes d'Information, RESSI 2022, Chambon-sur-Lac, France}}, year = {2022}, url = {https://hal.science/hal-05124147v1} }
[7]	M. Gallissot, M. Puys, and P.-H. Thevenon. Wonder-Cloud, une plateforme pour l’analyse et l’émulation de micrologiciels ainsi que la composition de pots de miels. C&esar 2020 - Deceptive Security, Rennes, France, pages 1--8, 2020 [bib] [pdf] @inproceedings{GPT20, author = {Gallissot, Mathieu and Puys, Maxime and Thevenon, Pierre-Henri}, title = {{Wonder-Cloud, une plateforme pour l’analyse et l’{\'e}mulation de micrologiciels ainsi que la composition de pots de miels}}, booktitle = {{C\&esar 2020 - Deceptive Security, Rennes, France}}, pages = {1--8}, year = {2020}, url = {https://hal.science/hal-05124010v1} }
[6]	S. Mocanu, M. Puys, and P.-H. Thevenon. An Open-Source Hardware-In-The-Loop Virtualization System for Cybersecurity Studies of SCADA Systems. C&esar 2019 - Virtualization and Cybersecurity, Rennes, France, pages 1--16, 2019 [bib] [pdf] @inproceedings{MPT19, author = {Mocanu, St{\'e}phane and Puys, Maxime and Thevenon, Pierre-Henri}, title = {{An Open-Source Hardware-In-The-Loop Virtualization System for Cybersecurity Studies of SCADA Systems}}, booktitle = {{C\&esar 2019 - Virtualization and Cybersecurity, Rennes, France}}, pages = {1-16}, year = {2019}, url = {https://hal.science/hal-02371133v1} }
[5]	M. Puys and P.-H. Thevenon. Les défis posés par la sécurisation de l'iot industriel. Rendez-Vous de la Recherche et de l'Enseignement de la Sécurité des Systèmes d'Information, RESSI 2019, Erquy, France, 2019 [bib] [pdf] @inproceedings{PT19, author = {Puys, Maxime and Thevenon, Pierre-Henri}, title = {Les d{\'e}fis pos{\'e}s par la s{\'e}curisation de l'IoT industriel}, booktitle = {{Rendez-Vous de la Recherche et de l'Enseignement de la S{\'e}curit{\'e} des Syst{\`e}mes d'Information, RESSI 2019, Erquy, France}}, year = {2019}, url = {https://hal.science/hal-05123957v1} }
[4]	M. Puys, M. Potet, and J. Roch. Filtrage et vérification de flux métiers dans les systèmes industriels. Rendez-Vous de la Recherche et de l'Enseignement de la Sécurité des Systèmes d'Information, RESSI 2016, Toulouse, France, 2016 [bib] [pdf] @inproceedings{PPR16b, author = {Puys, Maxime and Potet, Marie{-}Laure and Roch, Jean{-}Louis}, title = {Filtrage et v{\'e}rification de flux m{\'e}tiers dans les syst{\`e}mes industriels}, booktitle = {{Rendez-Vous de la Recherche et de l'Enseignement de la S{\'e}curit{\'e} des Syst{\`e}mes d'Information, RESSI 2016, Toulouse, France}}, year = {2016}, url = {https://hal.science/hal-01316590v1} }
[3]	M. Puys, M. Potet, and J. Roch. Génération systématique de scénarios d'attaques contre des systèmes industriels. Approches Formelles dans l'Assistance au Développement de Logiciels, AFADL 2016, Besançon, France, 2016 [bib] [pdf] @inproceedings{PPR16a, author = {Puys, Maxime and Potet, Marie{-}Laure and Roch, Jean{-}Louis}, title = {G{\'e}n{\'e}ration syst{\'e}matique de sc{\'e}narios d'attaques contre des syst{\`e}mes industriels}, booktitle = {{Approches Formelles dans l'Assistance au D{\'e}veloppement de Logiciels, AFADL 2016, Besan{\c c}on, France}}, year = {2016}, url = {https://hal.science/hal-01330949v1} }
[2]	M. Potet, L. Mounier, M. Puys, and L. Dureuil. Lazart: A symbolic approach for evaluation the robustness of secured codes against control flow injections. 1er Colloque sur la Confiance Numérique en Auvergne, Clermont-Ferrand, France, 2014 [bib] [pdf] @inproceedings{PMPD14b, author = {Potet, Marie{-}Laure and Mounier, Laurent and Puys, Maxime and Dureuil, Louis}, title = {Lazart: {A} Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections}, booktitle = {{1er Colloque sur la Confiance Num{\'e}rique en Auvergne, Clermont-Ferrand, France}}, year = {2014}, url = {https://hal.science/hal-01229274v1} }
[1]	M. Potet, L. Mounier, M. Puys, and L. Dureuil. Lazart: A symbolic approach for evaluation the robustness of secured codes against control flow injections. Approches Formelles dans l'Assistance au Développement de Logiciels, AFADL 2014, Paris, France, 2014 [bib] [pdf] @inproceedings{PMPD14a, author = {Potet, Marie{-}Laure and Mounier, Laurent and Puys, Maxime and Dureuil, Louis}, title = {Lazart: {A} Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections}, booktitle = {{Approches Formelles dans l'Assistance au D{\'e}veloppement de Logiciels, AFADL 2014, Paris, France}}, year = {2014}, url = {https://hal.science/hal-01229274v1} }

Patents

[2]

M. Da Silva, P.-H. Thevenon, M. Puys, and S. Mocanu. Method and device for identifying risks of cyberattacks, Jun 2024 [bib]

@misc{dasilva2024method,
  title = {Method and device for identifying risks of cyberattacks},
  author = {Da Silva, Mike and Thevenon, Pierre-Henri and Puys, Maxime and Mocanu, St{\'e}phane},
  year = {2024},
  month = {Jun},
  publisher = {US Patent App. 18/534,970}
}

[1]

N. Polychronou, P.-H. Thevenon, M. Puys, and V. Beroulle. System for detecting malwares in a resources constrained device, Aug 2023 [bib]

@misc{polychronou2023system,
  title = {System for detecting malwares in a resources constrained device},
  author = {Polychronou, Nikolaos and Thevenon, Pierre-Henri and Puys, Maxime and Beroulle, Vincent},
  year = {2023},
  month = {Aug},
  publisher = {US Patent App. 18/109,815}
}

Overview of my Research Topics

My research focuses on the cybersecurity of industrial and critical Internet of Things (IoT) (ICS, medical devices, connected vehicles, smart cities). The goal is to analyze how cyberattacks compromise the safety of these systems, meaning their reliable and safe operation.

With the rise of Industry 4.0, IoT is expanding into critical domains, increasing cyberattacks (e.g., Stuxnet, Mirai). These systems, unlike classical IT systems, prioritize process availability and safety. The major challenge is the joint study of safety and and security, often interconnected and potentially antagonistic, especially since current tools rarely manage them together due to combinatorial complexity.

My research areas are:

Industrial and critical IoT security: Analysis of industrial IoT vulnerabilities and development of safety-security risk analysis methods, including digital twins.
Formal verification of industrial protocols: Validation that industrial protocols ensure secrecy, authentication, and integrity against intrusions through formal verification.
Host intrusion detection in embedded systems: Development of machine learning-based mechanisms to detect microarchitectural attacks.

Student Supervision

I generally supervise many student projects each year (about 5 to 10 students each year) for various subjects and at various levels. Here are the Ph.D students and Master 2 students I supervised.

Ph.D Students

2019 - 2022: Nikolaos Foivos Polychronou

Title: "Detection of Micro-Architectural Attacks in Resource-Limited Devices with a Local-Remote Security Mechanism"
Defended on: 2023-01-16
Prepared in: CEA-LETI, Grenoble, France
University: Univ. Grenoble Alpes
Funding: CEA-LETI

Jury:	Guy Gogniat, Prof. Université Bretagne Sud, Reviewer
	Lilian Bossuet, Prof. Université Jean Monnet, Reviewer
	Laure Gonnord, Prof. Grenoble INP, Examiner
	Gilles Sassatelli, DR CNRS/Université of Montpellier, President
	Vincent Beroulle, Prof. Grenoble INP, Supervisor
	Pierre-Henri Thevenon, CEA-LETI, Advisor
	Maxime Puys, CEA-LETI, Advisor

2021 - 2024: Mike Da Silva

Title: "Safety-Security Convergence of Industrial Control Systems: Cybersecurity Risk Assessment for System Safety"
Defended on: 2024-10-15
Prepared in: CEA-LETI, Grenoble, France
University: Univ. Grenoble Alpes
Funding: CEA-LETI

Jury:	Vincent Nicomette, Prof. INSA de Toulouse, Reviewer
	Nga Nguyen, Associate Prof. ESILV, Reviewer
	Pascal Lafourcade, Prof. University Clermont Auvergne, Examiner
	Marie-Laure Potet, Prof. University Grenoble Alpes, President
	Stéphane Mocanu, Associate Prof. Grenoble INP, Supervisor
	Pierre-Henri Thevenon, CEA-LETI, Advisor
	Maxime Puys, Associate Prof. University Clermont Auvergne, Advisor

Since 2023: Zoé Lagache

Title: "Automatic Restauration of Embedded Linux Systems"
Prepared in: CEA-LETI, Grenoble, France
University: Univ. Grenoble Alpes
Funding: CEA-LETI

Since 2024: Florent Durecu

Title: "Intrusion Detection and Protection in Networks using QoS based AI"
Prepared in: LIMOS, Clermont-Ferrand, France
University: Univ. Clermont Auvergne
Funding: Programme DATA, I-SITE CLERMONT CAP 20-25, Université Clermont Auvergne

Master 2 Students

2025: Shrey Mukund
Title: "Formal Verification of PAKE Protocols"
University: Université Clermont Auvergne

2024: Steve Durand Nouyep Noundjio
Title: "Security of RAG Architectures"
University: Université Clermont Auvergne

2024: Etienne Loizeau
Title: "Security of RTK Protocols"
University: Université de Rennes

2024: Ayoub Ben Hassen
Title: "Security of Resilience Protocols for Networks"
University: Sup'Com Tunisia

2024: Mohammed Sghiouri
Title: "Comparative Study of Existing Datasets in Network Intrusion Detection"
University: Université Clermont Auvergne

2024: Florian Kamsu Kom
Title: "Network Intrusion Detection from Simulation based Datasets"
University: Université Clermont Auvergne

2023: Ulysse Vincenti
Title: "Intrusion Detection Techniques from System Calls for IoT Platforms"
University: Centrale Supelec / ECE Paris

2021: Lorys Debbah
Title: "Cryptographic Primitives Abstraction Layers Generation"
University: Univ. Grenoble Alpes

2020: Camille Sivelle
Title: "Automatic Generation of Cryptographic Protocols Implementations"
University: Univ. of Lorraine

2017: Abdelaziz Khaled
Title: "Automated Translation of Specifications for Research of Attack Scenarios"
University: Univ. of Troyes

Teaching

I mainly teach at IUT Clermont Auvergne and ISIMA, mostly in French.

All my teaching material is available here, licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License. Permission is explicitly granted to copy, distribute and/or modify these document for educational purposes under the terms of the CC BY-NC-SA license.

BUT 3A Symfony

Lecture 0 -- Administative basics, [Slides]
Lecture 1 -- Introduction, [Slides] [Lab1]
Lecture 2 -- Routing, Services, [Slides] [Lab2]
Lecture 3 -- Doctrine, Twig, [Slides] [Lab3.1] [Lab3.2]
Lecture 4 -- Microservices, API platform, [Slides] [Lab4]
Lecture 5 -- Symfony Security, [Slides] [Lab5]

BUT 3A Cybersecurity

All ressources are available here

ISIMA FISA3 Industrial Systems Cybersecurity

Lecture 0 -- Administative basics, [Slides]
Lecture 1 -- Introduction basics, [Slides]
Lecture 2 -- Industrial Systems Architectures, [Slides]
Lecture 3 -- Safety/Security Risk Analyzes, [Slides]
Lecture 4 -- CAN buses, [Slides] [Lab4]
Lecture 5 -- MODBUS protocol, [Slides] [Lab5]

Me