Maxime Puys

Me

Maxime Puys
Ph.D. in Computer Science Security
Research Engineer
E-mail:	Maxime (dot) Puys (at) cea (dot) fr
Office:	CEA-Leti
	Commissariat à l’énergie atomique et aux énergies alternatives
	17 rue des Martyrs
	38054 GRENOBLE CEDEX 9
	France
Phone:	+33 4 38 78 09 45
Links:

Curriclum Vitae

Skills

Cybersecurity – Cryptology (OpenSSL, Featherduster), Network Security (Wireshark, Scapy, NMap), Formal Methods (ProVerif, KLEE, Frama-C), OS Vulnerabilities
Programming – Professional Skills: Python, C, Basic Knowledge: C++, Java, Php/MySQL, Asm x86/ARM/LLVM, Go, Rust, Ada, Ocaml
OS – Linux (Ubuntu, Debian, ArchLinux), Windows (98 up to 10)
Administration – Tools: Vim, Eclipse derived, Git, Jenkins, Docker, VirtualBox, Ansible
Office – Professional Reports and Scientific Articles (LaTeX, Microsoft Office and alternatives)

Experience

2018 – Now, Research Engineer, CEA-Leti, Grenoble, France
2014 – 2018, Ph.D. Student, Verimag, University of Grenoble Alpes, Grenoble, France
2013 – 2014, Smart-Card Security Apprentice Engineer, Morpho, Osny, France

Education

2014 – 2018, Ph.D. in Computer Science Security, Grenoble Alpes, Grenoble, France
2012 – 2014, Master’s Degree, Magna Cum Laude (Mention “Bien”), University of Grenoble Alpes, Grenoble, France
2009 – 2012, Licentiate Degree, Cum Laude (Mention “Assez Bien”), University of Grenoble Alpes, Grenoble, France

Summary

I graduated from a master’s degree from University of Grenoble Alpes in Grenoble. This master was named SAFE (now Cybersecurity), standing for Sécurité, Audit et Informatique Légal, cybercriminality orientated and this year of study was combined with an apprenticeship in the R&D center of SAFRAN Morpho on the security of smartcards against fault attacks. Within this position, I ensured technology intelligence, provided intern white-papers and proposed new ideas including:

A detailed state-of-the-art on fault attacks against RSA cryptographic scheme;
A set of macro to automatically embed security against fault attacks in smart-cards applications;
A simulator working at C level to automatically assess the security of smart-cards applications against fault attacks.

I obtained a Ph.D. in the field of industrial systems cybersecurity at the Verimag laboratory under the supervision of Marie-Laure Potet and Jean-Louis Roch. Within the projet PIA Sécurité Numérique ARAMIS. My subject aimed to:

Propose a language in order to filter industrial communication using deep packet analysis;
Study automated generation of attack scenarios against industrial systems;
Perform formal verification of industrial protocols.

I am currently working as a research engineer at the CEA-Leti where I am studying the security of IoT devices for smart-home and industrial systems (SCADA systems). Within this position, I ensured technology intelligence, provided intern white-papers and proposed new ideas including:

Assessing the security of IoT smart-home devices with respect to network attacks;
Designing lightweight solutions to secure industrial IoT systems (SCADA systems);
Proposing integration and penetration testing architectures for developped components.

Students Supervision

2019: Industrial Project Internship, ESISAR Valence – Advanced Persistant Threats Development for Industrial Control Systems (in co-supervision with Pierre-Henri Thévenon)
2019: Industrial Project Internship, ENSIMAG Grenoble – Attack Scenarios and Smart-Fuzzing of the MODBUS protocol} (in co-supervision with Pierre-Henri Thévenon and Jean-Louis Roch)
2017: Abdelaziz KHALED, Computer Science Master 2 Internship, University of Troyes - Automatated Translation of Specifications for Research of Attack Scenarios (in co-supervision with Marie-Laure Potet)
2017: Florian MARCO, Computer Science Licentiate 3 Internship, University of Grenoble Alpes - Modular modelization of intruder in ProVerif (in co-supervision with Cristian Ene)
2016: Joris CHAFFARD, Computer Science Master 1 Internship, University of Grenoble Alpes - Modélisation de comportements d’attaques contres des systèmes de contrôle-commande (in co-supervision with Emmanuel Perrier and Marie-Laure Potet)
2016: Francesco FURFARO, Computer Science Master 1 Internship, University of Grenoble Alpes - Génération de traffic d’attaque pour les protocoles contrôle-commande (in co-supervision with Emmanuel Perrier and Marie-Laure Potet)

Scientific Activities

[COMCOM] Elsevier Computer Communications (Reviews)
[RESSI 2018] 4ème Rendez-Vous de la Recherche et de l’Enseignement de la Sécurité des Systèmes d’Information (Ph.D. students track’s PC member)
[RESSI 2017] 3ème Rendez-Vous de la Recherche et de l’Enseignement de la Sécurité des Systèmes d’Information (Ph.D. students track’s chair)
[GramSec’17] 4th International Workshop on Graphical Models for Security, (Subreview)
[RESSI 2016] 2ème Rendez-Vous de la Recherche et de l’Enseignement de la Sécurité des Systèmes d’Information (Ph.D. students track’s PC member)
[FPS 2016] 9th International Symposium on Foundations & Practice of Security (Subreview)
[GreHack’15 – 17] GreHack conference and CTF (Local organization)

Honors & Awards

Best Student Paper Award, Jul 2017, SECRYPT 2017, For paper “Formally Verifying Flow Integrity Properties in Industrial Systems”.
Best Paper Award, Jul 2016, SECRYPT 2016, For paper “Private Multi-party Matrix Multiplication and Trust Computations”.

Publications

Ph.D. Thesis

[1]

M. Puys. Sécurité des systèmes industriels : filtrage applicatif et recherche de scénarios d'attaques. PhD thesis, Communauté Université Grenoble-Alpes, Feb. 2018. [pdf] [bib] [slides]

@phdthesis{phdThesisMaximePuys,
  author = {Maxime Puys},
  title = {S{\'e}curit{\'e} des syst{\`e}mes industriels : filtrage applicatif et recherche de sc{\'e}narios d'attaques},
  school = {Communaut{\'e} Universit{\'e} Grenoble{-}Alpes},
  year = {2018},
  month = {Feb.},
  url = {https://maxime.puys.name/publications/pdf/phdThesisMaximePuys.pdf}
}

International Peer-Reviewed Journals

[2]

J. Dreier, M. Puys, M.-L. Potet, P. Lafourcade, and J.-L. Roch. Formally and practically verifying flow properties in industrial systems. Computers & Security, 2018. [pdf] [bib]

@article{DPPLR18,
  title = {Formally and practically verifying flow properties in industrial systems},
  author = {Dreier, Jannik and Puys, Maxime and Potet, Marie-Laure and Lafourcade, Pascal and Roch, Jean-Louis},
  journal = {Computers \& Security},
  year = {2018},
  url = {https://maxime.puys.name/publications/pdf/DPPLR18.pdf}
}

[1]

J.-G. Dumas, P. Lafourcade, J.-B. Orfila, and M. Puys. Dual protocols for private multi-party matrix multiplication and trust computations. Computers & Security, 2017. [pdf] [bib]

@article{DLOP17,
  title = {Dual protocols for private multi-party matrix multiplication and trust computations},
  author = {Jean-Guillaume Dumas and Pascal Lafourcade and Jean-Baptiste Orfila and Maxime Puys},
  journal = {Computers \& Security},
  year = {2017},
  url = {https://maxime.puys.name/publications/pdf/DLOP17.pdf}
}

International Peer-Reviewed Conferences with Proceedings

[10]	B. Badrignans, V. Danjean, J. Dumas, P. Elbaz-Vincent, S. Machenaud, J. Orfila, F. Pebay-Peyroula, F. Pebay-Peyroula, M. Potet, M. Puys, J. Richier, and J. Roch. Security Architecture for Embedded Point-to-Points Splitting Protocols. In WCICSS'17, 2017. [pdf] [bib] @inproceedings{BDDEOPPPRR17, author = {Badrignans, Benoit and Danjean, Vincent and Dumas, Jean{-}Guillaume and Elbaz{-}Vincent, Philippe and Machenaud, Sabine and Orfila, Jean{-}Baptiste and Pebay{-}Peyroula, Florian and Pebay{-}Peyroula, François and Potet, Marie{-}Laure and Puys, Maxime and Richier, Jean{-}Luc and Roch, Jean{-}Louis}, title = {{Security Architecture for Embedded Point-to-Points Splitting Protocols}}, booktitle = {WCICSS'17}, year = {2017}, url = {https://maxime.puys.name/publications/pdf/BDDEOPPPRR17.pdf} }
[9]	M. Puys, M. Potet, and A. Khaled. Generation of applicative attacks scenarios against industrial systems. In FPS'17, Nancy, France, 2017. [pdf] [bib] @inproceedings{PPK17, author = {Maxime Puys and Marie{-}Laure Potet and Abdelaziz Khaled}, title = {Generation of Applicative Attacks Scenarios Against Industrial Systems}, booktitle = {FPS'17, Nancy, France}, year = {2017}, url = {https://maxime.puys.name/publications/pdf/PPK17.pdf} }
[8]	J. Dreier, M. Puys, M. Potet, P. Lafourcade, and J. Roch. Formally verifying flow integrity properties in industrial systems. In SECRYPT'17, Madrid, Spain, 2017. Best Student Paper Award. [pdf] [bib] @inproceedings{DPPLR17, author = {Jannik Dreier and Maxime Puys and Marie{-}Laure Potet and Pascal Lafourcade and Jean{-}Louis Roch}, title = {Formally Verifying Flow Integrity Properties in Industrial Systems}, booktitle = {SECRYPT'17, Madrid, Spain}, year = {2017}, url = {https://maxime.puys.name/publications/pdf/DPPLR17.pdf} }
[7]	M. Puys, J. Roch, and M. Potet. Domain specific stateful filtering with worst-case bandwidth. In CRITIS'16, Paris, France, 2016. [pdf] [bib] @inproceedings{PRP16, author = {Maxime Puys and Jean{-}Louis Roch and Marie{-}Laure Potet}, title = {Domain Specific Stateful Filtering with Worst{-}Case Bandwidth}, booktitle = {CRITIS'16, Paris, France}, year = {2016}, url = {https://maxime.puys.name/publications/pdf/PRP16.pdf} }
[6]	M. Puys, M. Potet, and P. Lafourcade. Formal analysis of security properties on the OPC-UA SCADA protocol. In Computer Safety, Reliability, and Security - 35th International Conference, SAFECOMP 2016, Trondheim, Norway, September 21-23, 2016, Proceedings, pages 67--75, 2016. [pdf] [bib] @inproceedings{PPL16, author = {Maxime Puys and Marie{-}Laure Potet and Pascal Lafourcade}, title = {Formal Analysis of Security Properties on the {OPC-UA} {SCADA} Protocol}, booktitle = {Computer Safety, Reliability, and Security - 35th International Conference, {SAFECOMP} 2016, Trondheim, Norway, September 21-23, 2016, Proceedings}, pages = {67--75}, year = {2016}, url = {https://maxime.puys.name/publications/pdf/PPL16.pdf} }
[5]	J. Dumas, P. Lafourcade, J. Orfila, and M. Puys. Private multi-party matrix multiplication and trust computations. In Proceedings of the 13th International Joint Conference on e-Business and Telecommunications (ICETE 2016) - Volume 4: SECRYPT, Lisbon, Portugal, July 26-28, 2016., pages 61--72, 2016. Best Paper Award. [pdf] [bib] @inproceedings{DLOP16, author = {Jean{-}Guillaume Dumas and Pascal Lafourcade and Jean{-}Baptiste Orfila and Maxime Puys}, title = {Private Multi-party Matrix Multiplication and Trust Computations}, booktitle = {Proceedings of the 13th International Joint Conference on e-Business and Telecommunications ({ICETE} 2016) - Volume 4: SECRYPT, Lisbon, Portugal, July 26-28, 2016.}, pages = {61--72}, year = {2016}, url = {https://maxime.puys.name/publications/pdf/DLOP16.pdf} }
[4]	P. Lafourcade and M. Puys. Performance evaluations of cryptographic protocols verification tools dealing with algebraic properties. In Foundations and Practice of Security - 8th International Symposium, FPS 2015, Clermont-Ferrand, France, October 26-28, 2015, Revised Selected Papers, pages 137--155, 2015. [pdf] [bib] @inproceedings{LP15, author = {Pascal Lafourcade and Maxime Puys}, title = {Performance Evaluations of Cryptographic Protocols Verification Tools Dealing with Algebraic Properties}, booktitle = {Foundations and Practice of Security - 8th International Symposium, {FPS} 2015, Clermont-Ferrand, France, October 26-28, 2015, Revised Selected Papers}, pages = {137--155}, year = {2015}, url = {https://maxime.puys.name/publications/pdf/LP15.pdf} }
[3]	L. Rivière, M. Potet, T. Le, J. Bringer, H. Chabanne, and M. Puys. Combining high-level and low-level approaches to evaluate software implementations robustness against multiple fault injection attacks. In Foundations and Practice of Security - 7th International Symposium, FPS 2014, Montreal, QC, Canada, November 3-5, 2014. Revised Selected Papers, pages 92--111, 2014. [pdf] [bib] @inproceedings{RPLBCP14, author = {Lionel Rivi{\`{e}}re and Marie{-}Laure Potet and Thanh{-}Ha Le and Julien Bringer and Herv{\'{e}} Chabanne and Maxime Puys}, title = {Combining High-Level and Low-Level Approaches to Evaluate Software Implementations Robustness Against Multiple Fault Injection Attacks}, booktitle = {Foundations and Practice of Security - 7th International Symposium, {FPS} 2014, Montreal, QC, Canada, November 3-5, 2014. Revised Selected Papers}, pages = {92--111}, year = {2014}, url = {https://maxime.puys.name/publications/pdf/RPLBCP14.pdf} }
[2]	M. Puys, L. Rivière, J. Bringer, and T. Le. High-level simulation for multiple fault injection evaluation. In Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance - 9th International Workshop, DPM 2014, 7th International Workshop, SETOP 2014, and 3rd International Workshop, QASA 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers, pages 293--308, 2014. [pdf] [bib] @inproceedings{PRBL14, author = {Maxime Puys and Lionel Rivi{\`{e}}re and Julien Bringer and Thanh{-}Ha Le}, title = {High-Level Simulation for Multiple Fault Injection Evaluation}, booktitle = {Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance - 9th International Workshop, {DPM} 2014, 7th International Workshop, {SETOP} 2014, and 3rd International Workshop, {QASA} 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers}, pages = {293--308}, year = {2014}, url = {https://maxime.puys.name/publications/pdf/PRBL14.pdf} }
[1]	M. Potet, L. Mounier, M. Puys, and L. Dureuil. Lazart: A symbolic approach for evaluation the robustness of secured codes against control flow injections. In Seventh IEEE International Conference on Software Testing, Verification and Validation, ICST 2014, March 31 2014-April 4, 2014, Cleveland, Ohio, USA, pages 213--222, 2014. [pdf] [bib] @inproceedings{PMPD14, author = {Marie{-}Laure Potet and Laurent Mounier and Maxime Puys and Louis Dureuil}, title = {Lazart: {A} Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections}, booktitle = {Seventh {IEEE} International Conference on Software Testing, Verification and Validation, {ICST} 2014, March 31 2014-April 4, 2014, Cleveland, Ohio, {USA}}, pages = {213--222}, year = {2014}, url = {https://maxime.puys.name/publications/pdf/PMPD14.pdf} }

French Peer-Reviewed Conferences with Proceedings

[4]	M. Puys, M. Potet, and J. Roch. Filtrage et vérification de flux métiers dans les systèmes industriels. In Rendez-Vous de la Recherche et de l'Enseignement de la Sécurité des Systèmes d'Information, RESSI 2016, Toulouse, France, 2016. [pdf] [bib] @inproceedings{PPR16b, author = {Maxime Puys and Marie{-}Laure Potet and Jean{-}Louis Roch}, title = {Filtrage et v{\'e}rification de flux m{\'e}tiers dans les syst{\`e}mes industriels}, booktitle = {{Rendez-Vous de la Recherche et de l'Enseignement de la S{\'e}curit{\'e} des Syst{\`e}mes d'Information, RESSI 2016, Toulouse, France}}, year = {2016}, url = {https://maxime.puys.name/publications/pdf/PPR16b.pdf} }
[3]	M. Puys, M. Potet, and J. Roch. Génération systématique de scénarios d'attaques contre des systèmes industriels. In Approches Formelles dans l'Assistance au Développement de Logiciels, AFADL 2016, Besançon, France, 2016. [pdf] [bib] @inproceedings{PPR16a, author = {Maxime Puys and Marie{-}Laure Potet and Jean{-}Louis Roch}, title = {G{\'e}n{\'e}ration syst{\'e}matique de sc{\'e}narios d'attaques contre des syst{\`e}mes industriels}, booktitle = {{Approches Formelles dans l'Assistance au D{\'e}veloppement de Logiciels, AFADL 2016, Besan{\c c}on, France}}, year = {2016}, url = {https://maxime.puys.name/publications/pdf/PPR16a.pdf} }
[2]	M. Potet, L. Mounier, M. Puys, and L. Dureuil. Lazart: A symbolic approach for evaluation the robustness of secured codes against control flow injections. In 1er Colloque sur la Confiance Numérique en Auvergne, Clermont-Ferrand, France. [pdf] [bib] @inproceedings{PMPD14b, author = {Marie{-}Laure Potet and Laurent Mounier and Maxime Puys and Louis Dureuil}, title = {Lazart: {A} Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections}, booktitle = {{1er Colloque sur la Confiance Num{\'e}rique en Auvergne, Clermont-Ferrand, France}}, url = {https://maxime.puys.name/publications/pdf/PMPD14.pdf} }
[1]	M. Potet, L. Mounier, M. Puys, and L. Dureuil. Lazart: A symbolic approach for evaluation the robustness of secured codes against control flow injections. In Approches Formelles dans l'Assistance au Développement de Logiciels, AFADL 2014, Paris, France, 2014. [pdf] [bib] @inproceedings{PMPD14a, author = {Marie{-}Laure Potet and Laurent Mounier and Maxime Puys and Louis Dureuil}, title = {Lazart: {A} Symbolic Approach for Evaluation the Robustness of Secured Codes against Control Flow Injections}, booktitle = {{Approches Formelles dans l'Assistance au D{\'e}veloppement de Logiciels, AFADL 2014, Paris, France}}, year = {2014}, url = {https://maxime.puys.name/publications/pdf/PMPD14.pdf} }

Links

Research

[Core] Core Conference ranking engine.
[Sherpa/Romeo] Publisher copyright policies & self-archiving.
[VERIMAG Secu] Code analysis for security evaluation in VERIMAG.
[G@el] Access to UJF library (restricted access).

Free Software Contributions

[FreeOpcUa] OpcUa (industrial protocol) Python module.
[FeatherDuster] Cryptanalysis Python module.

LaTeX

[LaTeX] LaTeX Wikibook.
[Detexify] LaTeX symbol recognition.
[JabRef] BibTeX reference manager.

Vim

[Vim] Vim tutorial.

Scholar

[MIG] Magistère en Informatique de Grenoble.
[M2 SAFE] Master of cybersecurity in Grenoble (formely SAFE master).

Really Miscellaneous

[CDF] Comité des fêtes de la ville d’Albertville.
[AKWTG] Académie de Kung fu Wushu et Taichi chuan de Grenoble.

wordcloud