Speaker: Adrian Perrig
Public-key infrastructures form the core of authentication systems that are in use in today’s Internet. Unfortunately, the inadequacies of the design of currently used PKIs are emerging with the constant evolution of the Internet and its uses.
In this talk, we will discuss the different types of PKIs that are needed to secure Internet communication, and show how we can design next-generation PKIs to achieve better scalability, security, trust agility, and usability.
In particular, we will address the following challenges. How can we design a highly available PKI system to support a routing infrastructure? Can we design a PKI that allows to control/limit the power of authorities (e.g., no kill switch possibilities)? How can we securely, scalably, and efficiently update compromised root keys? What considerations do we have for the design a DNS PKI? Should we base the TLS PKI on the DNS PKI as proposed in DANE? Or should we design a TLS PKI that is independent of a secure DNS system?
Adrian Perrig is a Professor at the Department of Computer Science at ETH Zürich, Switzerland, where he leads the network security group. He is also a Distinguished Fellow at CyLab, and an Adjunct Professor of Electrical and Computer Engineering, and Engineering and Public Policy at Carnegie Mellon University. From 2002 to 2012, he was a Professor of Electrical and Computer Engineering, Engineering and Public Policy, and Computer Science (courtesy) at Carnegie Mellon University, becoming Full Professor in 2009. From 2007 to 2012, he served as the technical director for Carnegie Mellon’s Cybersecurity Laboratory (CyLab). He earned his MS and PhD degrees in Computer Science from Carnegie Mellon University, and spent three years during his PhD at the University of California at Berkeley. He received his BSc degree in Computer Engineering from EPFL. Adrian’s research revolves around building secure systems — in particular his group is working on the SCION secure Internet architecture.
He is a recipient of the NSF CAREER award in 2004, IBM faculty fellowships in 2004 and 2005, the Sloan research fellowship in 2006, the Security 7 award in the category of education by the Information Security Magazine in 2009, the Benjamin Richard Teare teaching award in 2011, the ACM SIGSAC Outstanding Innovation Award in 2013. He is an IEEE senior member and became an ACM Fellow in 2017.
Speaker: Eric Freyssinet
Fighting cybercrime in France
Over the past 30 years, the gendarmerie nationale has established in France a network of 4000 investigators dealing everyday with cybercrime of all types : online fraud, malware, child abuse material distribution or online drug trafficking. The challenges evolve at a steady pace and methods, tools and law enforcement practices need to adapt. The talk will develop a brief history of this fight in France and Europe and highlight the main areas where new developments are needed : cooperation, threat intelligence, advanced forensics, reverse engineering or counter-measures.
Colonel Eric Freyssinet was appointed as Chief digital strategy officer for the gendarmerie nationale on May 1st 2017, after 19 years of his career dedicated to the fight against cybercrime in technical, strategic and operational positions. He has notably been the head of the IT Forensics department of the gendarmerie’s national forensic laboratory (IRCGN, 1998 – 2005), in charge of cybercrime projects at the headquarters (DGGN/SDPJ, 2005-2010) and between 2010 and 2015 at the head of the gendarmerie’s centre for the fight against digital crimes (C3N). In those positions he was very much involved in international relationships, as vice-chairman of Europol’s EU Cybercrime task force or chairman of a similar group of cybercrime specialised units for Interpol. During the past two years, he was part of the team creating the Cyberthreats taskforce for the ministry of Interior. Trained first as an engineer (Ecole Polytechnique, X1992), colonel Eric Freyssinet then specialised in IT security (Advanced masters on IT security SSIR, Telecom Paristech, 2000) and pursued his academic efforts by defending a computer science PhD on the subject of the fight against botnets (University Pierre et Marie Curie, Paris 6).
Eric Freyssinet is also an associate member of the LORIA computer science laboratory and teaches in different higher education programmes in France. Finally, colonel Eric Freyssinet is also involved in public private partnerships through non governmental organisations, as vice-chairman of Signal Spam and seceratary general of CECyF, the french cybercrime centre of excellence.