Scientific day – Security and safety of Embedded Systems

Event information

Start date :12/11/2020

End date :12/11/2020

Time :10 am to 12 pm

4th scientific days, IRT Saint Exupery Embedded System Domain and the CNRS SoC2 GDR, gathering industrials and academics

The IRT Saint Exupéry and the CNRS GDR SOC2 pursue their cooperation with the organization of their 4th scientific day gathering industry and academia on critical embedded systems.

Due to the health situation, the day is redesigned in an online version. The video presentations will be put online before the event and an asynchronous discussion space will be set up to allow a first exchange between speakers and participants. On the day of the event, a live web session will be set up during which a short summary of each presentation will be proposed, followed by a question and answer session and a wrap-up session.

Since few years critical embedded systems domains are revisiting their safety and resilience strategy to increase protection and containment measures to public and hacker exposition with potential cyberattacks or misused offered by new public interface. This year we propose to focus the presentation and discussion on security with effect on safe design of the system.

The scientific day will include extensive presentations by guest speakers from academia and industry on the following topics:

  • Cybersecurity and safety
  • Cyber security return of experience
  • New methods to manage cyber-security


On-line video presentation: from October the 19th, 2020
Registration (mandatory): from October the 19th, 2020
On-line question registry and exchange:  from October the 19th to November the 6th, 2020
On-line live scientific day: November the 12th, 2020 from 10:00 to 12:00


> Registration (mandatory) and venue <

Organization Committee:


Pierre-Henri Thévenon – CEA LETI, Maxime Puys – CEA LETI : « WonderICS – Hardware-in-the-loop platform for cybersecurity»

Abstract: The main topic of this presentation is the description of a hardware-software co-simulation environment to alert the public to the danger of the cybersecurity of industrial control systems and to experiment innovative security solutions. This platform integrates simulators to emulate physical process for different use cases such as hazardous gases management or hydroelectric power plant. A set of tools can be used to attack the industrial control systems in different ways (phishing mails, corrupted usb key, hardware trojan …). This presentation will describe all the solutions used to create this platform and give some perspectives about the future work on this subject.

Nathalie Freyt – Thales Avionics: « Cybersecurity for safety & Explicable AI: challenge for aeronautic industry innovation »

Abstract: This talk provides an overview of Thales research in cyber security for aeronautic systems. In such critical, real time and safety related equipment, traditional information security solutions need far more than integration or adaptation, they need full remastering. We have worked on various projects with Universities & Engineering Schools & start-up to manage it those challenges. Through three uses cases on embedded SIEM, Drones cybersecurity and intrusion detection on IMA- integrated modular avionics, we will show various type of approaches including IA, encompassing both technics and organizations as a factor of success. Finally, we will give perspectives on future research needs in our avionics domain.

Vincent Nicomette – LAAS: « Intrusion detection in critical embedded systems»

Abstract:  This talk gives an overview of two research works carried out at LAAS-CNRS, jointly with Renault and Thales Avionics, and focusing on the design of intrusion detection systems fit respectively for vehicular networks and avionics platforms. The first research work proposes the design of an Intrusion Detection System (IDS) fit for these vehicular networks.  Leveraging the high predictability of embedded automotive systems, the approach uses language theory to elaborate a set of attack signatures derived from behavioral models of the automotive ECUs in order to detect a malicious sequence of messages through the internal network. The second research work presents an approach to integrate an intrusion detection system inside an avionics computer, compliant with the Integrated Modular Avionics (IMA) development process. This approach builds a model of the normal behavior of an avionics application during the integration phase, based on the static and deterministic characteristics of this application. This normal behavior model is embedded inside the aircraft during the operational phase, and any behavioral deviation from this model is considered as an anomaly and raises an alert. This research work also investigates a post-analysis of the anomalies in order to provide a first level of on-board diagnosis.

Vincent Migliore – LAAS, Benoit Morgan IRIT: « Instrumentation of hardware processors for security »

Abstract:  Recent attacks such as Spectre and Meltdown targets some micro-architectural elements of processors to access logically isolated information. This kind of attacks is especially critical because hardware is not easily patchable unlike software. Recent studies proposed to design new reconfigurable modules, integrated into processors, to observe micro-architectural events and raise alerts when an attack occurs. In this presentation, we will briefly describe existing strategies, their limitations and the remaining challenges.

Sébastien Bardin – CEA: « Security-oriented Program analysis »

Abstract:  While digital security concerns increase, we face both an urging demand for more and more code-level security analysis and a shortage of security experts. Hence the need for techniques and tools able to automate part of these code-level security analyses. As source-level program analysis and formal methods for safety-critical applications have made tremendous progress in the past decade, it is extremely tempting to adapt them from safety to security. In this talk, we will first present some of the new challenges faced by formal methods and program analysis in the context of code-level security. For example, security-oriented code analysis is better performed at the binary level and the attacker must be taken into account. Second, we will discuss some early results and achievements. Especially, we will show how techniques such as symbolic execution and SMT constraint solving can be used in a number of code-level security scenarios.

Vincent Beroule – LCIS: « Safety and security of embedded systems: simulation of faults, similarities and differences»

Abstract: Fault simulation is a proven technique for evaluating both the robustness of critical circuits to disturbances and secure circuits to fault attacks. However, this technique for complex circuits or systems is facing an explosion in the number of faults to be injected. Increasing the level of abstraction of the circuit descriptions and fault models used can reduce simulation times but can drive to inaccurate evaluations. The tools and approaches used in safety and security in this context have strong similarities, but the metrics and methods for assessment differ on some points. In this presentation, we will try to illustrate these similarities and differences. We will show how cross layer approaches can improve assessment results both in terms of accuracy and speed. To do so, we will compare the work and results of two projects in progress, one in safety with an application for aeronautics (Safe-Air: Safety of Critical Systems Applied to Aeronautics), and one in security for the vulnerability analysis of embedded codes (CLAM: Cross-Layer Fault Analysis for Microprocessor Architectures).