Marc DACIER
|
Marc DACIER
Professeur Associé
04 93 00 82 00
379
|
Mes publications EURECOM
Ouvrage
-
Octobre 2011
Ouvrage
On the resilience of the dependability framework to the intrusion of new security threats
Book chapter in "Dependable and Historic Computing (essays dedicated to Brian Randell on the Occasion of his 75th Birthday)", Eds. Jones, Cliff B; Lloyd, John L; LNCS Vol 6875, Springer Verlag, ISBN:9783642245404
-
Novembre 2009
Ouvrage
Assessing cybercrime through the eyes of the WOMBAT
Book chapter N°6 in "Cyber Situational Awareness : Issues and Research", Springer International Series on Advances in Information Security, Part 3, 2009. ISBN: 98-1-4419-0139-2
-
Octobre 2009
Ouvrage
Behavioral analysis of zombie armies
Book chapter in "The Virtual Battlefield : Perspectives on Cyber Warfare", Vol. 3 of Cryptology and Information Security Series, October 2009, C. Czosseck and K. Geers ED., ISBN: 978-1-60750-060-5
-
Octobre 2009
Ouvrage
Cyber SA : situational awareness for cyber defense
Book chapter N°1 in "Cyber Situational Awareness : Issues and Research", Sushil Jajodia, Peng Liu, Vipin Swarup, Cliff Wang, eds., ISBN: 98-1-4419-0139-2, Springer International Series on Advances in Information Security, 2009.
-
Septembre 2008
Ouvrage
Automating the analysis of honeypot data
Book chapter in "Recent Advances in Intrusion Detection", published as LNCS, Volume 5230/2008, ISBN:978-3-540-87402-7
-
Juin 2006
Ouvrage
Détection d'intrusions : état de l'art, faiblesses et problèmes ouverts
Book chapter N°3 in "Sécurité des systèmes d'information (Traité IC2, série Réseaux et télécoms) / ISBN: 2-7462-1259-5; Auteur(s): MÉ Ludovic; DESWARTE Yves"
Journal
-
Mai 2011
Journal
Honeypot trace forensics : The observation viewpoint matters
"Future Generation Computer Systems", Vol 27, N°5, May 2011, ISSN: 0167-739X
-
Novembre 2009
Journal
The WOMBAT attack attribution method : Some results
Lecture Notes in Computer Science, Volume 5905/2009, ISSN : 0302-9743
-
Septembre 2009
Journal
Technical perspective - They do click, don't they?
Communications of the ACM, Vol 52, N°9, September 2009
-
Juin 2008
Journal
A framework for attack patterns' discovery in honeynet data
DFRWS 2008, 8th Digital Forensics Research Conference, August 11-13, 2008, Baltimore, USA / Also published in "Digital Investigation", Volume 5, Supplement 1, September 2008
-
Mars 2008
Journal
Understanding threats: A prerequisite to enhance survivability of computing systems
International Journal of Critical Infrastructures, Volume 4, N°1-2, 2008, p 153-171
-
Mars 2006
Journal
Internet attack knowledge discovery via clusters and cliques of attack traces
Journal of Information Assurance and Security, Volume 1, Issue 1, March 2006
Conférence / Ouvrage
-
Octobre 2009
Conférence / Ouvrage
Proceedings of the ACM SIGKDD Workshop on cybersecurity and intelligence informatics
KDD 2009, ACM SIGKDD Workshop on cybersecurity and intelligence informatics, June 28-July 1, 2009, Paris, France, ISBN:978-1-60558-669-4
Conférence
-
Octobre 2009
Conférence
Honeypot traces forensics : the observation view point matters
NSS 2009, 3rd International Conference on Network and System Security, October 19-21, 2009, Gold Cost, Australia
Best paper award
-
Juin 2009
Conférence
Addressing the attack attribution problem using knowledge discovery and multi-criteria fuzzy decision-making
KDD 2009, 15th ACM SIGKDD Conference on Knowledge Discovery and Data Mining, Workshop on CyberSecurity and Intelligence Informatics, June 28th-July 1st, 2009, Paris, France
-
Décembre 2008
Conférence
Actionable knowledge discovery for threats intelligence support using a multi-dimensional data mining methodology
ICDM 2008, 8th IEEE International Conference on Data Mining, December 15-19, 2008, Pisa, Italy
-
Octobre 2008
Conférence
Large scale malware collection : lessons learned
SRDS 2008, 27th International Symposium on Reliable Distributed Systems, October 6-8, 2008, Napoli, Italy
-
Juillet 2008
Conférence
The quest for multi-headed worms
DIMVA 2008, 5th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, July 10-11th, 2008, Paris, France | Also published as LNCS Volume 5137
-
Mai 2008
Conférence
SGNET: a worldwide deployable framework to support the analysis of malware threat models
EDCC 2008, 7th European Dependable Computing Conference, May 7-9, 2008, Kaunas, Lituania
-
Avril 2008
Conférence
The leurre.com project: collecting internet threats information using a worldwide distributed honeynet
WISTDCS 2008, 1st WOMBAT Workshop on Information Security Threats Data Collection and Sharing, April 21-22, 2008, Amsterdam, The Netherlands
-
Avril 2008
Conférence
SGNET: Implementation insights
NOMS 2008, IEEE/IFIP Network Operations and Management Symposium, April 7-11, 2008, Salvador da Bahia, Brazil
-
Mars 2008
Conférence
WG Intrusion and fraud detection for web services
Dagstuhlseminar on Network Attack Detection and Defense 2008, March 2-6, 2008, Dagstuhl, Germany
-
Mars 2008
Conférence
WG Attack taxonomy
Dagstuhlseminar on Network Attack Detection and Defense 2008, March 2-6, 2008, Dagstuhl, Germany
-
Décembre 2007
Conférence
Empirical study of the impact of metasploit-related attacks in 4 years of attack traces
ASIAN 2007, 12th Annual Asian Computing Science Conference Focusing on Computer and Network Security, December 9-11, 2007, Doha, Qatar
-
Décembre 2007
Conférence
Extracting inter-arrival time based behaviour from honeypot traffic using cliques
ADF 2007, 5th Australian Digital Forensics Conference, December 3rd, 2007, Mount Lawley, Australia
-
Octobre 2006
Conférence
Lessons learned from the deployment of a high-interaction honeypot
EDCC 2006, 6th European Dependable Computing Conference, October 18-20, 2006, Coimbra, Portugal
-
Septembre 2006
Conférence
Automatic handling of protocol dependencies and reaction to 0-day attacks with ScriptGen based honeypots
RAID 2006, 9th International Symposium on Recent Advances in Intrusion Detection, September 20-22, 2006, Hamburg, Germany / Also published in Lecture Notes in Computer Science, Volume 4219/2006
-
Juin 2006
Conférence
Empirical analysis and statistical modeling of attack processes based on honeypots
WEEDS 2006, Workshop on empirical evaluation of dependability and security (in conjunction with the international conference on dependable systems and networks, DSN 2006), June 25-28, 2006, Philadelphia,USA
-
Juin 2006
Conférence
Time signatures to detect multi-headed stealthy attack tools
18th Annual FIRST Conference, June 25-30, 2006, Baltimore, USA
-
Décembre 2005
Conférence
ScriptGen: an automated script generation tool for honeyd
ACSA 2005, 21st Annual Computer Security Applications Conference, December 5-9, 2005, Tucson, USA
-
Novembre 2005
Conférence
The use of packet inter-arrival times for investigating unsolicited Internet traffic
SADFE 2005, 1rst International Workshop on Systematic Approaches to Digital Forensic Engineering, November 7-9, 2005, Taipei, Taiwan
-
Novembre 2005
Conférence
Comparative survey of local honeypot sensors to assist network forensics
SADFE 2005, 1rst International Workshop on Systematic Approaches to Digital Forensic Engineering, November 7-9, 2005, Taipei, Taiwan
-
Septembre 2005
Conférence
Collection and analysis of attack data based on honeypots deployed on the Internet
QOP 2005, 1st Workshop on Quality of Protection (collocated with ESORICS and METRICS), September 15, 2005, Milano, Italy / Also published in "Quality Of Protection, Security Measurements and Metrics", Springer Series: Advances in Information Security, Volume 23, Gollmann, Dieter; Massacci, Fabio; Yautsiukhin, Artsiom (Eds.), 2006, XII, 197 p, ISBN: 0-387-29016-8
-
Juin 2005
Conférence
Leurré.com : retour d'expérience sur plusieurs mois d'utilisation d'un pot de miel distribué mondialement
SSTIC 2005, Symposium sur la Sécurité des Technologies de l'Information et des Communications, June 1-3, 2005, Rennes, France
-
Avril 2005
Conférence
CADHo: Collection and Analysis of Data from Honeypots
EDDC'05, 5th European Dependable Computing Conference, April 20-22, 2005, Budapest, Hungary
-
Mars 2005
Conférence
Leurre.com: on the advantages of deploying a large scale distributed honeypot platform
ECCE 2005, E-Crime and Computer Conference, 29-30th March 2005, Monaco
-
Décembre 2004
Conférence
Understanding threats: a prerequisite to enhance survivability of computing systems
IISW 2004, International Infrastructure Survivability Workshop 2004, in conjunction with the 25th IEEE International Real-Time Systems Symposium (RTSS 04) December 5-8, 2004, Lisbon, Portugal
-
Octobre 2004
Conférence
A comparison of conventional and online fraud
CRIS 2004, 2nd International Conference on Critical Infrastructures, October 25-27, 2004, Grenoble, France
-
Septembre 2004
Conférence
Honeynets: foundations for the development of early warning information systems
The Cyberspace Security and Defense: Research Issues - NATO Advanced Research Workshop, September 6-9, 2004, Gdansk, Poland - Also published as a chapter of Cyberspace Security And Defense: Research Issues, Janusz S. Kowalik (Ed), ISBN: 1402033796
-
Mai 2004
Conférence
Honeypot-based forensics
AusCERT2004, AusCERT Asia Pacific Information technology Security Conference 2004, 23rd - 27th May 2004, Brisbane, Australia
-
Avril 2004
Conférence
Attack processes found on the Internet
NATO Research and technology symposium IST-041 "Adaptive Defence in Unclassified Networks", 19 April 2004, Toulouse, France
-
Mars 2004
Conférence
Honeypots : practical means to validate malicious fault assumptions
PRDC 2004, 10th International symposium Pacific Rim Dependable Computing, March 3-5, 2004, Tahiti, French Polynesia
Rapport
-
Février 2009
Rapport
Honeypot traces forensics : the observation view point matters
Research report RR-09-226
-
Février 2007
Rapport
SGNET: a distributed infrastructure to handle zero-day exploits
Research report RR-07-187 - Extended version of this paper at EDCC 2008
-
Juin 2005
Rapport
White paper: Integration of honeypot data into an alert correlation engine
Research report RR-05-142
-
Octobre 2004
Rapport
OWL : Installation testing and validation
Research report RR-04-103
-
Octobre 2004
Rapport
Honeypot platform : analyses and results
Research report RR-04-104
-
Décembre 2003
Rapport
Alert correlation
Research report RR-03-094
-
Décembre 2003
Rapport
Alert correlation: Review of the state of the art
Research report RR-03-093
-
Septembre 2003
Rapport
White paper: honeypot, honeynet: a comparative survey
Research report RR-03-082
-
Septembre 2003
Rapport
White paper: honeypot, honeynet, honeytoken: terminological issues
Research report RR-03-081
Poster
-
Décembre 2010
Poster
VAMPIRE : Future internet vulnerability assessment, monitoring and prevention
ARN "Colloque « Télécommunications ? réseaux du futur et services", December 6-8, 2010, Rennes, France
