Ronan Lashermes

Research engineer on the security of embeded systems

INRIA-RBA

Biography

Currently a research engineer at INRIA-RBA, I am interested in the impact of abstraction barriers (software/mathematics, hardware/software) on the security of computing systems.

Physical attacks (side-channels and fault injection) are the most obvious manifestations of this impact.

In the LHS lab, our physical attack benches allow us to exhibit vulnerabilities that are not achievable with software only.

Professional interests

Embedded systems
Hardware/Software interface
Hardware security
Physical attacks

Professional experience

Research Engineer, 2017-

INRIA-RBA
Post-doc, 2016-2017

INRIA-RBA
Research Engineer, 2014-2016

Secure-IC
PhD in computer science, 2014

CEA-LETI/-TECH and UVSQ

Education

PhD in computer science, 2014

CEA-LETI/-TECH and UVSQ
Engineering School, 2011

Grenoble-INP Phelma

Publications

2018

Hardware-Assisted Program Execution Integrity: HAPEI in NordSec2018
Details PDF
When fault injection collides with hardware complexity in FPS2018
Details
Let’s shock our IoT’s heart: ARMv7-M under (fault) attacks in ARES2018
Details PDF
Vérifier un code PIN in MISC97
Details PDF
Attaques par fautes in MISC96
Details PDF

2017

How TrustZone could be bypassed: Side-Channel Attacks on a modern System-on-Chip in WISTP2017
Details PDF

2016

A Multi-Round Side Channel Attack on AES using Belief Propagation in FPS2016
Details PDF Slides
High-performance Elliptic Curve Cryptography by Using the CIOS Method for Modular Multiplication in CRiSIS2016
Details PDF Slides
A template attack against VERIFY PIN algorithms in SECRYPT2016
Details PDF Slides

2014

On the security of pairing implementations in PhD Thesis
Details PDF
Practical Validation of Several Fault Attacks against the Miller Algorithm in FDTC2014
Details PDF Slides

2013

Inverting the Final Exponentiation of Tate Pairings on Ordinary Elliptic Curves Using Faults in CHES2013
Details PDF

2012

A DFA on AES based on the entropy of error distributions in FDTC2012
Details PDF

Recent & Upcoming Talks

2019

How modern System-on-Chips are vulnerable to fault attacks
Thu, May 23, 2019, JAIF2019
Do Not Trust Modern System-on-Chips
Fri, May 10, 2019, Séminaire Sécurité des Systèmes Électroniques Embarqués

2017

Fault Injection Attacks
Tue, Sep 19, 2017, CRiSIS 2017
Fault Injection
Fri, Jul 21, 2017, ISSISP 2017 - Summer school
A Multi-Round Side Channel Attack on AES using Belief Propagation
Thu, Jan 26, 2017, Conference on cybersecurity WG6

2016

IoT and Physical Attacks
Tue, Nov 22, 2016, C&ESAR 2016
Hands-on: Introduction to side-channels analysis
Mon, Jul 4, 2016, Cyber in Bretagne - Summer School

Projects

Sparkbench

Sparkbench is a tool to perform physical attacks. It will orchestrate the apparatus and data retrieval. With automatic error recovery.

Faustine

The data (code, docs, …) for the INRIA Faustine platform for Electromagnetic fault injection

smartcard-rs

A wrapper library to access the pcsc lib from the rust language

Contact

ronan.lashermes@inria.fr
@artefaritaj on Keybase.
+33 (0)2 99 84 72 84
263 Avenue du Général Leclerc, 35042 Rennes