Bannière EUR DS4H - Digital Systems for Humans EUR DS4H - Digital Systems for Humans

 

Digital Systems for Humans (DS4H) est l'une des huit écoles universitaires de recherche thématiques d'Université Côte d'Azur. Elle s'intéresse aux aspects scientifiques, technologiques et humains de la digitalisation de la société. Sur le volet pédagogique, DS4H propose 5 masters "coeur" (majeures) en Informatique, Electronique, MIAGE, Droit du numérique et Stratégie digitale-Management du numérique et de l'innovation. Elle délivre des doctorats avec les écoles doctorales STIC,  DESPEG et SHAL. Sur le volet scientifique, DS4H mène un programme de recherche pluridisciplinaire impliquant 13 laboratoires dans les domaines du numérique et des sciences sociales.

Forum Numerica - Dr Stefano Calzavara "Ensuring Session Integrity in the Wild Wild Web"

5 février 2019
Durée : 00:48:38
Nombre de vues 41
Nombre d’ajouts dans une liste de lecture 0
Nombre de favoris 0

Abstract:
Web sessions allow users to get authenticated access to their favourite online services, like social networks, e-mail services and e-commerce websites. Unfortunately, web sessions are fragile and can be attacked at many different levels, leading to security flaws which can be as severe as account takeover. Automatically enforcing desirable security guarantees on web session implementations is an important research direction to make the Web a safer place, but it's also an extremely hard task, given the highly heterogeneous nature of existing web applications. In this talk, I will present the most common attacks against web sessions and I will discuss automated solutions designed to detect and prevent such attacks, while dealing with the compatibility challenges inherent to the complexity of the modern Web.

Speaker's Bio:
Stefano Calzavara is an assistant professor (with tenure track) at Università Ca’ Foscari Venezia, Italy. He received his PhD from Università Ca’ Foscari Venezia in 2013 and then worked as postdoctoral researcher at Ca' Foscari and at Saarland University, Germany. His main research interests are in the area of web security, formal methods and their intersection. He published around 30 research papers on these topics at widely recognized international conferences and journals. Selected venues where he published his works include IEEE SsembioP, ACM CCS, USENIX Security, WWW, IEEE CSF, ESOP, ACM TOPLAS and ACM TWEB. In 2013, he received the EATCS prize for the best theory paper at ETAPS thanks to his research on the secure implementation of cryptographic protocols. In 2018, he was invited to the Journal Track of the Web Conference due his work on web session security. Since 2015, he served in the program committee of a number of scientific events, including USENIX Security, IEEE EuroSsembioP, IEEE CSF, POST and ESSoS.

FORUM NUMERICA is sponsored by the Academy of Excellence “Networks, Information and Digital Society” of UCA JEDI.

Mots clés : authentication cybersecurity ds4h web

 Informations

Commentaire(s)

Chargement en cours…