Pierre Parrend

Pierre Parrend
  • Site: Strasbourg
  • Group: security and systems

Who am I

Me in brief:

Research

My research work is drawn by one core question:


How to detect complex attacks in dynamic digital environments that generate huge data volumes


And focuses on 3 challenges:

  • How to detect complex, multi-step attacks in system traces ?
  • How to learn novel attacks to adapt analysis and prepare reaction ?
  • How to model these attacks for an explainable, transferable detection ?

Traditional attack models are inherently static.

Machine learning approaches bring classification and anomaly detection capabilities, but focus on individual data points (i.e. packets) have huge limitation in considering the interactions between machines, services, users.

Since my arrival at EPITA I focus on the study of graph models as explainable vectors for detection of attacks in heterogeneous environments.

Graph models provide a powerfull approach to support:

  • Interaction between machines
  • Analysis of attack paths and scenarios, PhD Thesis of Julio Navarro Lara, defended on 2019 at University of Strasbourg
  • Explainability - ANR-IA THIA-Artic Project, PhD thesis of Amani Abou Rida
  • Scalability - DGA RAPID Damiage Project, PhD thesis of Julien Michel
  • Dynamicity - Contrat Doctoral Région Grand-Est / EPITA, XDGMed Project, PhD Thesis of Majed Jaber

The analysis of complex attacks require stocastic approaches. This is the cas of graph learning, as it is the case of evolutionary computation, which I also explore like in ANR Correau - Résilience par la conception et sécurité des réseaux d’eau - Project.

Publications

You can find my publications on google scholar.

Teaching

I have created 2 lectures for EPITA students:

  • Machine Learning for Cybersecurity (ML&Sec - SCIA major)
  • Trusted AI - Intelligence Artificielle de Confiance (IAC - elective ING1 Strasbourg)

as well as 2 seminars for the ‘Journées d’immersions

  • An introduction to algorithmics
    • with an ‘Unplugged computing’ team challenge on genetic algorithms
  • A short history of secrets
    • with a ‘Unplugged computing’ team challenge on encryption

Technical Conferences

  • Core issues of Cybersecurity
    • “Cybersécurité : au cœur des enjeux IT - La Blue Team, Salon des métiers de la défense et de la cybersécurité”, Paris, 15/1/2022
    • “Cybersécurité : les enjeux, les métiers”, Conférence Thématique EPITA, 2/2/2022
    • “La Cybersécurité en Ecoles d’Ingénieurs”, Conférence Salon Studyrama des Etudes Supérieures, Strasbourg, 8/10/2022
    • “La Cyber au cœur des enjeux IT - La Red Team”, Salon des Métiers de la Défense et de la Cybersécurité, 14/1/2023,
  • Technologies
    • Trusted Graphs: using graph-based learning for trusted autonomous IoT - 5TH Future-IoT PhD School, IoT meets Autonomy, 29.8.-2.9.2022 in Berlin, Germany
    • La Cybersécurité du Cloud Computing: Enjeux, solutions, besoins, GT ANRT FUTURIS, Pour une politique industrielle du numérique, Les compétences de cybersecurité, Cybersécurité du cloud, 19/11/2022
  • Application domains
    • IT Security in Medical Research, BioTechDay, 8/12/2022, ESBS, Illkirch