Skip to main content

PhD defence Zahra Kazemi

Thesis defence / Thesis

Valence

thesis defence

David HÉLY et Vincent BEROULLE ont le plaisir de vous convier à la soutenance de thèse de Zahra KAZEMI

Attaques par injection de fautes sur les applications embarquées : caractérisation et évaluation
 La soutenance aura lieu :

le jeudi 3 février 2022 à 14h30
ESISAR Amphi A042
!!! Un pass sanitaire sera nécessaire pour y assister sur place !!!
La séance sera également accessible en visio à distance par le lien Zoom ci-dessous.

 

Title: Fault Injection Attacks on Embedded Applications: Characterization and Evaluation »

Abstract: The security assessment of IoT devices against potential software and hardware-based threats is now a necessary task for embedded software developers. Having physical access to the target devices makes hardware security a significant concern to consider in IoTs. Among the hardware security attack techniques, fault injection attacks such as clock glitching are one of the most practical attacks which are non-invasive and low-cost. They can interfere with the expected operations and cause serious malfunctions in the targeted device. Regarding this, an efficient security assessment framework and methodology against fault injection attacks are needed to properly evaluate the embedded devices.  

It is often difficult for the software developer to use a fault injection platform correctly. Therefore, this thesis focuses on designing an easy-to-use platform dedicated to clock glitching attacks in order to evaluate the vulnerabilities of embedded software applications. This work proposes an open-source evaluation platform followed by high-level assessment methodologies. Then, a characterization process based on a preliminary simulation approach is presented to improve the experimental fault injection parameters. Finally, the impacts of the injected faults are analyzed and studied in an open-source medical application (Sec-Pump) as a case study. The platform and the methodology proposed in this thesis can successfully identify the security vulnerabilities in an embedded application and guide the software developer to mitigate such attacks.

The deliberative jury members will be:
Mr Jean-Max DUTERTRE, University Professor, National School of Mines of Saint-Étienne, Gardanne (Rapporteur)
Mr Pascal BENOIT, University Professor, University of Montpellier (Rapporteur)
Mr Lilian BOSSUET, University Professor, Jean Monnet University, Saint-Étienne (Examiner)
Ms Noémie BÉRINGUIER-BOHER, Material Security Expert, Brightsight SGS, Delft, Netherlands (Examiner)
Mr Ioannis PARISSIS, University Professor, Grenoble INP (Examiner)
Mr Mahdi FAZELI, University Professor, University of Halmstad, Sweden (Guest)

Localisation

Valence

Submitted on 20 August 2025

Updated on 20 August 2025