Hi, I’m Florian Stosse, just another information security engineer !
I currently work at Safran Data Systems (previously Zodiac Data Systems), in the Space & Communications business unit. I focus on hardening and securing our embedded Windows 7 and 10 platforms, among other cool things :)
Previously, in October 2018, I started a PhD thesis at CEA-List and ANSSI to work on formal methods applied to software security. More specifically, I was working on software defenses and hardening against hardware vulnerabilities, such as Spectre and Meltdown, using sound static analysis tools (Frama-C in particular).
Unfortunately, we had to put a stop to the thesis, but hey, that’s life !
I worked in the RAMS department, and my main areas of work were:
Do not hesitate to get in touch if you want to chat about these topics (or anything else, really) !
M.Sc. in Information Security, 2015/2018
ESIEA Paris, France
Associate's degree in Computer Science, 2012/2014
University of Lorraine, Metz, France
Thesis subject: software countermeasures against vulnerable hardware platforms.
Study of formal methods and countermeasures applicable for secure execution on vulnerable hardware platforms (e.g. Spectre & Meltdown vulnerabilities):
Working in the Safety department of our European Technical Center (R&D center) on various security-related activities, such as:
Connected vehicles and autonomous vehicles security:
Embedded systems (IoT) and industrial systems (SCADA/ICS) security
Internship subject: multi-sensors ad-hoc network use to improve indoor positioning of mobile users.
Embedded system (LEGO Mindstorms EV3) programming in Java (Lejos framework). The goal was to build and program the robot to navigate inside a previously unknown room, in order to map its Wi-Fi and Bluetooth coverage.
The data would later be used to perform indoor positionning on a smartphone (using Wi-Fi RSSI, see HORUS system). The robot had to avoid obstacles and report them. I implemented the following parts:
I try to always learn something new, fun and/or useful ! I rely a lot on MOOCs to do so, and I had the opportunity to follow these one so far: