ABSTRACT

In the past years, language technology emerged as a new viable paradigm to describe and solve security problems. In this talk, we will survey some of the results that we achieved in IT security using techniques that emerged from language technolgy i.e. programming languages, program analysis, fromal semantics and automatic verification. We show how this new paradigm could be used to elegantly describe and solve a variety of practical and real-life security problems such as: Description and analysis of cryptographic protocols, automatic derivation of attack scenarios, malicious code detection and self-certified code.

BIOGRAPHY

Mourad Debbabi is a Full Professor and the Associate Director of the Concordia Institute for Information Systems Engineering at Concordia University. He is also a Concordia Research Chair Tier I in Information Systems Security. He holds Ph.D. and M.Sc. degrees in computer science from Paris-XI Orsay, University, France. He published more than 80 research papers in international journals and conferences on computer security, formal semantics, mobile and embedded platforms, Java technology security and acceleration, cryptographic protocol specification, design and analysis, malicious code detection, programming languages, type theory and specification and verification of safety-critical systems. In the past, he served as Senior Scientist at the Panasonic Information and Network Technologies Laboratory, Princeton, New Jersey, USA; Associate Professor at the Computer Science Department of Laval University, Quebec, Canada; Senior Scientist at General Electric Corporate Research Center, New York, USA; Research Associate at the Computer Science Department of Stanford University, California, USA; and Permanent Researcher at the Bull Corporate Research Center, Paris, France.