Emplois
>
Châtillon

    PhD "Tackle Android vulnerabilities through the integration of eBPF" F/M - Châtillon, France - Orange Business Services

    Orange Business Services
    Orange Business Services Châtillon, France

    il y a 2 semaines

    Default job background
    Description

    about the role

    Your role is to conduct a thesis on tackling Android vulnerabilities through the integration of eBPF.

    Global Context and Problem Statement

    Android is the world's most widely used operating system (OS), accounting for over 40% of the market share. This makes it a prime target for cybercriminals who exploit vulnerabilities for data theft, espionage, and device takeover. As a popular OS, Android users may exhibit problematic behaviours and use outdated versions. Additionally, even when adhering to all security recommendations, devices can still be targeted by insidious zero-day zero-click attacks. Therefore, it is essential to detect and mitigate the exploitation of these vulnerabilities.

    However, monitoring the dual aspect of the Android system is complex. Indeed, Android applications consist of both high-level bytecode (Dalvik bytecode) and low-level machine code (C/C++/assembly). Attacks can occur "in both worlds" and thus evade existing system-level monitoring technologies.

    Scientific Objective, Results, and Challenges

    The objective of this PhD is to bridge the gap between these different parts by focusing on the Android virtual machine interface (DVM/ART). The proposed approach involves using eBPF (extended Berkeley Packet Filter), a proven technology for dynamic program loading that has been successful on Linux. It enables the creation of universal rules that can execute on any eBPF-compatible system and are triggered by predefined events (hooks).

    The PhD is structured into three main parts: integration, detection, and security policy management. The first step is to integrate eBPF technology into the core of Android by identifying key events to monitor and adapting eBPF instructions to enhance, for example, information reporting to system agents. This integration will enable the use of this new system to actively detect attempts to exploit vulnerabilities through specific detection rules, thereby demonstrating the effectiveness of the approach. The final step involves deploying a security policy management architecture, enabling the distribution and installation of these eBPF rules across a range of Android devices, to make the solution fully operational and also enable specialization for distinct user profiles.

    about you

    Scientific and technical skills:

  • Proficiency in programming languages such as C/C++, Java or Kotlin, and familiarity with reading assembly code.
  • Understanding of the principles of operating systems and virtual machines, including virtual memory, scheduling, synchronization, allocation, garbage collection, and Just-In-Time Compiler.
  • Proficiency in both French and English.
  • Interest in cybersecurity.

    • The ideal candidate for this doctoral position should demonstrate intellectual curiosity, autonomy, scientific rigour, analytical and synthesis skills, excellent writing and communication abilities (in French and English for scientific articles, internal reports, and presentations), and a cooperative mindset.

    Expected Profile: Candidates who have obtained or are in the process of obtaining a Master's degree, Research Master's degree, engineering degree (diplôme d'ingénieur), or equivalent in Computer Science/Engineering, ideally with a specialization in systems, embedded systems, or cybersecurity.

    additional information

  • The skills acquired during this thesis are directly relevant to cutting-edge technologies that are in high demand in the cybersecurity sector.
  • The solutions developed aim to apply research findings practically and have the potential to be integrated into widely used real-world systems that address industry-specific needs.
  • The PhD will provide opportunities to participate in national and international conferences in the field of security and systems. This will not only allow for the presentation of your own results but also provide the chance to attend advanced presentations and network with other researchers in the field. The obtained results can also be shared internally at Orange and in academic forums, thereby strengthening the collaboration between academic and industry experts.

    • department

    Orange Innovation brings together the research and innovation activities and expertise of the Group's entities and countries. We work every day to ensure that Orange is recognized as an innovative operator by its customers and we create value for the Group and the Brand in each of our projects. With 720 researchers, thousands of marketers, developers, designers and data analysts, it is the expertise of our 6,000 employees that fuels this ambition every day.

    Orange Innovation anticipates technological breakthroughs and supports the Group's countries and entities in making the best technological choices to meet the needs of our consumer and business customers.

    Within the Orange Innovation Division, you will be part of the Data Privacy Innovation (DPI) team, which brings together researchers and specialized engineers in cybersecurity, virtualization security, cryptography, and personal data protection. You will benefit from an innovative ecosystem that allows for the practical implementation of the studied concepts. The DPI team is located in Caen, Rennes, and Châtillon.

    contract

    Thesis

  • Datadog

    Remote Remote Software Engineer

    il y a 1 jour

    Datadog Paris, France

    The Fabric Remote Procedure Call (RPC) team at Datadog provides safe, reliable and scalable internal service-to-service communication for Datadog's engineering teams. In this role, you'll develop and maintain data plane components and network control plane integrations for east-w ...