Senior engineer at EDF Power and Engineering division (Villeurbanne, France)
Ph.D. in Computer Science (Telecom ParisTech, France),
Engineering degree/M.Sc. in Telecommunications (INSA de Lyon, France),
IEEE Senior Member, SEE Senior Member

Warning

This web site has been set up mainly in order to provide a centralized list of the scientific and technical publications I have contributed to (see Publications section). Some complementary elements are available on my Google Scholar page and my LinkedIn profile. It does not address my other (and main) professional activities at EDF.

Short presentation

I've been working as a cybersecurity specialist at EDF since 2001. Until 2013, I was research engineer at EDF R&D: my work addressed both actual and future infrastructures at EDF. I took part to several collaborative research projects on security and developed activities on the links between safety and security. I also contributed as an expert to several normative and prenormative initiatives fostering cybersecurity for power utilities (mainly for the IEC, the IAEA and the CIGRE). Since January 2013, I work as a senior engineer on safety and cybersecurity of industrial control systems still at EDF, but for its power and engineering division. I keep on contributing to the aforementioned initiatives as part of my new responsibilities.

Recent news

  • (July 2015) The first book in French about industrial control system cybersecurity has been published. I'm co-editor of this book and co-author of three of its chapters: see on the publisher's website description (in French) and on my publication page for more details.
  • (June, 15 2015) The call for papers of C&ESAR 2015 (dedicated this year to "resilience") is open. The CfP description is available here (deadline July, 1st).
  • (March 2015) The survey written with EDF R&D on approaches combining safety and security for industrial control systems has been published by an Elsevier journal (see the publications section).
  • (August 18, 2014) A couple of papers in the publications section: one on attack modeling (written almost two years ago, but published only now with some updates - typical for journal publications); another one on FPGA-based I&C systems (accepted for publication at NPIC-HMIT 2015 - see below - pre-print version coming soon); a last one about the future IEC 62859 international standard on coordination between safety and cybersecurity (same situation as the paper on FPGAs).
  • (August 7, 2014) The submission deadeline for NPIC-HMIT 2015 (see below) has been extended until the 1st of September. it is still time to submit an abstract (400 words). In case of acceptance, the full paper is for the 30th of Nov.
  • (June 20, 2014) The CfP of NPIC-HMIT 2015, probably the biggest conference on nuclear I&C systems, is still open. As a TPC member, I invite you to submit an abstract before the 10th of July. Cybersecurity is one of the numerous topics covered by this major event.
  • (June 15, 2014) Last week to submit a paper for C&ESAR 2014 (dedicated this year to intrusion and reaction to cyber attacks). The CfP is here.
  • (June 14, 2014) New paper accepted to Safecomp 2014, see the Publications section. Most of the work has be done by Siwar and Marc from EDF R&D; I've only accompanied and punctually advised them, based on my previous work at EDF R&D.
  • (Oct, 8 2013) The program of C&ESAR 2013, dedicated this year to SCADA and industrial control security, has been published on the conference website. We have received a high number of high quality papers which has enabled us to set up a great program. Have a look and join us in Rennes, 19-21 Nov 2013.
  • (July 17, 2013) I chair the program committee of the next edition of the French security conference C&ESAR, which will be dedicated this year to cybersecurity of SCADA and industrial control systems. The call for papers is now closed (archived here: pdf, or there: txt). We are currently working on the selection of the papers and on the program. The conference will take place in Rennes, France, November 19-21, 2013.
  • (June 21, 2013) I've just presented a new paper on IEC standardization activities on cyber cecurity of nuclear instrumentation and control systems at the MIM 2013 conference, of which I co-chaired the cybersecurity session. A pre-print version is available here: PDF. See the publications section of this page for more details.

Publications

See the dedicated section.