The Consortium

We approach our ambitious three-fold goal by using a consortium of five partners and one subcontractor, each of these highly-specialised in diverse domaines of expertise.

Université de Rennes 1/IRISA - team EMSEC

The coordinator of this project is Pierre-Alain Fouque, Professor at the Université de Rennes 1 (UR1), co-heading the research team EMSEC at the IRISA in Rennes, and member of the Institut Universitaire de France (IUF). With a background in provable security and cryptography, he also has extensive experience in automated verification and in the cryptanalysis of symmetric and public-key primitives.

In the same team, Gildas Avoine, Professor at the INSA of Rennes, coheading the EMSEC research team at the IRISA in Rennes (with Pierre-Alain Fouque), and member of the IUF, is known for his expertise in resource-constrained embedded devices, both in terms of protocol design, and in terms of attacks.

This partner will sub-contract CryptoSense, a spin-off of Inria and CA'Foscari University of Venice, founded in 2013. Its Discovery tool finds, classifies, and provides feedback for the configuration of servers for an arbitrarily-input domain name. This tool, and the expertise of CryptoSense in general, will be crucial in designing our configuration-testing tool.

Inria de Paris - team PROSECCO.

At INRIA de Paris, Karthikeyan Bhargavan heads the PROSECCO research team. His contribution to a better understanding of the TLS has recently been rewarded with the prestigious Levchin award (the equivalent of a Fields Medal in cryptography). In particular, he was part of the team who developed a first, formally-secure implementation of TLS (miTLS), and has used this implementation to find several attacks against the protocol, including: SKIP, FREAK, LogJam, and 3Shake.

Université de Rennes 1/IRMAR.

At the IRMAR in Rennes, Sylvain Duquesne is a Professor at the Université de Rennes 1. He is a specialist in elliptic curves, particularly in aspects of implementations of such curves in cryptography. He is currently involved in the ANR-funded projects PEACE (which focuses precisely on an understanding of which elliptic curves are “good” in cryptographic applications, and which are not). He also takes part in SIMPATIC, a project which concerns the implementation of pairings on SIM cards. This latter project is relevant to us, in particular with respect to DTLS, which is meant to run on resource-constrained hardware.

Inria Sophia-Antipolis - team MARELLE.

At Inria Sophia-Antipolis, Benjamin Grégoire is a specialist in automated verification in the MARELLE research team. He is a co-author of the automated verification tool EasyCrypt24, which is widely used to provide proofs of security. This partner will be heavily involved in the automated verification of TLS implementations and in designing certified code for TLS 1.3.


The ANSSI is involved in several research activities related to network protocols such as TLS. The Ph.D. thesis of Olivier Levillain, a member of the ANSSI, concerns the variety and (in-)security of the TLS ecosystem. The ANSSI as a whole can provide expertise in domains ranging from provable security to the analysis of Internet scale measurements. Due to its activities, ANSSI studies cryptographic algorithms in detail, and publishes recommendations about their use. Therefore, ANSSI is highly interested in the outcome of this project that can be used to achieve better security on the Internet.

© 2017 Univ. Rennes 1
Last modified on 22/06/2017