Resume

De Page Personnelle de Cédric Blancher.

Version française ici

Scroll


Cédric BLANCHER

Master of Science (diplôme d'ingénieur) at ENST de Bretagne (website, 2001)

Research Engineer in IT Systems and Networks Security


linkedin.png
My LinkedIn profile


Sommaire

[modifier] Education

  • 1996-2000: MSc at ENST Bretagne.


[modifier] Spoken Languages

  • French (mother tongue)
  • English (bilingual, lectures and talks given in english), 945 at TOEIC

[modifier] Employment History

[modifier] EADS France, Innovation Works (Suresnes)

http://www.eads.com/

Since 2004/11/02

Research Engineer and Head of Computer Security Research Lab (IW/SE/CS)

  • Research and development.
  • Penetration testings
  • Trainings.

Context: network protocols security proof, security of wired and wireless network communications, security of embedded systems.

[modifier] Arche (Les Ulis)

http://www.arche.fr/

From 2003/07/15 to 2004/10/31

IT systems and networks security consultant

  • Consultancy
  • Audits and penetration testings
  • Trainings
  • Security pre-sales

[modifier] Cartel Sécurité (ex. Cartel Informatique, Paris)

http://www.cartel-securite.fr/

From 2000/11/09 to 2003/07/02

IT systems and networks security consultant

  • Consultancy and solutions deployment
  • Audit and penetration testing
  • Trainings
  • Free Software promotion

[modifier] Startem (Groupe Datops, ex. CMC, Paris)

From 1999/09/15 to 2000/09/29

Chief of IT department

  • IT Security chief
  • Teacher at CELSA trainings
  • LAN, Internet access and services deployment

[modifier] CMC (Paris)

From 1999/04/15 to 1999/09/14

Trainee at IT department

  • Responsible for "Year 2k" project
  • Study for Internet access deployment
  • Network and system administrator

[modifier] ENST Bretagne (Brest)

http://www.enst-bretagne.fr/

1997/09 to 2000/03

New student LAN deployement at the Maison des �?lèves of ENST Bretagne (250 student workstations)

  • New ethernet backbone, internal services, firewalling on GNU/Linux plateforms
  • Day to day technical helpdesk and training for students

From 1998/07 to 1998/08

Trainee at IT departement

  • Study on smartcard based billing system for ENST Bretagne restaurant (Restaurant Administratif de Kernevent)


[modifier] Contributions

[modifier] Software

  • Wifitap: a WiFi communication tool based on traffic injection written in Python
  • Patch for ebtables ARP match
  • Patch for aireplay FromDS frame support

[modifier] Lectures and trainings

  • Since 2003/09: Professor in CISI MSc for Limoges University.
    IT systems and networks security (24h).
  • Since 2004/09: Professor in SSI MSc for ESIEA.
    IT networks security (21h).
  • From 2004/06/28 to 2004/07/09: Teacher at CEA-INRIA-EDF IT Summer School.
    IT Security training for 35 trainees during two weeks, with lectures, practical studies and conferences.
    IT networks security (6h) and security evaluation (3h).
  • Since 2001/06/11: INTIF (Bordeaux), part of AIF (Paris).
    GNU/Linux security teacher and IT consultant.
    • From 2005/10/13 to 2005/10/17: GNU/Linux security training for the second Rencontres Africaines du Logiciel Libre (RALL 2005, Free Software Meeting for Africa) in Libreville, Gabon, with Frédéric Raynal
    • From 2004/09/27 to 2004/10/1: GNU/Linux security training for the first Rencontres Africaines du Logiciel Libre (RALL 2004, Free Software Meeting for Africa) in Ouagadougoug, Burkina Faso, with Frédéric Raynal
    • From 2003/10/13 to 2003/10/18: GNU/Linux security training in Antananarivo, Madagascar, with Guillaume Valadon.
    • From 2001/06/11 to 2001/06/16: GNU/Linux security training in Lomé, Togo, with Laurent Oudot.
  • Others
    • Various WiFi security traingings (SyScan'06, Cansecwest/core06, Eusecwest/core06, etc.)

[modifier] Articles (cf. Contributions)

[modifier] MISC Magazine

  • Special Issue 1 (2007/10), Cartographie réseau à distance : remote network topology discovery technics.
  • MISC 30 (2007/03), Attaque de WEP par fragmentation: description of a 802.11 fragmentation based attack against WEP.
  • MISC 21 (2005/09), Les limites du filtrage réseau: network flows filtering technics limits.
  • MISC 18 (2005/03), Anonymisation, written with Arnaud Guignard: anonymizing systems basis and study of email and TCP anonymization tools.
  • MISC 17 (2005/01), Filtrage applicatif, les cas des clients Web, de la messagerie et du peer-to-peer: filtering technics for common applications and client protection.
  • MISC 13 (2004/05), Filtrage de niveau 2, le firewalling au plus bas niveau: Layer 2 filtering functionalities for network protection.
  • MISC 12 (2004/03), La sécurité des réseaux 802.11, quoi de neuf depuis un an: WPA and 802.11i improvements for WiFi network security.
  • MISC 11 (2004/01), EAP, l'authentification sur mesure: EAP and 802.1x authentication.
  • MISC 9 (2003/09), Du bon usage du traceroute, ou comment faire parler les infrastructures réseau en jouant avec le champ TTL: advanced tracerouting technics for network architectures discovery.
  • MISC 6 (2003/03), Faiblesses des réseaux sans-fil, written with Daniel Polombo: WiFi networks flaws exploitation.
  • MISC 3 (2002/07), Jouer avec le protocole ARP, ou tout ce que vous avez toujours voulu savoir sur ARP sans oser le demander, written with �?ric Detoisien and Frédéric Raynal: ARP based attacks for network flaws interception.
    See website http://sid.rstack.org/arp-sk/

[modifier] Linux Magazine France

  • Special issue 17 (2003/11), Le noyau et le réseau, comment repousser les limites de la connectivité: Linux kernel network functionalities.
  • Special issue 16 (2003/09), Patcher son noyau, ou l'art de ne pas s'enfuir en courant à la simple évocation du mot "patch": practical guide to kernel sources patching and conflicts resolution.
  • Special issue 13 (2003/01), Les firewalls personnels, principes, atouts et limites: personal firewalls description and limits.
  • Special issue 12 (2002/09), Netfilter en profondeur, les secrets du pare-feu selon Linux: Netfilter, Linux 2.4 and further kernels, internal mechanisms.

[modifier] Symposium sur la Sécurité des Technologies de l'Information et de la Communication

  • Third edition (2005/06), Protocoles réseau, grandeur et décadence: network trafic redirection gainst major network protocols.
  • First edition (2003/06), Atouts et limites du modèle de sécurité du pare-feu personnel: personal firewalls security principles, implementation, integration and limits analysis.

[modifier] Conferences and talks (cf. Contributions)

[modifier] Misc.

  • Since 2001/07
    RIF project member: software and documentation mirrors installation in Africa, prsented at Libre Software Meeting (Libre Software Meeting) with Laurent Oudot et Monique Michaud.


[modifier] Leasures

Navigation
autres
Locations of visitors to this page

No software patents !

Valid XHTML 1.0 Transitional

Valid CSS 2.1