4_quantum crypto
π Digital
Are we prepared for a cyberpandemic?

Quantum computers: a data security risk?

Sophy Caulier, Independant journalist
On March 3rd, 2021 |
3 mins reading time
6
Quantum computers: a data security risk?

    Youssef Laarouchi
    Youssef Laarouchi
    Cybersecurity project manager at EDF R&D
    Key takeaways
    • Big companies like EDF are now partnering with the world of academic research to design better cyber-protection systems and anticipate technological change.
    • Nowadays, some computer viruses are capable of evading all forms of detection by firewalls and intrusion detection systems. Companies must now resort to artificial intelligence and machine learning to identify them.
    • New quantum technologies will soon be capable of “breaking” the encryption keys currently used in cryptography. As such, EDF is working on “post-quantum” cryptography techniques to protect its sensitive data.

    In order to pro­tect IT, indus­tri­al and pro­duc­tion sys­tems French ener­gy com­pa­ny, EDF, is con­duct­ing advanced research stud­ies in cyber­se­cu­ri­ty to explore the full range of inno­va­tions in this area.

    “We are prepar­ing our­selves for the events that will inevitably occur!”, begins Youssef Laarouchi, R&D cyber­se­cu­ri­ty project man­ag­er at EDF and part­ner of the Sei­do Lab with Télé­com Paris (IP Paris). To pre­pare for new threats against indus­tri­al pow­er sys­tems, Youssef Laarouchi and his team study the con­tri­bu­tion of arti­fi­cial intel­li­gence in detec­tion of pos­si­ble attacks.

    The issue that they are most inter­est­ed in is how peo­ple who design virus­es and oth­er mal­ware man­age to con­ceal them and make them increas­ing­ly dif­fi­cult to detect. Not only does mal­ware spread by remain­ing hid­den, they also now pos­sess an advanced form of intel­li­gence which allows them to evade the detec­tion of clas­sic pre­ven­tion sys­tems such as intru­sion detec­tion sys­tems, intru­sion pre­ven­tion sys­tems, or firewalls.

    To analyse the behav­iour of these mal­wares, the team uses a range of advanced tech­nolo­gies and works in col­lab­o­ra­tion with the aca­d­e­m­ic research world. “To improve the detec­tion rate, we use AI algo­rithms and cou­ple weak attack sig­nals to vol­umes of net­work traf­fic data, for exam­ple”, explains Youssef Laarouchi.

    Data cou­pling was not stud­ied much until now. “But today, we have mature AI and machine learn­ing algo­rithms, and most impor­tant­ly ade­quate com­pu­ta­tion­al pow­er, because these analy­ses demand sub­stan­tial com­put­ing time. This makes it pos­si­ble to con­duct inter­est­ing analy­ses with neur­al net­works, super­vised machine learn­ing, etc.”

    In addi­tion to improv­ing the detec­tion of mal­ware, the team broad­ens its research field to study new attacks tar­get­ing the low­er lay­ers of phys­i­cal sys­tems. “These mal­wares direct­ly attack the core of the proces­sor by insert­ing a com­mand to gain priv­i­leges. This type of attack is gen­er­al­ly invis­i­ble to the system’s high­er lev­els”, spec­i­fies Youssef Laarouchi.

    Ensur­ing con­fi­den­tial­i­ty of per­son­al data is yet anoth­er research sub­ject. Data must be secure when they are trans­ferred from one place to anoth­er or when they are stored on a serv­er. It is pos­si­ble to encrypt data, but they must be read­able when required. “So, the ques­tion is: how can we use data with­out see­ing and access­ing them? This new field of cryp­tog­ra­phy is a key issue for an indus­tri­al com­pa­ny such as EDF. It makes it pos­si­ble, for exam­ple, to offer ser­vices to clients that guar­an­tee the pro­tec­tion of these data, which must remain private.”

    The team also leads stud­ies on quan­tum cryp­tog­ra­phy. Future quan­tum accel­er­a­tors will soon be able to “break” the encryp­tion keys cur­rent­ly in use. “We are prepar­ing for this issue by devel­op­ing and test­ing new encryp­tion algo­rithms, and by study­ing cer­tain quan­tum prop­er­ties which we could use in post-quan­tum cryptography.”

    This is a char­ac­ter­is­tic of research in indus­try: it con­sists of applied research on real data, some­where between fun­da­men­tal research and mar­ket solu­tions. The aim is to pro­vide busi­ness­es with the tools they need and help to imple­ment them​.To stay up to date with fun­da­men­tal research, EDF par­tic­i­pates in the Chaire Cyber CNI (cyber­se­cu­ri­ty of crit­i­cal infra­struc­tures) of the Insti­tut Mines-Télé­com, in part­ner­ship with Télé­com Paris, Télé­com Sud­Paris, the Pôle d’ex­cel­lence cyber de la région Bre­tagne, as well as man­u­fac­tur­ers includ­ing Nokia Bell Labs or Air­bus. “We have com­mon goals, we might as well try to achieve them by work­ing togeth­er!”, con­cludes Youssef Laarouchi.

    Chaire Cyber CNI, research to sup­port crit­i­cal infrastructures 

    Crit­i­cal infra­struc­tures include Oper­a­tors of Vital Impor­tance (OVI) and Oper­a­tors of Essen­tial Ser­vices (OES), which account for over 200 gov­ern­ment enti­ties and pri­vate com­pa­nies. Their activ­i­ties, facil­i­ties and infra­struc­tures are deemed crit­i­cal to run the nation State, includ­ing trans­porta­tion, ener­gy, bank­ing, food, health, etc. Their infor­ma­tion sys­tems are sub­ject to a par­tic­u­lar atten­tion from the Agence nationale de la sécu­rité des sys­tèmes d’in­for­ma­tion (ANSSI, Nation­al Agency for the Secu­ri­ty of Infor­ma­tion Sys­tems) that assists them in secur­ing their sen­si­tive systems.

    They also ben­e­fit from research stud­ies led in dif­fer­ent insti­tu­tions, such as the Chaire CNI, ded­i­cat­ed to the cyber­se­cu­ri­ty of crit­i­cal infra­struc­tures that are ener­gy grids, water treat­ment plants, indus­tri­al process­es or finan­cial systems.Created in 2016, this research chair of the Insti­tut Mines-Télé­com is sup­port­ed by IMT Atlan­tique. It con­ducts research work in part­ner­ship with Télé­com Paris and Télé­com Sud­Paris. The work ini­tial­ly focused on the behav­iour­al study of mal­wares or the diag­no­sis of the caus­es of inci­dents. Dur­ing its sec­ond phase, launched in 2019, the Chaire CNI expand­ed its area of exper­tise to new research top­ics, includ­ing the use of arti­fi­cial intel­li­gence (AI) in cyber­se­cu­ri­ty, blockchain tech­nol­o­gy or the indus­tri­al appli­ca­tions of con­nect­ed objects (Inter­net of Things).