States, companies and individuals depend more and more on information systems. Interconnected within networks, they have invaded all human activities. In such an environment, it is a major concern to authenticate users and control their access to machines and services, to guarantee availability of machines and services, ensure confidentiality and integrity of information.

The answer lies in the capacity to define and implement security policies (preventive approach), to make sure that computers configuration is in conformity with these policies and finally, considering that some flaws are always possible, to supervise users activity in order to detect some possible exploit of these flaws (corrective approach, or intrusion detection).

Our research addresses both prevention and detection:

1. In intrusion detection, we study and propose methods for various environments (Operating Systems, networks, middleware, databases).
2. We are also working on preventive mechanisms for the next generation networks (wireless and ad hoc networks, home networks) for which mobility management and auto-configuration are essential.

See thematic track : security