The LIF is a joint laboratory of CNRS, Université de la Méditerranée, and Université de Provence created in 2000. The research developed at the laboratory is centered on the fundamental aspects of Computer Science. The MoVe team of LIF involved in the project is interested in designing models for complex systems arising in computer science and setting up verification techniques for proving properties of these systems.
The LIFL (Research Laboratory in the Computer Science field of the University of Sciences and Technologies of Lille, linked to CNRS as UMR 8022). Through the INRIA joint project team POPS (System and Networking for Portable Objects Proved to be Safe), the LIFL is since more than ten years involved in the domain of security and safety of mobile applications, especially for ones deployed on small portable and secured devices.
Norsys is an IT Services Company funded in Lille in 1994 and which currently has offices in Paris, Lyon and Marrakech, totaling over 170 software engineers. Its main area of expertise is custom software developments for integration into large business information systems and thin client business oriented application development. Its customers base range from social security public services to distance selling retailers through life insurance companies. The company has been involved in developing enterprise applications on the Java platform since 2000 and is today known for its technical expertise on such systems. Norsys has soon been aware of the need to develop an internal R&D effort as a mean to differentiate itself from its competitors and has thus been funding 4 PhD Thesis on various topics in Software Engineering.
SI3SI (Systèmes d'Information 3 Suisses International) is responsible for managing the information system of 3 Suisses group, one of the leading french distance-selling retailer. Norsys and SI3SI have developed over the years strong partnership for building custom software and architecting the information system of the group and in 2005, both companies initiated an R&D effort towards the development of mobile commerce and services.
Through their participation in this project, Norsys and SI3SI aim at acquiring a competitive advantage on the rapidly growing market of mobile services and ubiquitous computing convergence for end-users, by implementing and deploying cutting-edge solutions for securing mobile commerce and data.
A French start-up company created in Versailles in 1999, Trusted Logic has specialised in the development of secure components for embedded systems and for consulting around this theme. Trusted Logic will be represented in the project by its business unit Trusted Labs, which specializes in security-related evaluation and consulting services. Trusted Labs proposes security evaluation services for smart card applications and platforms, and also for mobile payment terminals, mobiles phones, etc. In addition, Trusted Labs help businesses in setting up their security by providing a variety of services, ranging from risk analysis (following standard methodologies such as EBIOS), to assistance toward the certification of products (for instance, following the Common Criteria methodology).
Trusted Labs is a technology-oriented company, which constantly works on improving a set of tools and methodologies, on which it bases its services. In particular, Trusted Labs has developed static analysis tools that are used to analyze smart card and mobile Java applications before their deployment by operators. The Trusted Labs team has also participated to many cooperative projects, including the projects EDEN and EDEN 2 (RNTL); RESODO (RNRT), Secsafe, Verificard, Mowgli, Mobius, and S3MS (IST). Most of these projects were related to the development of tools, or to Java Card platforms.
The research will take place in the DCS (Distributed and Complex Systems) team of Verimag. The DCS team is composed of 11 permanent researchers, 10 PhD students, 4 post-docs and 1 engineer. The expertise of the team is in the area of semantics and systems verification. The team research is organized according to three axes: 1.) Methods and tools, including model-checking and static analysis, for real-time embedded systems, 2.) Automated verification of pointer programs and 3.) Formal security including verification of cryptographic systems, testing of security policies and Smartcard applications certification. The team has long experience in tool development and software Dissemination (8 tools are distributed).