EN FR
EN FR


Section: Partnerships and Cooperations

National Initiatives

ANR

  • ANR INS Project: AMORES (2011-2015) - http://amores-project.org/

    Situated in the mobiquitous context characterized by a high mobility of individuals, most of them wearing devices capable of geolocation (smartphones or GPS-equipped cars), the AMORES project is built around three use-cases related to mobility, namely (1) dynamic carpooling, (2) real-time computation of multi-modal transportation itineraries and (3) mobile social networking. For these three use cases, the main objective of the AMORES project is to define and develop geo-communication primitives at the middleware level that can offer the required geo-located services, while at the same time preserving the privacy of users, in particular with respect to their location (notion of geo-privacy). Within this context, we study in particular the problem of anonymous routing and the design of a key generation protocol tied to a particular geographical location. Each of these services can only work through cooperation of the different entities composing the mobile network. Therefore, we also work on the development of mechanisms encouraging entities to cooperate together in a privacy-preserving manner. The envisioned approach consists in the definition of generic primitives such as the management of trust and the incentive to cooperation. This project is joint between the Université de Rennes I, Supélec, LAAS-CNRS, Mobigis and Tisséo. The research project AMORES received the Innovation Award at the Toulouse Space Show in June 2013. Simon Boche and Paul Lajoie-Mazenc are doing their PhD in the context of this project. Paul has defended successfully his thesis in September [13] just after the final closing workshop of the project (http://www.irisa.fr/prive/sgambs/journee_AMORES.html ).

  • ANR INS Project: LYRICS (2011-2015) - http://projet.lyrics.orange-labs.fr/

    With the fast emergence of the contactless technology such as NFC, mobile phones will soon be able to play the role of e-tickets, credit cards, transit pass, loyalty cards, access control badges, e-voting tokens, e-cash wallets, etc. In such a context, protecting the privacy of an individual becomes a particularly challenging task, especially when this individual is engaged during her daily life in contactless services that may be associated with his identity. If an unauthorized entity is technically able to follow all the digital traces left behind during these interactions then that third party could efficiently build a complete profile of this individual, thus causing a privacy breach. Most importantly, this entity can freely use this information for some undesired or fraudulent purposes ranging from targeted spam to identity theft. The objective of LYRICS (ANR INS 2011) is to enable end users to securely access and operate contactless services in a privacy-preserving manner that is, without having to disclose their identity or any other unnecessary information related to personal data. Within this project, we work mainly on the privacy analysis of the risks incurred by users of mobile contactless services as well as on the development of the architecture enabling the development of privacy-preserving mobile contactless services. The project is joint between France Télécom, Atos Wordline, CryptoExperts, ENSI Bourges, ENSI Caen, MoDyCo, Oberthur Technologies, NEC Corporation, Microsoft and Université de Rennes I.

    The project was originally suppose to end in 2014 but an extension was granted until May 2015. The final closing workshop of the project was held during this month (http://www.irisa.fr/prive/sgambs/journees_LYRICS.html ). The project has finished to develop a first prototype that illustrates how can be used privacy preserving protocols for the transport use case. The prototype implements a transportation pass (similar to the Navigo pass) embedded in the SIM card. This transport pass can be interact with a gate at the entrance of the transportation network in order to check the validity of the pass and answers wirelessly, in less than 300ms, without revealing any information about the user. This result has been presented in "Salon Cartes 2012". During the last year of the project, the partners of the LYRICS projects have also worked on two new use cases and their corresponding prototypes: digital surveys and e-cash solutions that respect the privacy of users. The outcomes of the project have been presented at the RESSI conference [49] .

  • ANR INFRA Project: SOCIOPLUG (2013-2017) - http://socioplug.univ-nantes.fr/index.php/SocioPlug_Project

    SocioPlug is a collaborative ANR project involving Inria (ASAP and CIDRE teams), the Nantes University, and LIRIS (INSA Lyon and Université Claude Bernard Lyon). The project emerges from the observation that the features offered by the Web 2.0 or by social media do not come for free. Rather they bring the implicit cost of privacy. Users are more of less consciously selling personal data for services. SocioPlug aims to provide an alternative for this model by proposing a novel architecture for large-scale, user centric applications. Instead of concentrating information of cloud platforms owned by a few economic players, we envision services made possible by cheap low-end plug computers available in every home or workplace. This will make it possible to provide a high amount of transparency to users, who will be able to decide their own optimal balance between data sharing and privacy.

Inria Project Labs

  • CAPPRIS (2012-2016)

    CAPPRIS stands for “Collaborative Action on the Protection of Privacy Rights in the Information Society”. The main objective of CAPPRIS is to tackle the privacy challenges raised by the most recent developments and usages of information technologies such as profiling, data mining, social networking, location-based services or pervasive computing by developing solutions to enhance the protection of privacy in the Information Society. To solve this generic objective, the project focuses in particular on the following fundamental issues:

    • The design of appropriate metrics to assess and quantify privacy, primarily by extending and integrating the various possible definitions existing for the generic privacy properties such as anonymity, pseudonymity, unlinkability and unobservability, as well as notions coming from information theory or databases such as the recent but promising concept of differential privacy;

    • The definition and the understanding of the fundamental principles underlying “privacy by design”, with the hope of deriving practical guidelines to implement notions such as data minimization, proportionality, purpose specification, usage limitation, data sovereignty and accountability directly in the formal specifications of our information systems;

    • The integration between the legal and social dimensions, intensely necessary since the developed privacy concepts, although they may rely on computational techniques, must be in adequacy with the applicable law (even in its heterogeneous and dynamic nature). In particular, privacy-preserving technologies cannot be considered efficient as long as they are not properly understood, accepted and trusted by the general public, an outcome which cannot be achieved by the means of a mathematical proof.

    Three major application domains have been identified as interesting experimentation fields for this work: online social networks, location-based services and electronic health record systems. Each of these three domains brings specific privacy-related issues. The aim of the collaboration is to apply the techniques developed to the application domains in a way that promotes the notion of privacy by design, instead of simply considering them as a form of privacy add-ons on the top of already existing technologies. CAPPRIS is a joint project between Inria, LAAS-CNRS, Université de Rennes I, Supélec, Université de Namur, Eurecom, and Université de Versailles.

    In addition of the scientific advances in the field of privacy, members of CAPPRIS are actively involved in the animation and federation of the French community on privacy, through the APVP workshop but also interdisciplinary colloquiums. For instance at the end of November, Sébastien Gambs was co-organizer with Daniel Le Métayer of a joint French-Canadian workshop titled “La vie privée à travers les cultures. Convergences et divergences dans un monde globalisé” (http://www.centrejacquescartier.com/les-entretiens/entretiens-2015lescolloques/3-la-vie-privee-a-travers-les-cultures-convergences-et-divergences-dans-un-monde-globalise/ ) that had approximately 80 attendees coming either from a law or computer science background.

Competitivity Clusters

The AMORES project (ANR INS 2011, http://www.images-et-reseaux.com/en/content/amores ) is recognized by the Images & Réseaux cluster.