Monitoring software in the wild.

Software systems are now widely distributed by design, being natively deployed in the very-large scale across several countries and continents. This infrastructure scale and geographical coverage call for the development of novel software monitoring techniques and algorithms that can follow key performance indictors (KPI) and report on critical situations where optimizations would be required. Given this context, collecting and processing such data flows to build a holistic view of the distributed system is a key challenge to deliver timely and targeted adaptations. Beyond the middleware challenge of distributed monitoring in the wild, we can also observe the rise of novel KPI aiming to balance performance and environmental metrics to better control the consumption of limited resources for the purpose of a given business. This evolution demonstrates that software developers and operators miss more global indicators of the impact of their software on their environment at large to take more optimal decisions.

Collaborative decision-making approaches.

To support the above decisions, we believe that very-large-scale distributed systems require to adopt decentralized and collaborative decision-making strategies to implement from local and quick reactions to more global and long-term planning. With this objective in mind, the combination of multiple decision-making techniques, such as control theory, reinforcement learning, constraint solvers, or rule-based approaches, will offer more flexibility to deal with domain-specific adaptations to be performed. Furthermore, our experience on software product lines (SPL) will also bring interesting venues to structure and control the control plane of such distributed systems, hence offering some layer of reflexivity for self-adaptive software systems.

Web and mobile applications.

We work on two topics: improving privacy on the web, and protecting users from software vulnerabilities. On the first topic on privacy, we will work on identifying harmful content related to privacy leakage, and on generating automatic shims to replace this harmful content with benign one. The ultimate goal is to have a browser, or an operating system, that does not send identifying information online, can decide which elements in a page are harmful to block, and can repair/augment webpages to assure their proper functioning. The second topic is on debloating which is related to the fact that modern web and mobile applications rely on an impressive list of dependent libraries. While using external libraries eases the development, this is known to be a major source of problems as a package can present a vulnerability or be downright malicious, affecting the integrity of the whole program. The goal here is to design methods and develop tools to have programs that can still benefit from the wealth of existing dependencies that exist in ecosystems, like NPM or Gradle, without the security problems that come with it.

Browsers and hardware.

We investigate hardware and software fingerprinting and their associated defenses. While so far we mostly look at fingerprinting the browser, it remains to be seen how much can be fingerprinted on both the software and hardware side. With the arrivals of new APIs like WebGPU, WebUSB or WebXR that rely much more on the hardware, there is a need to understand the privacy problems that can be caused by these APIs to protect users online. The goal is also to infer hardware characteristics through auxiliary time-related channels and micro-benchmarks instead of relying on attributes sent by the browser.

Hardware and micro-architectural components.

We work on analyzing attack surface and on improving the reproducibility of micro-architectural attacks. For that, given the lack of documentation of hardware components by the manufacturers, we will work on the reverse-engineering of micro-architectural components. Recent work by Vila et al.  79 shows that it is possible to use automata learning and program synthesis techniques to reverse engineer cache replacement policies from measurements made with performance counters. This approach could be extended to model hardware prefetchers, and perhaps to refine the models proposed on branch prediction units. Concerning reproducibility, it is not uncommon for code that works on one machine to give other results on another machine – and identifying the root cause can be quite complex. We propose the use of the gem5 simulator to overcome some of these problems, and in particular improving visualization techniques, creating a reference benchmark of attacks available to the community, and study countermeasures.

Structure.

Software systems are commonly assembled from numerous components, each narrowly focused on its provided functionality. Among others, this allows structural variability—often offering a myriad of configuration options—which is crucial for these systems and must be handled from design- to run-time. Two fundamental aspects to be addressed here are the specification, analysis and implementation (1) of the interaction among the components and (2) of the (re-)configuration of component assemblies. W.r.t. configuration specifications, we particularly focus on approaches where these features are described in a so-called feature model  62. We will continue exploring theoretical and implementation aspects of the underlying interaction and reconfiguration mechanisms to provide developers with appropriate modelling abstractions. Since it is not always possible to entirely explore the whole configuration space relating each configuration to the proper non-functional and functional requirements, we will apply machine learning techniques to predict the properties of configurations, identify influential options, ensure non-regression and select the “best” configuration. Furthermore, since the configuration space of the system is likely to evolve over time and due to external factors, the model will have to be learned again anyway to stay consistent with the system and its functional and performance properties. The learning process can therefore be considered itself as a configurable system, which can thus be fine-tuned with respect to what can be learned, how it can be learned and when it can be learned. We will thus investigate solutions for the self-adaptative learning of configuration spaces.

Behaviour.

The ability to provide satisfaction guarantees of behavioural properties, such as deadlock-freedom, safety, some aspects of security and privacy, is rapidly becoming crucial for modern software systems due to increasing societal awareness, as attested by the growing use of formal methods by software giants such as Amazon  68 and Facebook  56 and to legislative evolution, e.g., GDPR. This requires precise and formal behavioural models allowing reasoning for proof and analysis of such properties. In particular, the Rigorous System Design (RSD) approach  75 strives for correctness by construction through enforcing multiple levels of separation of concerns. We plan to work on (1) transforming high-level models commonly defined by a “user”, such as feature models mentioned above (in relation with the structural modelling) or requirements into (Java)BIP  51, 54 behavioural models, (2) learning behavioural models of existing software by static (source code) or dynamic (execution traces) analysis, (3) maintaining coherency between models and code in presence of evolutions and adaptations, and (4) formalisation of domain-specific knowledge to generate efficient distributed code while respecting the behavioural semantics of the system and taking into account its structural constraints.

Data.

The self-adaptation mechanisms that are studied in the team are always triggered by data: either data gathered online in distributed systems, or data mined offline from repositories of metadata associated with software systems. In this context, being able to reason, query, and manage data and metadata associated with software systems is a central, yet complex and difficult task that raises many challenges. In relation with our expertise in database theory, we want to focus on two main challenges: (1) how data management and knowledge representation techniques can be used for improving the self-adaptation of software systems, and (2) how to take into account the data management concern along the development of self-adaptive software systems.

7.1.1 amiunique

• Name:
  amiunique
• Keywords:
  Privacy, Browser fingerprinting
• Scientific Description:

  The amiunique web site has been deployed in 2014 in the context of the DiverSE team research activities on browser fingerprinting to understand how software diversity can be leveraged to mitigate the impact of fingerprinting on the privacy of users. In 2018, it was migrated to the Spirals team where the research on browser fingerprinting still continues to this day.

  The web site has yielded multiple datasets of genuine fingerprints to understand the multiple facets of browser fingerprinting and how they can be used on the web to reinforce security. The web site presents regular updates to include the latest development in web technology and understand their impact of users' privacy.

  The whole source code of amiunique is open source and is distributed under the terms of the MIT license.

  Main innovative features:

  • canvas fingerprinting
  • WebGL fingerprinting
  • advanced JS features (platform, DNT, etc.)

  Impact: The website has been visited by more than 3,000,000 unique visitors since its creation and it has been showcased in several professional forums and tutorial sessions over the years. It produced multiple datasets over the years that were used in articles published in top-tier conferences. Amiunique has received in 2018 the prize “Protection de la vie privée” granted by Inria and the CNIL. The research around fingerprints in amiunique has also been a source of influence for the Brave web browser.

• Functional Description:
  This web site aims at informing visitors about browser fingerprinting and possible tools to mitigate its effect, as well as at collecting data about the fingerprints that can be found on the web. It collects browser fingerprints with the explicit agreement of the users (they have to click on a button on the home page). Fingerprints are composed of 17 attributes, which include regular HTTP headers as well as the most recent state of the art techniques (canvas fingerprinting, WebGL information).
• URL:
  https://­amiunique.­org/
• Authors:
  Pierre Laperdrix, Antonin Durey, Walter Rudametkin Ivey
• Contact:
  Benoit Baudry
• Partners:
  INSA Rennes, Université de Lille

7.1.2 APISENSE

• Keywords:
  Mobile sensing, Crowd-sensing, Mobile application, Crowd-sourcing, Android
• Functional Description:
  APISENSE platform is a software solution to collect various contextual information from Android devices (client application) and automatically upload collected data to a server (deployed as a SaaS). APISENSE is based on a Cloud computing infrastructure to facilitate datasets collection from significant populations of mobile users for research purposes.
• URL:
  https://­apisense.­io
• Authors:
  Antoine Veuiller, Christophe Ribeiro, Julien Duribreux, Romain Rouvoy, Nicolas Haderer, Romain Sommerard, Lakhdar Meftah
• Contact:
  Romain Rouvoy
• Partner:
  Université de Lille

7.1.3 cloudnet

• Name:
  Cloudnet
• Keywords:
  Cloud configuration, Tosca, Docker Compose, Heat Orchestration Template, Alloy
• Scientific Description:

  The multiplication of models, languages, APIs and tools for cloud and network configuration management raises heterogeneity issues that can be tackled by introducing a reference model. A reference model provides a common basis for interpretation for various models and languages, and for bridging different APIs and tools. The Cloudnet Computational Model formally specifies, in the Alloy specification language, a reference model for cloud configuration management. The Cloudnet software formally interprets several configuration languages in it, including the TOSCA configuration language, the OpenStack Heat Orchestration Template and the Docker Compose configuration language.

  The use of the software shoes, for examples, how the Alloy formalization allowed us to discover several classes of errors in the OpenStack HOT specification.

• Functional Description:

  Application of the Cloudnet model developed by Inria to software network deployment and reconfiguration description languages.

  The Cloudnet model allows syntax and type checking for cloud configuration templates as well as their visualization (network diagram, UML deployment diagram). Three languages are addressed for the moment with the modules:

  * Cloudnet TOSCA toolbox for TOSCA inncluding NFV description * cloudnet-hot for HOT (Heat Orchestration Template) from OpenStack * cloudnet-compose for Docker Compose

  We can use directly the software from an Orange web portal: https://toscatoolbox.orange.com

• URL:
  https://­github.­com/­Orange-OpenSource/­Cloudnet-TOSCA-toolbox
• Publication:
  https://hal.inria.fr/hal-02940938v1
• Contact:
  Philippe Merle
• Participants:
  Philippe Merle, Jean-Bernard Stefani, Roger Pissard-Gibollet, Souha Ben Rayana, Karine Guillouard, Meryem Ouzzif, Frédéric Klamm, Jean-Luc Coulin
• Partner:
  Orange Labs

7.1.4 PowerAPI

• Keywords:
  Energy efficiency, Energy management
• Functional Description:

  PowerAPI is a library for monitoring the energy consumption of software systems.

  PowerAPI differs from existing energy process-level monitoring tools in its software orientation, with a fully customizable and modular solution that lets the user precisely define what he/she wants to monitor. PowerAPI is based on a modular and asynchronous event-driven architecture using the Akka library. PowerAPI offers an API which can be used to define requests about energy spent by a process, following its hardware resource utilization (in term of CPU, memory, disk, network, etc.).

• URL:
  http://­powerapi.­org
• Contact:
  Romain Rouvoy
• Participants:
  Adel Noureddine, Loïc Huertas, Maxime Colmant, Romain Rouvoy, Mohammed Chakib Belgaid, Arthur D'azemar

10.1.1 Associate Teams in the framework of an Inria International Lab or in the framework of an Inria International Program

10.1.2 STIC/MATH/CLIMAT AmSud project

10.1.3 Participation in other International Programs

10.2.1 Other european programs/initiatives

10.3.1 ANR

ASCOT

Participants: Imane Fouad [contact person], Pierre Laperdrix [contact person].

ASCOT is a 36-month (2020–23) project funded in the context of the STaRS program of Hauts-de-France region. The goal of the project is to improve web security and privacy and put back control into users hands by blocking unwanted trackers. The project will combine information flow analysis, machine learning and deobfuscation to detect a wide range of trackers. The project will also identify page breakage when blocking online trackers. All in all, this project aims to advance the actual techniques that protect users online while maintaining a high level of usability that is key to offer a comfortable browsing experience. First results have been published in 38.

BRiCoS

Participants: Simon Bliudze [contact person], Larisa Safina.

BRiCoS is 24-month (2021–22) project funded by the I-Site ULNE Foundation in the framework of its “Support for young researchers 2020” programme. The project addresses two fundamental challenges for the implementation of the Rigorous System Design approach to general-purpose software: 1) obtaining behavioural models of the coordinated software entities and 2) detecting the deviations between these models and the corresponding executable code in the face of software evolution.

11.1.1 Scientific events: organisation

Romain Rouvoy organized the summer school ”Green Computing meets Green Energy” that was held in Lille from 6 to 10 September.

11.1.2 Scientific events: selection

11.1.3 Journal

11.1.4 Leadership within the scientific community

Simon Bliudze

• Co-head of the YODA (trustworthY and Optimal Dynamic Adaptation) working group of the GDR GPL

Laurence Duchien

• President of the scientific council of IRT SystemX
• Scientific advisor at INS2I
• Elected member of CoNRS section 6 (until June)

Philippe Merle

• Elected member of the Inria scientific board (CS)

Romain Rouvoy

• Elected member of CoNRS section 6 (since September)
• Elected member of the "bureau" of the French chapter of the ACM Special Interest Group in Operating Systems (SIGOPS / ASF)
• Elected member of the administrative council of Specif Campus
• Co-head of the "Génie Logiciel pour les Systèmes Cyberphysiques" working group of the GDR GPL

11.1.5 Scientific expertise

Simon Bliudze

• South Africa’s National Research Foundation (NRF), evaluating the quality, impact and standing of the research portfolio of a professor from a leading South African university (expert)

Laurence Duchien

• recruitment committee for an associate professor position, Grenoble INP
• recruitment committee Linnaeus University, Sweden
• recruitment committee for the program Helmholtz Distinguished Professorship – Funding for the recruitment of leading international women scientists (W3), Germany
• scientific advisory board of Labex CIMI-Toulouse
• scientific advisory board of IMT ATlantique

Clémentine Maurice

• recruitment committee for an associate professor position, ENS Rennes
• recruitment committee for an associate professor position, Université de Lorraine
• secrétaire du prix de thèse Gilles Kahn de la Société Informatique de France

Philippe Merle

• recruitment committee for an associate professor position, ENSIIE

Clément Quinton

• recruitment committee for an associate professor position, Université de Lorraine - LORIA

Romain Rouvoy

• recruitment committee for an associate professor position, IMT Atlantique - LS2N
• recruitment committee for an associate professor position, Université de Bordeaux - LaBRI

Lionel Seinturier

• Institut Universitaire de France (IUF) Jury senior
• expert for the Icelandic Research Fund
• recruitment committee for a professor position, Sorbonne Université

11.1.6 Research administration

Simon Bliudze

• Elected member of the comité de centre Inria Lille Nord Europe

Laurence Duchien

• in charge of the Career development & Intersectoral secondments in the PEARL Project ("Programme for EArly-stage Researchers in Lille") at I-SIte Université Lille Nord Europe
• member of the council of the Faculty of science and technology of the University of Lille

Antonin Durey

• Elected member of the CRIStAL laboratory council

Philippe Merle

• Elected member of the Inria technical committee (CTI)
• Elected member of the Inria national committee on "hygiène, de sécurité et des conditions de travail" (CNHSCT)
• President of the CUMI (Comité des Utilisateurs des Moyens Informatiques)
• Permanent secretary of the CLHSCT (Comité Local d’Hygiène, de Sécurité et de Conditions de Travail)
• Elected member of the centre committee for the Inria Lille - Nord Europe research center
• Member of the steering committee of the Inria continuous integration service

Lionel Seinturier

• President of section 27 (Informatique) of Conseil national des universités (CNU)
• Member of the scientific council of University of Lille

Walter Rudametkin

• Member of the CDT (Comité de Développement Technologique) of the Inria Lille - Nord Europe research center
• Elected member of the CRIStAL laboratory council

11.2.1 Teaching

Simon Bliudze is, in addition to his tenure Junior Researcher position at Inria, part-time Associate Professor at École Polytechnique, Palaiseau, France, in the Department of Computer Sciences (DIX).

• INF411: Les bases de la programmation et de l'algorithmique, 40h, $2^{\mathrm{nd}}$ year of the Engineering cycle
• INF442: Traitement des données massives, 40h, $2^{\mathrm{nd}}$ year of the Engineering cycle

Pierre Bourhis is, in addition to his tenure Junior Researcher position at CNRS, part-time Associate Professor of Data Science at École Polytechnique, Palaiseau, France, in the Department of Computer Sciences (DIX).

• Info553: Bases de données, 18h, Cycle Polytechnique
• Modal Graphe Géant, 36h
• INF517: Projet de Recherche Data Science, 20h
• INF583: System for Big Data, 20h

Sophie Cerf teaches at Centrale Lille Institute.

• Système de Transport Autonome, 12h, $2^{\mathrm{nd}}$ year of the Engineering cycle, École Centrale Lille
• Commande des Systèmes, 24h, Level L2, ITEEM
• Projet d'intégration en Robotique, 10h, Level M1, ITEEM

Laurence Duchien teaches at the Université de Lille in the FST faculty. She is project leader for doctoral studies at Université de Lille.

• Software engineering project, 60h, Level M2, Master MIAGE FI
• Software engineering project, 50h, Level M2, Master MIAGE FC/FA
• Research initiation, 20h, Level M2, Master of Computer Science

Clément Quinton teaches at the Université de Lille in the FST faculty.

• Introduction to Computer Science, 46.5h, Level L1, Licence of Computer Science
• Object-oriented programming, 36h, Level L2, Licence of Computer Science
• Object-oriented design, 42h, Level L3, Licence of Computer Science
• Design of distributed applications, 42h, Level M1, Master of Computer Science
• Advanced design of distributed applications, 37.5h, Level M2, Master MIAGE
• Infrastructure and frameworks for the Internet, 33.75h, Level M2, Master of Computer Science
• Software product lines, 7.5h, Level M2, Master of Computer Science
• Suivi de stages et de projets, 30h, Licence and Master of Computer Science

Romain Rouvoy teaches at the Université de Lille in the FST faculty. He heads the Master of Computer Science program at the Université de Lille.

• Design of distributed applications, 12h, Level M1, Master of Computer Science
• Object-oriented design, 4h, Level L3, Licence of Computer Science
• Suivi de projets, 20h, Level M2, Master of Computer Science

Walter Rudametkin Ivey teaches at the Polytech Lille engineering school.

• GIS4 Programmation par Objets, 32h
• GIS4 Architectures Logicielles, 26h
• GIS2A3 (apprentissage) Projet programmation par Objet, 24h
• IMA2A4 (apprentissage) Conception Modélisation Objet, 24h
• IMA3 Programmation Avancée, 62h
• GBIAAL4 Bases de données, 22h
• GIS5 Suivi de projets, 42h
• GIS2A (apprentissage) Suivi d'apprentis, 28h

Lionel Seinturier teaches at the Université de Lille in the FST faculty. Until July 2019, he headed the Computer Science Department at the Faculty of Science and Technology of the Université de Lille.

• Conception d'applications réparties, 48h, Level M1, Master MIAGE
• Systèmes répartis avancés 1, 52h, Level M2, Master of Computer Science

11.2.2 Supervision

• PhD defended: Zeinab Abou Khalil, Understanding the impact of release policies on software development processes, defended on 26 February 2021, supervised by Laurence Duchien & Clément Quinton, co-supervision with Tom Mens (University of Mons), 40.
• PhD defended: Zakaria Ournani, Software Eco-Design: Investigating and Reducing the Energy Consumption of Software, defended on 8 November 2021, supervised by Romain Rouvoy, 42.
• PhD in progress: Pierre Ayoub, IoT devices security inside 5G networks through side-channel analysis, since October 2020, supervised by Clémentine Maurice.
• PhD in progress: Mohammed Chakib Belgaid, Développement durable des logiciels vers une optimisation énergétique de bout en bout des systèmes logiciels, since January 2018, supervised by Romain Rouvoy & Lionel Seinturier.
• PhD in progress: Sacha Brisset, Automatic Spotting and fixing or Recurrent user Experience issues. Detecting and Fixing Anomalies by applying Machine Learning on user Experience Data, since November 2018, supervised by Lionel Seinturier & Romain Rouvoy & Renaud Pawlak.
• PhD in progress: Guillaume Didier, Security of microarchitectures, since October 2019, supervised by Clémentine Maurice.
• PhD in progress: Antonin Durey, Leveraging Browser Fingerprinting to Fight Fraud on the Web, since October 2018, supervised by Romain Rouvoy & Walter Rudametkin.
• PhD in progress: Salman Farhat, Safe Dynamic Reconfiguration of Cloud Applications, since October 2020, supervised by Laurence Duchien & Simon Bliudze.
• PhD in progress: Guillaume Fieni, GreenData : Vers un traitement efficient et éco-responsable des grandes masses de données numériques, since October 2017, supervised by Romain Rouvoy & Lionel Seinturier.
• PhD in progress: Romain Fouquet, Improving Online Privacy through Content Blocking and Information Restriction, since October 2020, supervised by Romain Rouvoy & Pierre Laperdrix.
• PhD in progress: Omid Gheibi, Dependable Adaptive Software Systems for the Digital World, since October 2020, supervised by Laurence Duchien & Clément Quinton, co-supervision with Danny Weyns (KU Leuven).
• PhD in progress: Edouard Guegain, Configuration of Large Scale Fog Environments, since October 2020, supervised by Clément Quinton.
• PhD in progress: Jean-Luc Intumwayase, Improving Online Privacy through Content Blocking and Information Restriction, since November 2020, supervised by Romain Rouvoy & Pierre Laperdrix.
• PhD in progress: Pierre Jacquet, Fostering the frugal design of cloud services, since October 2021, supervised by Romain Rouvoy in collaboration with Thomas Ledoux (Inria Stack).
• PhD in progress: Trình Lê Khánh, Design of Correct-by-Construction Self-Adaptive Cloud Applications using Formal Methods, since October 2019, supervised by Philippe Merle & Simon Bliudze.
• PhD in progress: Naif Mehanna, Hardening Web Authentication with Browser Fingerprinting, since October 2020, supervised by Walter Rudametkin.
• PhD in progress: Vikas Mishra, Collaborative Strategies to Protect Against Browser Fingerprinting, since October 2018, supervised by Romain Rouvoy & Walter Rudametkin.
• PhD in progress: Maryam Rahmani, Multi-scale processing of spatio-temporal data applied to air quality in urban areas, since October 2021, supervised by Romain Rouvoy
• PhD in progress: Thomas Rokicki, Detection and exploitation of side-channel vulnerabilities, since October 2019, supervised by Clémentine Maurice.
• PhD in progress: Thibault Simon, Sustainable software engineering, since November 2021, supervised by Romain Rouvoy

11.2.3 Juries

Laurence Duchien

• Zeinab Abou Khalil (U Lille & U Mons, Belgium), co-director
• Zeina Houmani (ENS Lyon), reviewer
• Kenza Kraibi (U Lille), president
• Julien Leveau (U Bordeaux), president
• Hugo Martin (U Rennes 1), reviewer
• Geoffrey Pruvost (U Lille), president

Pierre Laperdrix

• Imane Fouad (U Côte d’Azur), examiner

Clémentine Maurice

• Cesar Pereida García (Tampere U, Finland), dissertation pre-examiner
• Mathieu Escouteloup (U Rennes 1), examiner
• Georges-Axel Jaloyan (ENS Paris), examiner
• Thomas Trouchkine (U Grenoble Alpes), examiner

Philippe Merle

• Antoine Cheron (U Rennes 1), reviewer

Clément Quinton

• Zeinab Abou Khalil (U Lille & U Mons, Belgium), invitee

Romain Rouvoy

• Hamidreza Arkian (U Rennes 1), reviewer
• Tibault Béziers La Fosse (U Nantes), reviewer
• Patrick Lavoisier Wapet (INP Toulouse), reviewer
• Dimitri Saingre (IMT Atlantique), reviewer
• Zakaria Ournani (U Lille), supervisor
• HDR Mathieu Acher (U Rennes 1), reviewer

Lionel Seinturier

• Mirko D'Angelo (Linnaeus U, Sweden), opponent
• Maxime Savary-Leblanc (U Lille), president
• HDR Jérémy Buisson (U Bretagne Sud), reviewer
• HDR François Trahay (IP Paris Telecom SudParis), reviewer

International journals

• 11 articleZ.Zeinab Abou khalil, E.Eleni Constantinou, T.Tom Mens and L.Laurence Duchien. On the impact of release policies on bug handling activity: A case study of Eclipse.Journal of Systems and Software173March 2021, 110882
  HALDOI
• 12 articleM.Mehdi Ahmed-Nacer, S.Slim Kallel, F.Faiez Zalila, P.Philippe Merle and W.Walid Gaaloul. Model driven simulation of elastic OCCI cloud resources.The Computer Journal2022, 1-22
  HALDOI
• 13 articleY.Yahya Al-Dhuraibi, F.Faiez Zalila, N.Nabil Djarallah and P.Philippe Merle. Model-Driven Elasticity Management with OCCI.IEEE transactions on cloud computing94October 2021, 1549 - 1562
  HALDOI
• 14 articleM.Michael Benedikt, P.Pierre Bourhis, B.Balder Ten Cate, G.Gabriele Puppis and M.Michael Vanden Boom. INFERENCE FROM VISIBLE INFORMATION AND BACKGROUND KNOWLEDGE.ACM Transactions on Computational LogicJune 2021
  HAL
• 15 articleS.Sacha Brisset, R.Romain Rouvoy, L.Lionel Seinturier and R.Renaud Pawlak. ERRATUM: Leveraging Flexible Tree Matching to Repair Broken Locators in Web Automation Scripts.Information and Software Technology144April 2022
  HALDOI
• 16 articleS.Stéphanie Challita, F.Fabian Korte, J.Johannes Erbel, F.Faiez Zalila, J.Jens Grabowski and P.Philippe Merle. Model-Based Cloud Resource Management with TOSCA and OCCI.Software and Systems ModelingFebruary 2021, 1-23
  HALDOI
• 17 articleL.Laurence Duchien, P.Paul Grünbacher and T.Thomas Thüm. Foreword to the Special Issue on Configurable Systems.Empirical Software Engineering26June 2021, 1-4
  HALDOI
• 18 articleS.Sarra Habchi, N.Naouel Moha and R.Romain Rouvoy. Android Code Smells: From Introduction to Refactoring.Journal of Systems and Software177July 2021
  HALDOI
• 19 articleJ.Julien Leveau, X.Xavier Blanc, L.Laurent Réveillère, J.-R.Jean-Rémy Falleri and R.Romain Rouvoy. Fostering the Diversity of Exploratory Testing in Web Applications.Journal of : Software Testing, Verification and Reliability2022
  HAL
• 20 articleS.Stefan Mengel, A.Antoine Amarilli, P.Pierre Bourhis and M.Matthias Niewerth. Constant-Delay Enumeration for Nondeterministic Document Spanners.ACM Transactions on Database Systems461April 2021, 1-30
  HALDOI
• 21 articleY.Yuhan Wu, J.Jintao He, S.Shen Yan, J.Jianyu Wu, T.Tong Yang, O.Olivier Ruas, G.Gong Zhang and B.Bin Cui. Elastic Bloom Filter: Deletable and ExpandableFilter Using Elastic Fingerprints.IEEE Transactions on ComputersMarch 2021, 1-1
  HALDOI
• 22 articleZ.Zhongxing Yu, C.Chenggang Bai, L.Lionel Seinturier and M.Martin Monperrus. Characterizing the Usage, Evolution and Impact of Java Annotations in Practice.IEEE Transactions on Software Engineering4752021, 969-986
  HALDOI

International peer-reviewed conferences

• 23 inproceedings P.Pierre Ayoub and C.Clémentine Maurice. Reproducing Spectre Attack with gem5: How To Do It Right? 14th European Workshop on Systems Security (EuroSec'21) Edinburgh, United Kingdom April 2021
  HAL DOI back to text
• 24 inproceedingsP.Pierre Bourhis, A.Alejandro Grez, L.Louis Jachiet and C.Cristian Riveros. Ranked enumeration of MSO logic on words.24th International Conference on Database Theory, {ICDT} 2021, March 23-26, 2021, Nicosia, Cyprus186Nicosia / Virtual, CyprusSchloss Dagstuhl - Leibniz-Zentrum für InformatikMarch 2021, 20:1--20:19
  HALDOI
• 25 inproceedingsG.Guillaume Didier and C.Clémentine Maurice. Calibration Done Right: Noiseless Flush+Flush Attacks.DIMVA 2021 - The 18th Conference on Detection of Intrusions and Malware & Vulnerability AssessmentLisboa / Virtual, PortugalJuly 2021
  HALback to text
• 26 inproceedingsA.Antonin Durey, P.Pierre Laperdrix, W.Walter Rudametkin and R.Romain Rouvoy. FP-Redemption: Studying Browser Fingerprinting Adoption for the Sake of Web Security.International Conference on the Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA)lisboa, PortugalJuly 2021
  HAL
• 27 inproceedingsG.Guillaume Fieni, R.Romain Rouvoy and L.Lionel Seinturier. SELFWATTS: On-the-fly Selection of Performance Events to Optimize Software-defined Power Meters.CCGRID 2021 - 21th IEEE/ACM International Symposium on Cluster, Cloud and Internet ComputingMelbourne, AustraliaMay 2021
  HALback to text
• 28 inproceedingsQ.Quentin Forcioli, J.-L.Jean-Luc Danger, C.Clémentine Maurice, L.Lilian Bossuet, F.Florent Bruguier, M.Maria Mushtaq, D.David Novo, L.Loïc France, P.Pascal Benoit, S.Sylvain Guilley and T.Thomas Perianin. Virtual Platform to Analyze the Security of a System on Chip at Microarchitectural Level.IEEE European Symposium on Security and Privacy Workshops (EuroS&PW 2021)Vienne, Austria2021, 96-102
  HALDOI
• 29 inproceedingsG.George Giakkoupis, A.-M.Anne-Marie Kermarrec, O.Olivier Ruas and F.François Taïani. Cluster-and-Conquer: When Randomness Meets Graph Locality.ICDE 2021 - IEEE 37th International Conference on Data EngineeringChania, GreeceIEEEApril 2021, 2027-2032
  HALDOI
• 30 inproceedingsÉ.Édouard Guégain, C.Clément Quinton and R.Romain Rouvoy. On Reducing the Energy Consumption of Software Product Lines.SPLC '21: 25th ACM International Systems and Software Product Line ConferenceALeicester, United KingdomACMSeptember 2021, 89-99
  HALDOIback to textback to text
• 31 inproceedingsT.Tomer Laor, N.Naif Mehanna, A.Antonin Durey, V.Vitaly Dyadyuk, P.Pierre Laperdrix, C.Clémentine Maurice, Y.Yossi Oren, R.Romain Rouvoy, W.Walter Rudametkin and Y.Yuval Yarom. DRAWNAPART: A Device Identification Technique based on Remote GPU Fingerprinting.Network and Distributed System Security SymposiumSan Diego, United StatesFebruary 2022
  HALDOI
• 32 inproceedingsP.Pierre Laperdrix, O.Oleksii Starov, Q.Quan Chen, A.Alexandros Kapravelos and N.Nick Nikiforakis. Fingerprinting in Style: Detecting Browser Extensions via Injected Style Sheets.30th USENIX Security SymposiumVirtual, FranceAugust 2021
  HAL
• 33 inproceedingsG.Gordon Meiser, P.Pierre Laperdrix and B.Ben Stock. Careful Who You Trust: Studying the Pitfalls of Cross-Origin Communication.ASIACCS 2021 - 16th ACM Asia Conference on Computer and Communications Security16th ACM Asia Conference on Computer and Communications SecurityHong Kong / Virtual, ChinaJune 2021
  HAL
• 34 inproceedingsV.Vikas Mishra, P.Pierre Laperdrix, W.Walter Rudametkin and R.Romain Rouvoy. Déjà vu: Abusing Browser Cache Headers to Identify and Track Online Users.PETS 2021 - The 21th International Symposium on Privacy Enhancing TechnologiesVirtual, FranceJuly 2021
  HALback to textback to text
• 35 inproceedingsZ.Zakaria Ournani, M. C.Mohammed Chakib Belgaid, R.Romain Rouvoy, P.Pierre Rust and J.Joel Penhoat. Evaluating the Impact of Java Virtual Machines on Energy Consumption.15th ACM/IEEE International Symposium on Empirical Software Engineering and Measurement (ESEM)Bari, ItalyOctober 2021
  HALback to text
• 36 inproceedingsZ.Zakaria Ournani, R.Romain Rouvoy, P.Pierre Rust and J.Joel Penhoat. Comparing the Energy Consumption of Java I/O Libraries and Methods.ICSME 2021 - 37th International Conference on Software Maintenance and EvolutionProceedings of the 37th International Conference on Software Maintenance and Evolution (ICSME)Luxembourg / Virtual, LuxembourgSeptember 2021
  HALback to text
• 37 inproceedingsZ.Zakaria Ournani, R.Romain Rouvoy, P.Pierre Rust and J.Joel Penhoat. Tales from the Code #1: The Effective Impact of Code Refactorings on Software Energy Consumption.ICSOFT 2021 - 16th International Conference on Software TechnologiesVirtual, FranceJuly 2021
  HALback to text
• 38 inproceedingsT.Thomas Rokicki, C.Clémentine Maurice and P.Pierre Laperdrix. SoK: In Search of Lost Time: A Review of JavaScript Timers in Browsers.6th IEEE European Symposium on Security and Privacy (EuroS&P'21)Vienna, AustriaSeptember 2021
  HALback to textback to text

Edition (books, proceedings, special issue of a journal)

• 39 proceedingsS.Simon BliudzeL.Laura Semini2021 IEEE/ACM 9th International Conference on Formal Methods in Software Engineering (FormaliSE 2021).2021 IEEE/ACM 9th International Conference on Formal Methods in Software Engineering (FormaliSE)MadridIEEE2021
  HALDOI

Doctoral dissertations and habilitation theses

• 40 thesisZ.Zeinab Abou khalil. Understanding the Impact of Release Policies on Software Development Processes..Université de Lille; Universite de MonsFebruary 2021
  HALback to textback to text
• 41 thesisA.Antonin Durey. Leveraging browser fingerprinting to strengthen web authentication.Université de LilleJanuary 2022
  HAL
• 42 thesisZ.Zakaria Ournani. Software Eco-Design: Investigating and Reducing the Energy Consumption of Software.University of LilleNovember 2021
  HALback to textback to textback to textback to text
• 43 thesisW.Walter Rudametkin. Improving the Security and Privacy of the Web through Browser Fingerprinting.Université de LilleJune 2021
  HAL

Reports & preprints

• 44 miscS.Sarah Bird, V.Vikas Mishra, S.Steven Englehardt, R.Rob Willoughby, D.David Zeber, W.Walter Rudametkin and M.Martin Lopatka. Actions speak louder than words: Semi-supervised learning for browser fingerprinting detection.July 2021
  HAL
• 45 miscA.Antonin Durey, P.Pierre Laperdrix, W.Walter Rudametkin and R.Romain Rouvoy. An iterative technique to identify browser fingerprinting scripts.April 2021
  HAL
• 46 miscO.Olivier Le Goaer, A.Adel Noureddine, F.Franck Barbier, R.Romain Rouvoy and F.Florence Maraninchi. Vers des Logiciels Éco-responsables: Le génie logiciel au défi de la sobriété écologique.September 2021
  HAL