2025
Journal articles
Pierre Ayoub, Aurélien Hernandez, Romain Cayre, Aurélien Francillon, Clémentine Maurice. PhaseSCA: Exploiting Phase-Modulated Emanations in Side Channels. IACR Transactions on Cryptographic Hardware and Embedded Systems, In press. ⟨hal-04726109⟩
2024
Conference papers
Romain Cayre, Vincent Nicomette, Guillaume Auriol, Mohamed Kaâniche, Aurélien Francillon. OASIS: An Intrusion Detection System Embedded in Bluetooth Low Energy Controllers. 2024 ACM Asia conference on Computer and Communications Security (ASIACCS)., Jul 2024, Singapore, Singapore. ⟨hal-04488826⟩
Pierre Ayoub, Romain Cayre, Aurélien Francillon, Clémentine Maurice. BlueScream: Screaming Channels on Bluetooth Low Energy. 40th Annual Computer Security Applications Conference (ACSAC '24), Dec 2024, Waikiki, Honolulu, Hawaii, United States. ⟨hal-04725668v2⟩
Florent Galtier, Guillaume Auriol, Vincent Nicomette, Paul L R Olivier, Romain Cayre, et al.. Wireless Modulation Identification: filling the gap in IoT networks security audit. 21st Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA '24), Jul 2024, Lausanne, Switzerland. ⟨hal-04675669⟩
Other documents
Florent Galtier, Paul L R Olivier, Guillaume Auriol, Vincent Nicomette, Romain Cayre. Experimentation platform for repeatable security analysis in IoT heterogeneous environments. 17th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec 2024), May 2024, Seoul, South Korea. 2024, ⟨10.1145/xxxxxxx.⟩. ⟨hal-04725617⟩
2022
Conference papers
Romain Cayre, Clement Chaine, Guillaume Auriol, Vincent Nicomette, Geraldine Marconato. OASIS: un framework pour la détection d'intrusion embarquée dans les contrôleurs Bluetooth Low Energy. Symposium sur la sécurité des technologies de l'information et des communications (SSTIC 2022), Jun 2022, Rennes, France. ⟨hal-03898224⟩
PhD thesis, HDR
Romain Cayre. Offensive and defensive approaches for wireless communication protocols security in IoT. Networking and Internet Architecture [cs.NI]. INSA de Toulouse, 2022. English. ⟨NNT : 2022ISAT0022⟩. ⟨tel-03841305v2⟩
2021
Conference papers
Romain Cayre, Florent Galtier. Attaques inter-protocolaires par détournement du contrôleur Bluetooth d'un téléphone mobile. GT Sécurité des Systèmes, Logiciels et Réseaux, May 2021, En ligne, France. ⟨hal-03221148⟩
Romain Cayre, Géraldine Marconato, Florent Galtier, Mohamed Kaâniche, Vincent Nicomette, et al.. Cross-protocol attacks: weaponizing a smartphone by diverting its Bluetooth controller. 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks, Jun 2021, Abu Dhabi, United Arab Emirates. ⟨10.1145/3448300.3468258⟩. ⟨hal-03355664⟩
Romain Cayre, Florent Galtier, Guillaume Auriol, Vincent Nicomette, Mohamed Kaâniche, et al.. InjectaBLE: Injecting malicious traffic into established Bluetooth Low Energy connections. IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2021), Jun 2021, Taipei (virtual), Taiwan. ⟨10.1109/DSN48987.2021.00050⟩. ⟨hal-03193297v2⟩
Romain Cayre, Florent Galtier, Guillaume Auriol, Vincent Nicomette, Mohamed Kaâniche, et al.. WazaBee: attacking Zigbee networks by diverting Bluetooth Low Energy chips. IEEE/IFIP International Conference on Dependable Systems and Networks (DSN 2021), Jun 2021, Taipei (virtual), Taiwan. ⟨10.1109/DSN48987.2021.00049⟩. ⟨hal-03193299⟩
Ahmed Aboukora, Guillaume Bonnet, Florent Galtier, Romain Cayre, Vincent Nicomette, et al.. A defensive man-in-middle approach to filter BLE packets. 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks, Jun 2021, Abou Dhabi (virtual), United Arab Emirates. ⟨10.1145/3448300.3468259⟩. ⟨hal-03560107⟩
Romain Cayre, Florent Galtier, Guillaume Auriol, Vincent Nicomette, Mohamed Kaâniche, et al.. InjectaBLE : injection de trafic malveillant dans une connexion Bluetooth Low Energy. Symposium sur la sécurité des technologies de l'information et des communications (SSTIC 2021), Jun 2021, Rennes (en ligne), France. ⟨hal-03221143⟩
2020
Conference papers
Romain Cayre, Florent Galtier, Guillaume Auriol, Vincent Nicomette, Geraldine Marconato. WazaBee : attaque de réseaux Zigbee par détournement de puces Bluetooth Low Energy. Symposium sur la Sécurité des Technologies de l'Information et des Communications (SSTIC 2020), Jun 2020, Rennes, France. ⟨hal-02778262⟩
Florent Galtier, Romain Cayre, Guillaume Auriol, Mohamed Kaâniche, Vincent Nicomette. A PSD-based fingerprinting approach to detect IoT device spoofing. 25th IEEE Pacific Rim International Symposium on Dependable Computing (PRDC 2020), Dec 2020, Perth, Australia. ⟨10.1109/PRDC50213.2020.00015⟩. ⟨hal-02962655⟩
2019
Conference papers
Romain Cayre, Jonathan Roux, Eric Alata, Vincent Nicomette, Guillaume Auriol. Mirage : un framework offensif pour l'audit du Bluetooth Low Energy. Symposium sur la Sécurité des Technologies de l'Information et des Communications (SSTIC 2019), Jun 2019, Rennes, France. pp.229-258. ⟨hal-02268774⟩
Romain Cayre, Vincent Nicomette, Guillaume Auriol, Eric Alata, Mohamed Kaâniche, et al.. Mirage: towards a Metasploit-like framework for IoT. 2019 IEEE 30th International Symposium on Software Reliability Engineering (ISSRE), Oct 2019, Berlin, Germany. ⟨hal-02346074⟩
2018
Conference papers
Jonathan Roux, Eric Alata, Guillaume Auriol, Mohamed Kaâniche, Vincent Nicomette, et al.. RadIoT: Radio Communications Intrusion Detection for IoT - A Protocol Independent Approach. 17th IEEE International Symposium on Network Computing and Applications (NCA 2018), Nov 2018, Cambridge, Massachusetts, United States. 8p. ⟨hal-01914981⟩