We are looking for a new colleague!

Apr 4, 2023 by Thibault Debatty | 166 views

News Jobs

https://cylab.be/blog/263/we-are-looking-for-a-new-colleague

We are currently hiring a Researcher in Cyberdefense to work on the project Using blockchain to secure the software supply chain.

shutterstock_1894505215.jpg

When developing software, developers and companies usually rely on numerous external libraries. According to GitHub State of the Octoverse Report 2019, open-source projects have an average of 180 package dependencies. The same goes for commercial and closed-source software, although no official numbers are available.

For an attacker, it is enough to compromise one of these dependencies to break into the network or data of the final user of the software. This technique has proven extremely effective, and hence is increasingly used by attackers. This supply chain attack technique can be applied to any programming language and dependency management tool:

  • PHP/composer
  • Python/PIP
  • DotNET/NuGet
  • Java/Maven.

All these dependency management systems rely on a central system storing the details of available libraries. In this project, we plan to study how these central systems can be replaced by a distributed system relying on blockchain.

A blockchain system is often compared to a distributed ledger. It allows guaranteeing the integrity of stored data: no record can be inserted or modified in the database of libraries without being detected by the users of the database. This property would allow to create a software supply chain that would be protected against supply chain attacks.

For this project, we will develop a demonstrator showing how a secure software supply chain can be implemented using blockchain technology.

Required skills

You must have a Master of Science in Cybersecurity, in Computer Science, or equivalent.

  • Training or experience in Linux and classical development environment (command line, git, ssh etc.) is required;
  • Training or experience in Java or PHP programming language is highly recommended;
  • Training or experience in cyber security is an added value, but not required.

Interested?

Don't hesitate to check the details: JobDescription-DAP22-03_ENG.pdf

You can also contact us for questions.

The deadline for applying is on 21 April 2023

Cyber Summer School
Our colleagues from the Cyber Command of Belgian Defense organize a Cyber Summer School. This training will give you the opportunity to spend five days with our cyber experts and to improve your cyber skills. And of course, they also have social activities planned to occupy your evenings!
Apr 23, 2023 | 870 views
We are looking for (another) new colleague!
We are currently hiring a Researcher in Cybersecurity to work on the project SLATE - Self Learning Attack surface Explorer.
Apr 12, 2023 | 201 views
Cyber Security Challenge : Congrats!!
Congratulations to the team Royal Military Hackademy who won the Cyber Security Challenge 2023!
Mar 27, 2023 | 196 views
This website uses cookies. More information about the use of cookies is available in the cookies policy.
Accept