Open positions

Ulisse Lab actively collaborates with companies all over the world. The main purpose is to consolidate the link between university and industry to better shape the students who want to join as early as possible the business world.

The first step is the internship experience, on this page you can find the ones currently active.

SAP: Opportunity for a 6-month internship Security Research

Differential Privacy Budget Optimization in Transfer Learning

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

Anonymization with differential privacy offers provable guarantees against re-identification and membership inference attacks. During the internship the student will investigate how to maintain data utility and to preserve privacy when training deep learning models. Building on previous results, new experiments to find how to reduce privacy budget consumption during training will be designed. These will employ transfer learning, for instance as done in, but with the fundamental difference that we will deliver anonymized data as output, not models.

Cyber Threat Intelligence: An Artificial Intelligence Approach

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

Threat intelligence, or cyber threat intelligence, is information an organization uses to understand the threats that have, will, or are currently targeting the organization. This info is used to prepare, prevent, and identify cyber threats looking to take advantage of valuable resources. Data classification is a pillar element of threat intelligence, and we propose in this internship to study and apply the most advances AI algorithms to classify heterogeneous sources of cyber security data in order to create an intelligent knowledge base. In the above-described context, the specific goals of the internship are as follows:

  • Develop several sources crawlers that will capture various kind of data
  • Create script based filters in order to process the collected data
  • Train a machine learning system to recognize specific content
  • Use clustering algorithms to identify content correlation
  • Develop user friendly UI

Identification and Sanitization Information using AI/ML

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

The internship will focus on the study, development and enhance a number of proofs-of-concept of supervised and unsupervised approaches to information detection/extraction tasks. In particular, the intern will explore the most recent advancements in the domain (see [1,2,3]) for their inclusion in a number of prototypes for processing sensitive information (be them personal data according to GDPR, cyber security threat information or attack logs). Natural Language Processing but also techiques for classification of structured information will be considered. The objective is to classify relevant pieces of information in order to trigger the appropriate follow-up processing. The work will benefit from a number of already developed prototypes for the classification of pieces of information in free text, using deterministic and AI/ML techniques.

Mapping binary software artifacts originating source code commit onto the originating source code commit

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

This internship aims at developing a method to analyze and characterize binary artifacts (e.g., JAR packages) in order to determine the source code commit from which they were obtained. In practice, artifacts can be assembled out of code from different repositories; conversely, multiple artifacts could be obtained by the same commit (e.g., because each artifact includes only certain parts of the project, or because different build processes (compilers, compiler flags) where used to produce the artifact. Decompilation is not always possible or effective.

RASP solution automation on Docker

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

SAP has developed an approach consisting in detecting malicious activity thanks to a set of deployed or virtual honeytokens, followed by a diversion phase where the attacker is re-routed to a honeypot. From the code perspective, the honeypot is a clone of the original application, meaning that attacker’s activity can be monitored to discover the exploitation of unknown vulnerabilities. The goal of the internship is to move to the next step: integrate these different components and possibly add a few other neat ideas into a docker-based platform able to self-protect arbitrary (java) applications. This integrated solution will ideally be used to generate a set of ‘capture-the-flag’ (CTF) web-application challenges, to test the efficiency of the diverse self-defense elements and to identify where improvements would be welcome.

RASP solution automation on Docker

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

SAP has developed an approach consisting in detecting malicious activity thanks to a set of deployed or virtual honeytokens, followed by a diversion phase where the attacker is re-routed to a honeypot. From the code perspective, the honeypot is a clone of the original application, meaning that attacker’s activity can be monitored to discover the exploitation of unknown vulnerabilities. The goal of the internship is to move to the next step: integrate these different components and possibly add a few other neat ideas into a docker-based platform able to self-protect arbitrary (java) applications. This integrated solution will ideally be used to generate a set of ‘capture-the-flag’ (CTF) web-application challenges, to test the efficiency of the diverse self-defense elements and to identify where improvements would be welcome.

Using machine-learning and NLP to analyze open-source software repositories

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

While the current results are encouraging, SAP Security Research now focuses on improving the predictive performance to obtain more accurate predictions and to scale to real-life scenarios. In particular, our team is working on defining (or automatically learning) better features, on how to efficiently extend the size of annotated resources at our disposal, and in particular on how to combine different textual resources (commits, pull requests, mailing list discussions, bug-tracking tickets, security advisories, etc.) to gather more information which the prediction can be based upon. This internship aims at developing a method to automatically map security advisories onto the source code commits that address and mitigate them. To devise such method, the student will explore the application of different techniques involving cutting-edge machine learning models and natural-language processing.

Using machine-learning and NLP to analyze open-source software repositories

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

While the current results are encouraging, SAP Security Research now focuses on improving the predictive performance to obtain more accurate predictions and to scale to real-life scenarios. In particular, our team is working on defining (or automatically learning) better features, on how to efficiently extend the size of annotated resources at our disposal, and in particular on how to combine different textual resources (commits, pull requests, mailing list discussions, bug-tracking tickets, security advisories, etc.) to gather more information which the prediction can be based upon. This internship aims at developing a method to automatically map security advisories onto the source code commits that address and mitigate them. To devise such method, the student will explore the application of different techniques involving cutting-edge machine learning models and natural-language processing.

Security testing research techniques for SAP

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

We at SAP Security Research have been working on DAST techniques to detect vulnerabilities such as logic flaws [NDSS2016] and CSRF [EuroSP2017]. These techniques have been further developed and experimented internally at SAP to reach a more mature status. Fuzzing could be used to increase the effectiveness of these techniques. In this internship, we aim to further progress our techniques and to integrate them within best-suited penetration test frameworks (e.g., OWASP ZAP) to enable broader adoption, possibly also outside SAP. More specifically, the goals of the internship are as follows:

  • Understanding the SAP development process
  • Understanding SAST, DAST, and IAST approaches (possibly experiencing with concrete tools/techniques)
  • Studying challenging vulnerabilities (e.g., CSRF and logic flaws)
  • Investigating existing and novel solutions to detect these vulnerabilities a high degree of automation
  • Contributing to the development of our testing framework at SAP, also by integrating these solutions within best-suited frameworks (e.g., OWASP ZAP)
  • Assessing this framework against real world SAP and non-SAP scenarios
  • Support SAP internal users toward the consumption of this framework
  • Documenting the developed software and the overall activities

Automated generation of realistic honeytokens

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

The goal of this internship will be to devise an approach that allows the automatic generation of realistic honeytokens, by analyzing characteristics of the application to protect before generating relevant honeytokens. The expected work is to get familiar with the work achieved so far in the fields of cyber-deception and of application analysis such as code scanners and fuzzers, then to design and develop a proof-of-concept generating relevant honeytokens depending on the characteristics of the targeted application to be protected. The candidate may as well explore the field of intrusive actions by identifying relevant intrusion detection rules.

Automatic generation of security tests and exploits

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

This internship aims at investigating methods to automatically generate test cases with the goal of covering a given fragment of a dependency (in particular, vulnerable fragments). When this is not possible (because that part of the dependency is not reachable), it should be possible to obtain a measure of confidence. The student will design and implement a proof-of-concept that will be applied to one or more sample cases taken from real SAP products or from open-source applications.

High Availability and Archiving of Extremely Large Databases

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

Within our team, we operate many servers in order to enable SAP developers run static and dynamic analysis on their code with Security Testing tools. These servers have endless growing databases that become performance bottlenecks. On the other hand, deleting data from these servers is not an option as scan history needs to be kept for 10 years for audit and legal reasons. The successful intern will design, implement, test and deploy productively an efficient archiving solution for our multiple production systems. The archiving solution shouldn’t affect the performance or accessibility of the production systems. The archived data, limited to the strict necessary, should remain searchable and reportable. Archived data should be restored on production systems on demand and data archived for more than 10 years should be automatically deleted. Managing high availability is also very important to maintaining high uptime and strong operational performance of our databases. The candidate will compare different approaches to configure high availability of our databases and based on this will implement the best solution on our production servers.

Internship for a Development Engineer

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

Cyber-attacks can disrupt and cause considerable financial and reputational damage to even the most resilient organizations. If an organization suffers a cyber-attack, it stands to lose assets, reputation and business, and potentially face regulatory fines and litigation. Most cyber-attacks are automated, indiscriminate and evolve at an alarming rate. Cybersecurity is the body of technologies, processes and practices designed to protect networks, computers, programs and data from damage or unauthorized access from cyber-attacks. Ensuring cybersecurity requires coordinated efforts throughout the development lifecycle of products. An important element in this lifecycle is Security Testing. Security Testing reveals flaws in the security mechanisms of products during development and helps prevent attacks such as SQL injection, XSS, DoS. Within SAP Global Security (SGS), the Security Testing team enables SAP development teams to build secure software by providing a service for automated source code scans complemented by other test methods, such as dynamic checks, fuzzing, and penetration testing. This automated security analysis of potentially large software products allows to detect and eliminate security flaws at an early stage in the development cycle before the products are shipped to SAP customers. The team also provides central education and consulting to develop security awareness in SAP and help development teams make effective use of these tools.

Sociocultural influences for password definition: an AI based study

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

Every day websites and systems are hacked and penetrated for illegal purposes. Most of the time these hacked websites host their user’s database containing login credentials (login and passwords). After a certain period, these stolen credentials become public and accessible for anyone. Previous works have focused on password modeling without user priors or with specific personal user information for targeted attacks. Nevertheless, a middle ground between the absence of additional user information and highly specific user information exists. If we analyze the content of these leaked credentials, we observe a certain influence of the sociocultural elements in the root keyword composing the password. We propose to study the influence of these sociocultural elements in the password selection of different populations using artificial intelligence algorithms.

(Sec)DevOps for Eclipse Steady

Location: SAP Labs France Sophia-Antipolis – France

Duration: 6 months

You find the current job openings here: MORE INFO

The consequences of poor vulnerability management are demonstrated by the severe security incidents that appear in the news with alarming frequency: breaches, such as the one suffered by Equifax in 2017, can have major legal, financial, and societal impacts. Existing tools tackling such problem rely on metadata to map OSS libraries to vulnerabilities and thus suffer from both false positives and false negatives. The solution developed at SAP Security Research is instead code-centric and combines static and dynamic analysis to determine the reachability of the vulnerable portion of libraries used (directly or transitively) by an application. The implemented tool supports the analysis of Java and Python applications, is the officially recommended tool at SAP and has been open-sourced in 2018 (https://github.com/SAP/vulnerability-assessment-tool). In 2019, the tool will be moved to the Eclipse Foundation (Eclipse Steady). The goal of the internship is to improve the project according to the various qualities mentioned by the badge program of the Core Infrastructure Initiative (CII), esp. regarding test coverage, test automation, static and dynamic code analysis and documentation. The goal of the internship is to fulfill all criteria required to obtain the silver or gold badge.