Christophe Brocas. Homepage.
Welcome to my little portion of the Internet :)
Bio

Shortly, we can say that :

  • On work days: I am a Security engineer for the Security department of the French public Health insurance.
  • On spare time, conferences organization stuff:
    • Pass the SALT: creation+organization+curation with friends of Pass the SALT, a conference dedicated to Security and Free Software
      > From 2018 to now.
      > More info in the projects section.
    • RMLL Security track: we curated with friends the Security track of the RMLL, a french FLOSS conference
      > From 2008 to 2017.
      > Ressources (en): archives.
    • Hack.lu: member of the Program committee of this Security conference.
      > From 2016 to 2019.
    • Botconf: member of the organization team for the 2019 edition, acting as the local host and onsite manpower during the event.
  • Apart from that, I like living with longboard skates (failure on that point), waves, cats and unicorns around me.

> , , , , and .

Talks
  • Capitole du Libre 2023 - "ACME: de l'intérêt de déployer un protocole Internet de Sécurité dans un réseau privé"
    > Resources (fr): talk details, slides, video has been recorded, should be published but don't know when.
  • Hack.lu 2023 - "ACME: benefits of deploying an Internet Security protocol inside your corporate network"
    > Resources (en): talk details, slides, video.
  • NoLimitSecu, FR infosec podcast - "ACME on the Internet and in private networks"
    > Speakers: the podcast panelists and me.
    > Resources (fr): podcast episode, lightning talk on ACME usage in private networks at SSTIC 2023.
  • Toulouse hacking Convention 2019 - "Certificate Transparency & threats detection, 24 months later"
    > Given by: /me. Authors: /me, Thomas Damonneville.
    > Resources (en): conference website, slides; Resources (fr): video.
  • Hack-it-n 2018bis - "CertStreamMonitor : utiliser Certificate Transparency pour améliorer sa détection de menaces"
    EN: "CertStreamMonitor: use Certificate Transparency to improve your threats detection"
    > Given by: /me. Authors: /me, Thomas Damonneville.
    > Resources (fr): conference website; (en): slides.
  • NoLimitSecu, FR infosec podcast - "Certificate Transparency and CertStreamMonitor"
    > Speakers: the podcast panelists, Thomas Damonneville and me.
    > Resource (fr): podcast episode.
  • SSTIC 2018 -"Certificate Transparency ou comment un nouveau standard peut vous aider à améliorer votre veille sur les menaces"
    EN: "Certificate Transparency when a new standard may improve your threats monitoring"
    > Authors: /me, Thomas Damonneville.
    > Ressources (fr): slides, paper, video; (en): slides, code and README on Github.

\    /\
 )  ( ')
(  /  )
 \(__)|
Papers
  • "Security.txt implementation @ Assurance Maladie"
    > Author: /me for the team.
    > Ressources (en): blogpost on the Assurance Maladie Security team blog.
  • "Certificate Transparency ou comment un nouveau standard peut vous aider à améliorer votre veille sur les menaces"
    > Authors: /me, Thomas Damonneville.
    > Ressources (fr): paper submitted to 2018 SSTIC security conference.
  • [Linux Pratique] more then 20 articles written in French for Linux Pratique magazine to expose and explain in detail security topics like encryption, self hosting, secure web development or TLS for novice to medium technical level readers. Started in may 2015 and still going on.
    > See announcements (fr).
  • [MISC magazine]"Reverse proxy Apache 2.2 ou l’intérêt d’un équipement en coupure"
  • [MISC magazine]"Mon serveur DNS, mon IDS oublié"
    > See article (fr).
  • [MISC magazine]"De la sécurité d'une architecture DNS d'entreprise"
    > Authors: Jean-Michel Farin, /me.
    > See article (fr).
Blog Blog website | Note: after a server crash, only a small subset of the original posts restored ;-)

Projects
 |\_/|
 (. .)
  =w= (\
 / ^ \//
(|| ||)
,""_""_ .