Guy-Vincent Jourdan

Areas of interest

My main areas of interest in research loosely include formal methods, software modelling, software testing, software security, distributed systems and partially ordered sets. That's a wide and seemingly unconnected range of topics. I actually see it as only two separated areas of research.

Software modelling and testing

It is my main area of research. I am interested in using formal methods (discrete systems, partially ordered sets etc.) to create a model of a software system specification, concurrent or not, and use this model to help building and testing an implementation. I have done some work on checking sequences [J11, C31, C28, C21, C13], and in particular defined a new model, called Partial-Order Input/Output Automata (PIOIA), which is a finite state machine in which transitions are labeled with a partially ordered sets of inputs and outputs. Techniques to test implementations specified as POIOAs have been developed [C22, C18]. One key finding is that the complexity of testing POIOAs is, in the worst case and under some assumptions, much lower than the complexity of a similar system modeled with a classical labeled transition system.

I am also currently working on the automatic creation of formal models for Rich Internet applications (that is, a Web application that combines synchronous and asynchronous communications with the back-end Web server, for example using Ajax calls, and for which the client states are not simply defined by the current URL). Building such a model is necessary for Web page indexing, and can also be used for example for automated security and usability testing [C32].

I have also explored a number of other questions, such as testing sequences for Petri Nets [C30, C27], loop inference from traces [C19, C12], adaptive testing [J5, C23] etc.

Software security

I have a long practical interest in software security, and I sometimes publish in this area as well. I have created the software security research group, and I organize regular seminars on the topic.

I am particularly interested in the software engineering questions related to software security [J9, J8, C20, C9], as well as education on the topic [J7, C26], and creation of tools [C34].

Software Applications for Mobile Devices

In addition to the activities listed above, I am increasingly involved in research involving mobile devices (such as iPhones/iPads and android phones). I have created the Mobile Application Developers (MAD) club, and I have proposed the creation of the hopefuly soon to open graduate certificate in applications for mobile devices. I am involved in a growing number of projects around mobiles (e.g. mobile-health, tourism etc.) and I anticipate that my research activities will evolve more and more around mobiles (as will, in the near future, the professional activity of every programmer and computer scientist).

Publications (since 2005)

Copyright Notice: copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright.

Papers in refereed Journals

[J11] Jourdan, G.-V., Ural, H, Yenigün, H, and Zhang, J.C., Lower bounds on lengths of checking sequences, accepted in Formal Aspects of Computing, October 2009.

[J10] Alshashem, M., Jourdan, G.-V., Zaguia, N., On the Book Embedding of Ordered Sets, accepted in Ars Combinatoria, July 2009 - [pdf].

[J9] Jourdan, G.-V., Securing Large Applications Against Command Injections, in IEEE aerospace and electronic systems magazine, 24(6), pp. 15-24. 2009 - Reprinted from [C20].

[J8] Jourdan, G.-V., Data Validation, Data Neutralization, Data Footprint: A Framework Against Injection Attacks, in The Open Software Engineering Journal, 2, pp. 45-54, 2008 - [pdf].

[J7] Jourdan, G.-V., Centralized Web Proxy Services: Security and Privacy Considerations, in IEEE Internet Computing, November-December 2007, reprinted in IEEE Distributed Systems Online, 8(12), 2007.

[J6] Jourdan, G.-V., Rakotomalala, L., Zaguia, N., LR-Upward Drawing of Ordered Sets, in Machine Graphics & Vision, 18(1), pp. 3-19, 2009.

[J5] Jourdan, G.-V., Ural, H, Zaguia, N., Minimizing the Number of Inputs while Applying Adaptive Test Cases, in Information Processing Letters, 94(4), pp. 165-169, 2005 - [pdf].

Papers in Refereed Conference Proceedings

[C34] Adams, C., Jourdan, G.-V, Levac, J.-P., and Prevost, F., Lightweight protection against brute force login attacks on web applications, in 8th IEEE International Conference on Privacy, Security and Trust (PST 2010), Ottawa, Canada, August 2010. 8 pages - [pdf] [slides (Keynote format)].

[C33] Jeddah, A., Jourdan, G.-V and Zaguia, N., What are the Side Effects of FHSS on Bluetooth Networks Distributed Algorithms?, in 8th ACS/IEEE International Conference on Computer Systems and Applications (ACS/IEEE AICCSA-2010), Hammamet, Tunisia. May 2010. 8 pages.

[C32] Benjamin, K., Bochmann, G. v., Jourdan, G.-V. and Onut, V., Some Modeling Challenges when Testing Rich Internet Applications for Security, in First International workshop on modeling and detection of vulnerabilities (MDV 2010), Paris, France, April 2010. 8 pages - [pdf].

[C31] Hieron, R, Jourdan, G.-V., Ural, H. and Yenigun, H., Checking Sequence Construction Using Adaptive and Preset Distinguishing Sequences, in 7th IEEE International Conference on Software Engineering and Formal Methods, Hanoi, Vietnam, November 2009. 10 pages - [pdf].

[C30] Bochmann, G. v. and Jourdan, G.-V., Testing k-Safe Petri Nets, in 21st IFIP International Conference on Testing of Communicating Systems and 9th International Workshop on Formal Approaches to Testing of Software (TestCom/FATES 09), Eindhoven, Netherlands, November 2009, Springer, LNCS 5826, 16 pages - [pdf].

[C29] Jeddah, A., Zaguia, N. and Jourdan, G.-V., A Note on the Study of Bluetooth Networks’ Distributed Algorithms, in 2nd IEEE International Workshop on Wireless Network Algorithm and Theory (IEEE WiNA-2009), Macau, China, October 2009. 6 pages.

[C28] Jourdan, G.-V., Ural, H., Yenigun, H. and Zhu, D., Using a SAT Solver to Generate Checking Sequences, in 24th International Symposium on Computer and Information Science (ISCIS’09), Cyprus, Turkey, September 2009. 6 pages - [pdf].

[C27] Jourdan, G.-V. and Bochmann, G. v., On Testing 1-Safe Petri Nets, in 3rd IEEE International Symposium on Theoretical Aspects of Software Engineering (TASE 09), July 2009, Tianjin, China. 8 pages - [pdf].

[C26] Jourdan, G.-V., Software Security Vulnerabilities Seen As Feature Interactions, in 10th International Conference on Feature Interactions (ICFI 2009), Lisbon, Portugal, June 2009. 11 pages - [pdf].

[C25] Jeddah, A., Zaguia, N. and Jourdan, G.-V., Analyzing the Device Discovery Phase of Bluetooth Scatternet Formation Algorithms, short paper. In The Second International Workshop on Specialized Ad Hoc Networks and Systems (SAHNS 2009), Montreal, Quebec, Canada, June 2009. 4 pages.

[C24] Jeddah, A., Zaguia, N. and Jourdan, G.-V., An Analysis of the BluePleidas Algorithms Device Discovery Phase, In 2nd International Conference on Information and Communication Technology Accessibility (ICTA 09), Hammamet, Tunisia, May 2009. 8 pages.

[C23] Jourdan, G.-V., Ural, H., and Yenigun, H., Combining Adaptive Tests, in 23rd International Symposium on Computer and Information Science (ISCIS’08), Istanbul, Turkey, October 2008.

[C22] Bochmann, G. v., Haar, S, Jard, C and Jourdan, G.-V., Testing Systems Specified as Partial Order Input/Output Automata, in 20th IFIP International Conference on Testing of Communicating Systems and 8th International Workshop on Formal Approaches to Testing of Software (TestCom/FATES 08), Tokyo., Japan, June 2008, Springer LNCS 5047, 15 pages - [pdf].

[C21] Hieron, R, Jourdan, G.-V., Ural, H. and Yenigun, H., Using adaptive distinguishing sequences in checking sequence constructions, in 23rd ACM Symposium on Applied Computing, Ceará, Brazil, March 2008. 6 pages.

[C20] Jourdan, G.-V., Securing Large Applications Against Command Injections, in 41st IEEE International Carnahan Conference on Security Technology, Ottawa, Canada, October 2007.8 pages - [pdf][slides].

[C19] Jourdan, G.-V., Ural, H., S. Wang, and Yenigun, H., Recovering Repetitive Sub-Functions from Observations, in 27th IFIP International Conference on Formal Methods for Networked and Distributed Systems (FORTE’07), Tallinn, Estonia, June 2007, Springer LNCS 4574. 15 pages - [pdf].

[C18] Haar, S, Jard, C, and Jourdan, G.-V., Testing Input/Output Partial Order Automata, in 19th IFIP International Conference on Testing of Communicating Systems and 7th International Workshop on Formal Approaches to Testing of Software (TestCom/FATES 07), Tallinn, Estonia, June 2007, Springer LNCS 4581. 15 pages - [pdf].

[C17] Jourdan, G.-V., Rakotomalala, L., Zaguia, N., LR-Upward Drawing: a More Usable Ordered Sets Drawing, in 1st International Conference on Information and Communication Technology Accessibility (ICTA 07), Hammamet, Tunisia, April 2007. 6 pages.

[C16] Jourdan, G.-V., Rakotomalala, L., Zaguia, N., LR-Upward Drawing of Ordered Sets, in 23rd European Workshop on Computational Geometry (EWCG 07), Graz, Austria, March 2007. 4 pages.

[C15] Jourdan, G.-V., Ritthiruangdech, P., Ural, H., Test suite reduction based on dependence analysis, in 21st International Symposium on Computer and Information Science (ISCIS’06), Istanbul, Turkey, October 2006. Springer LNCS 4263, 9 pages.

[C14] Chen, J., Jourdan, G.-V., Ma, W., Ural, H., Improving Coverage in Functional Testing, in 6th IEEE International Conference on Quality Software (QSIC '06), Beijing, China, October 2006. 7 pages.

[C13] Jourdan, G.-V., Ural, H., Yenigun, H., Minimizing Coordination Channels in Distributed Testing, in 26th IFIP WG 6.1 International Conference on Formal Methods for Networked and Distributed Systems (FORTE’06), Paris, France, September 2006. Springer LNCS 4229. 16 pages.

[C12] Jourdan, G.-V., Ural, H., Yenigun, H., Recovering the Lattice of Repetitive Sub-functions, in 20th International Symposium on Computer and Information Science (ISCIS’05), Istanbul, Turkey, October 2005. Springer LNCS 3733, 9 pages.

[C11] Alshashem, M., Jourdan, G.-V., Zaguia, N., On the Pagenumber of Bipartite Orders, in 17th Canadian Conference on Computational Geometry (CCCG’05), Windsor, Canada, August 2005. 4 pages.

[C10] Jourdan, G.-V., Zaguia, N., Heuristics for useful enumerations of conflict free schedules of student courses, in 3rd International Conference on Education and Information Systems: Technologies and Applications (EISTA’05), Orlando, Florida, United States, July 2005. 3 pages.

[C9] Adams, C., Jourdan, G.-V., Why Good Software Engineering Practices Often Do Not Produce Secure Software, in IEEE Workshop on Cyber Infrastructure Emergency Preparedness Aspects, Ottawa, Canada, April 2005. 9 pages - [pdf].