Ph.D. Candidate · INRIA Nord Europe

Aymen Bouferroum

I research trust-based security for the Industrial Internet of Things.

Working at the intersection of machine learning, cybersecurity, and network systems, from ML-driven trust models to physical-layer sensor attacks.

Scroll
01

About

I am a third-year Ph.D. candidate at INRIA Nord Europe in Lille, France, supervised by Valeria Loscri and co-supervised by Abderrahim Benslimane (University of Avignon). My thesis investigates trust-based approaches in multi-technology Industrial Internet of Things.

My work sits at the intersection of cybersecurity, machine learning, and network systems. I explore how ML can enhance trust management, detect adversarial attacks on physical-layer sensors, and build resilient security frameworks for industrial networks. This spans theoretical modeling (Markov chains, stochastic optimization, statistical learning) and hands-on experimentation with real hardware including LiDAR sensors, WiFi CSI, and embedded platforms.

Recently I was a visiting researcher at CISPA Helmholtz Center for Information Security in Saarbrücken, Germany, investigating mirror-based LiDAR spoofing attacks on autonomous and industrial systems.

Aymen Bouferroum
Photo
Industrial IoT SecurityTrust ManagementFederated LearningLiDAR SpoofingWiFi CSIMachine LearningPhysical-Layer SecurityAdversarial AttacksCyber-Physical SystemsDeep Learning Industrial IoT SecurityTrust ManagementFederated LearningLiDAR SpoofingWiFi CSIMachine LearningPhysical-Layer SecurityAdversarial AttacksCyber-Physical SystemsDeep Learning
02

Publications

CSI Simulation: Why Additive Noise Fails and How to Fix It

A. Bouferroum, I. Alla, V. Lenders, V. Loscri

Preprint (HAL) · 2026 Under Review

CSI-based Wi-Fi sensing models are often trained on data simulated by adding noise, but that assumption breaks inside the receiver…

Channel State Information (CSI) is a widely used Wi-Fi sensing modality, and models are commonly trained on data simulated by adding noise (most often additive white Gaussian noise) to recorded channel estimates. Testing this assumption on six commodity receivers across two indoor environments, we show it does not hold: automatic gain control compresses the channel estimate multiplicatively, producing amplitude distributions that no additive noise variance can reproduce. We propose MQTC, a measurement-calibrated model combining per-subcarrier quantile mapping, temporal filtering, and copula-based cross-subcarrier reordering, which reduces amplitude error 8-fold and closes 89% of the aggregate fidelity gap. Classifiers trained on MQTC-simulated data recover 93% of real-data jamming-detection performance, while AWGN-trained classifiers remain near random.

Channel State InformationWi-Fi SensingSimulation ValidationSim-to-Real TransferReceiver ChainData Augmentation
PDF HAL
@article{bouferroum2026csi,
  author = {Bouferroum, Aymen and Alla, Ildi and Lenders, Vincent and Loscri, Valeria},
  title  = {{CSI} Simulation: Why Additive Noise Fails and How to Fix It},
  year   = {2026},
  note   = {Preprint, under review},
  url    = {https://hal.science/hal-05676671}
}

CITADEL: CSI-Based Jamming Detection and Open-Set Classification for IIoT Networks

A. Bouferroum, I. Alla, V. Loscri, A. Benslimane, V. Lenders

Preprint (HAL) · 2026 Preprint

Radio-frequency jamming threatens the availability of wireless IIoT networks; CITADEL detects and classifies it from CSI alone, including zero-day attacks…

Radio-frequency jamming poses a critical threat to the availability of wireless Industrial IoT networks. CITADEL is a lightweight, two-stage hierarchical pipeline that uses only Channel State Information (CSI), natively available on commodity IIoT devices, to detect and classify jamming attacks including previously unseen ones. Across 6 known attack types and 15 zero-day scenarios it achieves 100% known-attack detection and 97.1% zero-day detection at a 0.4% false-positive rate, resists white-box and black-box adversarial evasion, and completes end-to-end inference in 14.2 ms at 95.9 mJ on an edge GPU, outperforming eight baselines across detection, generalization, and robustness.

Wi-Fi SecurityChannel State InformationJamming DetectionOpen-Set RecognitionAdversarial RobustnessEdge Computing
PDF HAL
@article{bouferroum2026citadel,
  author = {Bouferroum, Aymen and Alla, Ildi and Loscri, Valeria and Benslimane, Abderrahim and Lenders, Vincent},
  title  = {{CITADEL}: {CSI}-Based Jamming Detection and Open-Set Classification for {IIoT} Networks},
  year   = {2026},
  note   = {Preprint},
  url    = {https://hal.science/hal-05662267}
}

Toward a Multi-Layer ML-Based Security Framework for Industrial IoT

A. Bouferroum, V. Loscri, A. Benslimane

RESSI 2026 · Clervaux, Luxembourg Accepted

The overview of my doctoral thesis: a lightweight, multi-layer, ML-based security framework for the Industrial IoT…

The Industrial IoT introduces serious security challenges as resource-constrained devices join critical processes, yet most defenses address a single layer and remain confined to simulation. This paper presents the research framework of my doctoral thesis: a lightweight, ML-based, multi-layer security framework for IIoT. Building on the Tm-IIoT trust model and the Hybrid IIoT (H-IIoT) architecture, it introduces the Trust Convergence Acceleration (TCA) approach, up to 28.6% faster trust convergence under degraded networks while staying robust to adversarial behavior, and proposes a real-world deployment on affordable, open-source hardware, extending toward multi-layer and physical-layer threat detection with resilience to adversarial ML.

IIoTTrust ManagementMachine LearningSecurity FrameworkNetwork Quality
@inproceedings{bouferroum2026ressi,
  author    = {Bouferroum, Aymen and Loscri, Valeria and Benslimane, Abderrahim},
  title     = {Toward a Multi-Layer {ML}-Based Security Framework for Industrial {IoT}},
  booktitle = {Rendez-vous de la Recherche et de l'Enseignement de la Securite des Systemes d'Information (RESSI)},
  year      = {2026},
  address   = {Clervaux, Luxembourg},
  month     = {May}
}

Accelerating Trust Convergence in IIoT: A ML Approach for Dynamic Network Conditions

A. Bouferroum, V. Loscri, A. Benslimane

IEEE GLOBECOM 2025 · Taipei, Taiwan Published 1 citation

Trust management in IIoT networks requires rapid convergence to assess device reliability under dynamic conditions…

In Industrial IoT environments, trust management is vital for security, especially with resource-constrained devices, yet traditional trust models ignore fluctuating network quality, causing slow convergence and inaccurate assessments. We propose the Trust Convergence Acceleration (TCA) approach, which integrates a Random Forest model to predict the number of time units needed for trust convergence and dynamically adapts the transition probabilities of the trust model. On a simulation framework with realistic IEEE 802.11 (Wi-Fi 6) conditions, TCA cuts trust-convergence time by up to 28.6% under challenging conditions and improves trust-evaluation accuracy against malicious nodes.

IoTIIoTTrust ManagementMachine LearningNetwork Quality
PDF IEEE
@inproceedings{bouferroum2025globecom,
  author    = {Bouferroum, Aymen and Loscri, Valeria and Benslimane, Abderrahim},
  title     = {Accelerating Trust Convergence in {IIoT}: A {ML} Approach for Dynamic Network Conditions},
  booktitle = {IEEE Global Communications Conference (GLOBECOM)},
  year      = {2025},
  address   = {Taipei, Taiwan},
  pages     = {4427--4432},
  doi       = {10.1109/GLOBECOM59602.2025.11431874}
}

Reinforcement Learning-Driven UC-CFmMIMO for UAVs: A Subband Allocation Framework

S. Cheggour, A. Bouferroum, R. Krishnan

CITS 2025 Published 1 citation

User-centric cell-free massive MIMO offers promising coverage for UAV communications but faces dynamic subband allocation challenges…

User-centric cell-free massive MIMO (UC-CFmMIMO) offers promising coverage for UAV communications but faces challenges in dynamic subband allocation. We propose a reinforcement-learning-driven framework that optimizes subband allocation for UAV users, adapting to varying trajectories and traffic demands to achieve near-optimal spectral efficiency at a fraction of the computational cost of exhaustive search.

Reinforcement LearningCell-Free mMIMOUAV CommunicationsResource Allocation
@inproceedings{cheggour2025cits,
  author    = {Cheggour, Sif Eddine and Bouferroum, Aymen and Krishnan, Ramprasad},
  title     = {Reinforcement Learning-Driven {UC-CFmMIMO} for {UAVs}: A Subband Allocation Framework},
  booktitle = {International Conference on Computer, Information and Telecommunication Systems (CITS)},
  year      = {2025}
}

Overcoming the Technical Hurdles of IoT Adoption: the FITNESS Project Vision and Insights

N. Cassiau, N. Achir, C. Adjih, …, A. Bouferroum, et al.

Zenodo · 2025 Published 1 citation

The FITNESS project addresses the technical barriers preventing widespread IoT adoption across industrial and societal contexts…

The FITNESS project addresses the technical barriers preventing widespread IoT adoption in industrial and societal contexts. This paper presents the project vision and key insights on overcoming challenges of network heterogeneity, security, energy efficiency, and scalability, outlining the architectural principles developed within the French PEPR Future Networks program toward trustworthy, interoperable IoT.

IoTFuture NetworksFITNESSPEPRArchitecture
Zenodo
@techreport{cassiau2025fitness,
  author      = {Cassiau, Nicolas and Achir, Nadjib and Adjih, Cedric and Andrieux, Guillaume and Bechkit, Walid and {Ben Hadj Said}, Sana and Boissier, Olivier and Bouferroum, Aymen and others},
  title       = {Overcoming the Technical Hurdles of {IoT} Adoption: the {FITNESS} Project Vision and Insights},
  institution = {PEPR Future Networks / NF-FITNESS (ANR-22-PEFT-0007)},
  year        = {2025},
  note        = {Zenodo},
  doi         = {10.5281/zenodo.17119690}
}
03

Research

01 / Trust

Trust Management in Industrial IoT

Machine-learning approaches that accelerate trust convergence and enable reliable device assessment in dynamic IIoT networks, designing trust models resilient to manipulation as topology and channels shift.

Markov chains · Machine learning · Stochastic optimization

02 / Sensing

Physical-Layer Security & Sensor Attacks

Vulnerabilities in physical-layer sensors for IIoT and autonomous systems: mirror-based LiDAR spoofing (Ouster, Hesai, Livox, RoboSense) and CSI-based jamming detection over WiFi channel state information.

LiDAR · WiFi CSI · CARLA · Point clouds · ESP32 · HackRF

03 / Frameworks

ML-Based Network Security Frameworks

Multi-layer security architectures uniting physical-layer authentication, traffic analysis, and application-level anomaly detection for resource-constrained industrial devices across heterogeneous networks.

Deep learning · Federated learning · Flower · PyTorch · TensorFlow

04

Skills

A toolkit that spans research and engineering: training deep and federated models, probing wireless physical layers with software-defined radios, and deploying security systems on real embedded hardware.

AI & Machine Learning

PyTorchTensorFlowKerasscikit-learnFederated LearningFlowerDeep LearningCNNRNN / LSTMDiffusion ModelsVAE

Networks & Wireless

TCP/IPBGPIEEE 802.114G / 5GVLAN / ACLFirewall / VPNWiFi CSILiDARESP32Jetson Orin NanoRaspberry Pi

Security & Offensive

Penetration TestingWiresharkKali LinuxNmapMetasploitBurp SuitesqlmapReverse EngineeringTrust ManagementHackRF OneSDRGNU Radio

Cloud & DevOps

DockerKubernetesAWSOpenStackVMwareRancherApache Spark

Software Development

PythonFlaskPyQt6JavaJavaFXJADEJavaScriptHTML / CSSGitUMLPostgreSQLMySQLMongoDBSQLite

Modeling & Theory

Markov ChainsStochastic OptimizationFinite State MachinesPetri NetsRandom ForestsGame Theory

Languages

ArabicNative
EnglishFull Professional · Linguaskill B2
FrenchFull Professional

Certifications

  • Neural Networks and Deep Learning
  • Preparing for a Career in Cybersecurity · Microsoft & LinkedIn
  • Linguaskill Business B2
  • Claude Code in Action
05

Experience

Mar 2026 – May 2026

Visiting PhD Researcher

CISPA Helmholtz Center · Saarbrücken, Germany

Research stay at the world's #1-ranked institution in computer security and cryptography (CSRankings), working on cyber-physical systems security for autonomous vehicles in the Industry 5.0 paradigm. Rebuilt a mirror-based LiDAR spoofing pipeline in CARLA and evaluated it across five sensors (Ouster, Hesai, Livox, RoboSense).

Oct 2023 – Present

Ph.D. Candidate

INRIA Nord Europe · Lille, France

Designing an energy-efficient trust-management architecture for the multi-technology Industrial IoT in the Industry 4.0 and 6G context: high security at low latency and overhead across heterogeneous, resource-constrained nodes. Supervised by Valeria Loscri, co-supervised by Abderrahim Benslimane.

Mar 2022 – Aug 2022

Research Intern

LIA · University of Avignon, France

Incentive design for efficient federated learning via game-theoretic coalition strategies with Shapley-value optimization.

2020 – 2022

M.Sc. Communicating Computer Systems

University of Avignon · France

2018 – 2020

M.Sc. Networks & Distributed Systems

University of Constantine · Algeria

2015 – 2018

B.Sc. Computer Science

University of Constantine · Algeria

06

Contact

Interested in collaborating on IIoT security, trust management, or applied machine learning? I am always glad to talk.