**DAVFI Project”

   

The DAVFI is related to a new generation and innovative anti-malware solution. For this 2-year project, I operate as the project architect, designer and operational, technical and scientific manager. Only a part of the DAVFI Project is open. I have transferred the entire intellectual property as well as most of the development team, to the Nov-It company which is in charge of the commercial development under the brand Uhuru-mobile (secure Android version) and UhuruAM (Linux and Windows versions).

• The Android version has been transferred on October 17th, 2013. It is now commercially available under the trademark Uhuru-mobile. Recent information from the French Gendarmerie and ANSSI confirmed that ANSSI’s SecDroid project is in fact the DAVFI Android Project and is the core of the NeoGend project.
• The Linux version (gateway filter, GUI, library, doc) has been delivered on September 15^th, 2014. It has been widely deployed within the French Gendarmerie IT systems.
• The Windows PoC (Win 7) has been transferred on September 30^th, 2014.

More to read here (in French).

The official slides for the project delivery and closing, presented to the DGA on September 30^th, 2014 are here.

The project delivery (source code and binaries) have been successfully validated by the DGA which has confirmed both the PoC and the detection accuracy compared to the existing commercial AVs. Here is a demo video for the DAVFI’s GUI as released to the DGA, If you need more information (technical aspects, detection results, demos…), please contact me.

Contrary to what I expected, forking the DAVFI project with OpenDAFVI is not possible (see legal aspects below). I am more than disappointed with this since making all the resources developped during the project open and free has always been THE condition for me to work on this project, especially because it has been funded partly by the French taxpayers who must have some feedback on how his money has been spent.

Moreover, we do not want to betray our involvement in the free software and free knowledge. I consider that all actors that were in charge of the industrial development or in charge of its supervision have betrayed this engagement.

At the present time, developments specific to the intended OpenDAVFI project have been published. Publication related to module 4 has been accepted for publication (Jonathan Dechaux’s PhD thesis). Another publication (module 5.2) has been accepted for presentation at the 15^th European Conference on Cyber Warfare and Security (ECCWS) 2016, at the Bundeswehr University, Munich, Germany (August 7^th-8^th).

Legal aspects. At the present time we still do not know whether we are authorized or not to make DAVFI ressources and hence OpenDAVFI developments publicly available. Our different requests to the DGA did not receive any answer. So as long as I have uncertainty about these legal aspects, it is unthinkable to release any source code. Anyone skilled in such legal aspects who could help us is more than welcome.