research
∙
06/06/2023
TALUS: Reinforcing TEE Confidentiality with Cryptographic Coprocessors (Technical Report)
Platforms are nowadays typically equipped with tristed execution environ...
share
research
∙
01/16/2023
Clustered Relational Thread-Modular Abstract Interpretation with Local Traces
We construct novel thread-modular analyses that track relational informa...
research
∙
09/21/2022
Interactive Abstract Interpretation: Reanalyzing Whole Programs for Cheap
To put static program analysis at the fingertips of the software develop...
research
∙
02/28/2022
SFIP: Coarse-Grained Syscall-Flow-Integrity Protection in Modern Systems
Growing code bases of modern applications have led to a steady increase ...
research
∙
11/21/2021
Domain Page-Table Isolation
Modern applications often consist of different security domains that req...
research
∙
11/16/2021
Practical Timing Side Channel Attacks on Memory Compression
Compression algorithms are widely used as they save memory without losin...
research
∙
10/10/2021
Dynamic Process Isolation
In the quest for efficiency and performance, edge-computing providers el...
research
∙
08/17/2021
Improving Thread-Modular Abstract Interpretation
We give thread-modular non-relational value analyses as abstractions of ...
research
∙
06/07/2021
Osiris: Automated Discovery of Microarchitectural Side Channels
In the last years, a series of side channels have been discovered on CPU...
research
∙
12/04/2020
Automating Seccomp Filter Generation for Linux Applications
Software vulnerabilities in applications undermine the security of appli...
research
∙
08/05/2020
Speculative Dereferencing of Registers:Reviving Foreshadow
Since 2016, multiple microarchitectural attacks have exploited an effect...
research
∙
06/10/2020
Mind the GAP: Security Privacy Risks of Contact Tracing Apps
Contact tracing apps running on mobile devices promise to reduce the man...
research
∙
05/29/2019
Fallout: Reading Kernel Writes From User Space
Recently, out-of-order execution, an important performance optimization ...
research
∙
05/22/2019
ConTExT: Leakage-Free Transient Execution
Out-of-order execution and speculative execution are among the biggest c...
research
∙
05/14/2019
ZombieLoad: Cross-Privilege-Boundary Data Sampling
In early 2018, Meltdown first showed how to read arbitrary kernel memory...
research
∙
05/14/2019
Store-to-Leak Forwarding: Leaking Data on Meltdown-resistant CPUs
Meltdown and Spectre exploit microarchitectural changes the CPU makes du...
research
∙
02/08/2019
Practical Enclave Malware with Intel SGX
Modern CPU architectures offer strong isolation guarantees towards user ...
research
∙
01/04/2019
Page Cache Attacks
We present a new hardware-agnostic side-channel attack that targets one ...
research
∙
11/13/2018
A Systematic Evaluation of Transient Execution Attacks and Defenses
Modern processor optimizations such as branch prediction and out-of-orde...
research
∙
07/27/2018
NetSpectre: Read Arbitrary Memory over Network
In this paper, we present NetSpectre, a generic remote Spectre variant 1...
research
∙
05/13/2018
Nethammer: Inducing Rowhammer Faults through Network Requests
A fundamental assumption in software security is that memory contents do...
research
∙
01/03/2018
Meltdown
The security of computer systems fundamentally relies on memory isolatio...
research
∙
01/03/2018
Spectre Attacks: Exploiting Speculative Execution
Modern processors use branch prediction and speculative execution to max...
research
∙
11/03/2017