Publications
2023
, The Impostor Among US(B): Off Path Injection Attacks on USB Communications, USENIX Security, Aug 2023.
, The Gates of Time: Improving cache Attacks with Transient Execution, USENIX Security, Aug 2023.
, Breaking and Fixing Speculative Load Hardening, USENIX Security, Aug 2023.
, CryptOpt: Automatic Optimization of Straightline Code, ICSE (Companion), May 2023.
, Spectre Declassified: Reading from the Right Place at the Wrong Time, IEEE SP, May 2023.
2022
, CryptOpt: Verified Compilation with Random Program Search for Cryptographic Primitives, arXiv 2211.10665, Nov 2022.
, HammerScope: Observing DRAM Power Consumption Using Rowhammer, CCS, Los Angeles, CA, USA, Nov 2022.
, Row, Row, Row Your Boat: How to Not Find Weak Keys in Pilsung, The Computer Journal, 2022.
, Opportunities for Genetic Improvement of Cryptographic Code, GI@GECCO, pp. 1928–1929, Jul 2022.
, RSA Key Recovery from Digit Equivalence Information, ACNS, pp. 193–211, Jun 2022.
, SoK: Design Tools for Side-Channel-Aware Implementations, AsiaCCS, May 2022.
, Spook.js: Attacking Chrome Strict Site Isolation via Speculative Execution, IEEE SP, May 2022.
, DrawnApart: A Unique Device Identification Technique based on Remote GPU Fingerprinting, NDSS, Feb 2022.
, Side-Channeling the Kalyna Key Expansion, CT-RSA, pp. 272–296, Feb 2022.
, CacheFX: A Framework for Evaluating Cache Security, arXiv 2201.11377, Jan 2022.
2021
, Rosita++: Automatic Higher-Order Leakage Elimination from Cryptographic Code, CCS, pp. 685–699, Nov 2021.
, Website Fingerprinting Through the Cache Occupancy Channel and its Real World Practicality, IEEE TDSC 18(5), pp. 2042–2060, Sep 2021.
, Nonce@Once: A Single-Trace EM Side Channel Attack on Several Constant-Time Elliptic Curve Implementations in Mobile Platforms, Euro S&P, pp. 507–522, Sep 2021.
, Row, Row, Row Your Boat: How to Not Find Weak Keys in Pilsung, CFail, Aug 2021.
, Prime+Probe 1, JavaScript 0: Overcoming Browser-based Side-Channel Defenses, USENIX Security, Aug 2021.
, CacheOut: Leaking Data on Intel CPUs via Cache Evictions, IEEE SP, Virtual, May 2021.
, Security Architecture Framework for Enterprises, Enterprise Information Systems, pp. 883–904, May 2021.
, Rosita: Towards Automatic Elimination of Power-Analysis Leakage in Ciphers, NDSS, Feb 2021.
, Whack-a-Meltdown: Microarchitectural Security Games, IEEE S&P Magazine 19(1), pp. 95–98, Jan 2021.
2020
, A Queueing Solution to Reduce Delay in Processing of Disclosed Vulnerabilities, TPS-ISA, pp. 1–11, Dec 2020.
, LadderLeak: Breaking ECDSA With Less Than One Bit Of Nonce Leakage, CCS, pp. 225–242, Nov 2020.
, PThammer: Cross-User-Kernel-Boundary Rowhammer through Implicit Accesses, MICRO, pp. 28–41, Oct 2020.
, Spectre Attacks: Exploiting Speculative Execution, Communications of the ACM 63(7), pp. 93–101, Jul 2020.
, Meltdown: Reading Kernel Memory from User Space, Communications of the ACM 63(6), pp. 45–56, Jun 2020.
, Pseudorandom Black Swans: Cache Attacks on CTR_DRBG, IEEE SP, pp. 875–892, May 2020.
, RAMBleed: Reading Bits in Memory Without Accessing Them, IEEE SP, pp. 310–326, May 2020.
, LVI: Hijacking Transient Execution through Microarchitectural Load Value Injection, IEEE SP, pp. 1452–1470, May 2020.
, Enterprise Security Architecture: Mythology or Methodology?, ICEIS, pp. 679–689, May 2020. Best student paper award.
2019
, Cache vs. Key-Dependency: Side Channeling an Implementation of Pilsung, TCHES 2020(1), pp. 231–255, Nov 2019.
, Fallout: Leaking Data on Meltdown-resistant CPUs, CCS, pp. 769–784, London, United Kingdom, Nov 2019.
, Robust Website Fingerprinting Through the Cache Occupancy Channel, USENIX Security, pp. 639–656, Santa Clara, CA, USA, Aug 2019.
, The 9 Lives of Bleichenbacher's CAT: New Cache ATtacks on TLS Implementations, IEEE SP, pp. 966–983, San Francisco, CA, USA, May 2019.
, Spectre Attacks: Exploiting Speculative Execution, IEEE SP, pp. 19–37, San Francisco, CA, USA, May 2019. Distinguished paper award and NSA Best Scientific Cybersecurity Paper.
, Breaking Virtual Memory Protection and the SGX Ecosystem with Foreshadow, IEEE Micro 39(3), pp. 66–74, May 2019.
, Time Protection: the Missing OS Abstraction, EuroSys, pp. 1:1–1:17, Dresden, Germany, Mar 2019. Best paper award.
2018
, The Effect of Common Vulnerability Scoring System Metrics on Vulnerability Exploit Delay, CANDAR, pp. 1–10, Hida Takayama, Japan, Nov 2018.
, Meltdown: Reading Kernel Memory from User Space, USENIX Security, pp. 973–990, Baltimore, MD, USA, Aug 2018. NSA Best Scientific Cybersecurity Paper Honorable Mention.
, Foreshadow: Extracting the Keys to the IntelSGX Kingdom with Transient Out-of-Order Execution, USENIX Security, pp. 991–1008, Baltimore, MD, USA, Aug 2018. IEEE Micro Top Pick.
, No Security Without Time protection: We Need a New hardware Software Contract, APSys, Jeju Island, Korea, Aug 2018. Best paper award.
, Drive-by Key-Extraction Cache Attacks from Portable Code, ACNS, pp. 83–102, Leuven, Belgium, Jul 2018.
, Another Flip in the Wall of Rowhammer Defenses, IEEE SP, pp. 489–505, San Francisco, CA, USA, May 2018.
, CacheQuote: Efficiently Recovering Long-term Secrets of SGX EPID via Cache Attacks, TCHES 2018(2), pp. 171–191, May 2018.
, A Survey of Microarchitectural Timing Attacks and Countermeasures on Contemporary Hardware, JCEN 8(1), pp. 1–27, Apr 2018.
2017
, May the Fourth Be With You: A Microarchitectural Side Channel Attack on Several Real-World Applications of Curve25519, CCS, pp. 845–858, Dallas, TX, US, Oct 2017.
, To BLISS-B or not to be — Attacking StrongSwan's Implementation of Post-Quantum Signatures, CCS, pp. 1843–1855, Dallas, TX, USA, Oct 2017.
, Sliding Right Into Disaster: Left-to-Right Sliding Windows Leak, CHES, pp. 555–576, Taipei, Taiwan, Sep 2017.
, USB Snooping Made Easy: Crosstalk Leakage Attacks on USB Hubs, USENIX Security, pp. 1145–1161, Vancouver, BC, Canada, Aug 2017.
, CacheBleed: A Timing Attack on OpenSSL Constant Time RSA, JCEN 7(2), pp. 99–112, Jun 2017.
, Modifying an Enciphering Scheme after Deployment, EuroCrypt, pp. 499–527, Paris, France, Apr 2017.
, Replacing Sanger with Next Generation Sequencing to improve coverage and quality of reference DNA barcodes for plants, Scientific Reports 7(46040), Apr 2017.
2016
, Amplifying Side Channels Through Performance Degradation, ACSAC, pp. 422–435, Los Angeles, CA, USA, Dec 2016.
, “Make Sure DSA Signing Exponentiations Really are Constant-Time”, CCS, pp. 1639–1650, Vienna, Austria, Oct 2016.
, ECDSA Key Extraction from Mobile Devices via Nonintrusive Physical Side Channels, CCS, pp. 1626–1638, Vienna, Austria, Oct 2016.
, CacheBleed: A Timing Attack on OpenSSL Constant Time RSA, CHES, pp. 346–367, Santa Barbabra, CA, US, Aug 2016.
, Flush, Gauss, and Reload — A Cache Attack on the BLISS Lattice-Based Signature Scheme, CHES, pp. 323–345, Santa Barbabra, CA, USA, Aug 2016.
, CATalyst: Defeating Last-Level Cache Side Channel Attacks in Cloud Computing, HPCA, pp. 406–418, Barcelona, Spain, Mar 2016.
2015
, Exploiting Transformations of the Galois Configuration to Improve Guess-and-Determine Attacks on NFSRs, ePrint 2015/1045, Oct 2015.
, Mapping the Intel Last-Level Cache, ePrint 2015/905, Sep 2015.
, Evaluation and Cryptanalysis of the Pandaka Lightweight Cipher, ACNS, pp. 370–385, New York, NY, USA, Jun 2015.
, Last-Level Cache Side-Channel Attacks are Practical, IEEE SP, pp. 605–622, San Jose, CA, USA, May 2015.
, Just a Little Bit More, CT-RSA, pp. 3–21, San Francisco, CA, USA, Apr 2015.
2014
, “Ooh Aah ... Just a Little Bit”: A Small Amount of Side Channel can go a Long Way, CHES, pp. 73–92, Busan, Korea, Sep 2014.
, Flush+Reload: a High Resolution, Low Noise, L3 Cache Side-Channel Attack, USENIX Security, pp. 719–732, San Diego, CA, USA, Aug 2014.
, Recovering OpenSSL ECDSA Nonces Using the Flush+Reload Cache Side-channel Attack, ePrint 2014/140, Feb 2014.
2012
, S-RVM: a Secure Design for a High-Performance Java Virtual Machine, VMIL, Tuscon, AZ, USA, Oct 2012.
2008
, Estimating Camera Overlap in Large and Growing Networks, ICDSC, pp. 1–10, Stanford University, CA, USA, Sep 2008.
1995
, The NOW MOSIX and its Preemptive Process Migration Scheme, IEEE TCOS Bulletin 7(2), 1995.
1994
, Warm Backup Using Snooping, SDNE, pp. 60–65, Prague, Czech Republic, Jun 1994.