• Publications
  • Influence
Fault Attacks on Encrypted General Purpose Compute Platforms
tl;dr
Adversaries with physical access to a target platform can perform cold boot or DMA attacks to extract sensitive data from the RAM. Expand
  • 9
  • 2
  • Open Access
Graphical User Interface for Virtualized Mobile Handsets
Type-1 hypervisors have been suggested as a solution to bring your own device (BYOD) for their ability to enforce strong isolation. However, the lack of graphics acceleration support, crucial to goodExpand
  • 5
  • 1
  • Open Access
XNPro: Low-Impact Hypervisor-Based Execution Prevention on ARM
tl;dr
We propose EXecute Never Protection (XNPro), a small Type-I hypervisor that ensures only authorized code is executed by the guest OS kernel even in the case that an adversary gains unfettered control over the guest. Expand
  • 9
The Threat of Virtualization: Hypervisor-Based Rootkits on the ARM Architecture
tl;dr
The virtualization capabilities of today’s systems offer rootkits excellent hideouts, where they are fairly immune to countermeasures. Expand
  • 8
Undermining Isolation Through Covert Channels in the Fiasco.OC Microkernel
tl;dr
System designers have come to recognize the merits of building critical systems on top of small kernels for their ability to provide strong isolation at system level. Expand
  • 6
  • Open Access
Uncloaking Rootkits on Mobile Devices with a Hypervisor-Based Detector
tl;dr
Cell phones have evolved into general purpose computing devices, which are tightly integrated into many IT infrastructures. Expand
  • 5
VOSYSmonitor, a TrustZone-based Hypervisor for ISO 26262 Mixed-critical System
tl;dr
With the emergence of multicore embedded System on Chip (SoC), the integration of several applications with different levels of criticality on the same platform is becoming increasingly popular. Expand
  • 2
  • Open Access
Strengthening system security on the ARMv7 processor architecture with hypervisor-based security mechanisms
tl;dr
The computing landscape has significantly changed over the last decades. Expand
VOSYSVirtualNet: Low-latency Inter-world Network Channel for Mixed-Criticality Systems
tl;dr
Integrating multiple subsystems with different levels of criticality is a well established concept in the automotive domain. Expand