Recent publications
Article
Chen, Z & Oswald, D 2023, 'PMFault: Faulting and Bricking Server CPUs through Management Interfaces: Or: A Modern Example of Halt and Catch Fire', IACR Transactions on Cryptographic Hardware and Embedded Systems, vol. 2023, no. 2.
Alder, F, Van Bulck, J, Spielman, J, Oswald, D & Piessens, F 2022, 'Faulty point unit: ABI poisoning attacks on trusted execution environments', Digital Threats: Research and Practice, vol. 3, no. 2, 13, pp. 1-26. https://doi.org/10.1145/3491264
Xu, Z, Pemberton, OM, Roy, SS, Oswald, D, Yao, W & Zheng, Z 2021, 'Magnifying side-channel leakage of lattice-based cryptosystems with chosen ciphertexts: the case study of Kyber', IEEE Transactions on Computers. https://doi.org/10.1109/TC.2021.3122997
Van Den Herrewegen, J, Oswald, D, Garcia, F & Temeiza, Q 2020, 'Fill your Boots: Enhanced Embedded Bootloader Exploits via Fault Injection and Binary Analysis', IACR Transactions on Cryptographic Hardware and Embedded Systems, vol. 2021, no. 1. https://doi.org/10.46586/tches.v2021.i1.56-81
Murdock, K, Oswald, D, Garcia, F, Van Bulck, J, Gruss, D & Piessens, F 2020, 'Plundervolt: How a Little Bit of Undervolting Can Create a Lot of Trouble', IEEE Security & Privacy Magazine, vol. 18, no. 5, pp. 28-37. https://doi.org/10.1109/MSEC.2020.2990495
Conference contribution
Aldoseri, A, Chothia, T, Moreira-Sanchez, J & Oswald, D 2023, Symbolic verification for device and application integrity remote attestation protocols on Android. in Proceedings of AsiaCCS 2023.
Aldoseri, A, Oswald, D & Chiper, R 2022, A tale of four gates: privilege escalation and permission bypasses on android through app components. in V Atluri, R Di Pietro, CD Jensen & W Meng (eds), Computer Security – ESORICS 2022: 27th European Symposium on Research in Computer Security, Copenhagen, Denmark, September 26–30, 2022, Proceedings, Part II. 1 edn, Lecture Notes in Computer Science, vol. 13555, Springer, pp. 233–251. https://doi.org/10.1007/978-3-031-17146-8_12
Zhang, M, Marin, E, Oswald, D & Singelée, D 2022, FuzzyKey: comparing fuzzy cryptographic primitives on resource-constrained devices. in V Grosso & T Pöppelmann (eds), Smart Card Research and Advanced Applications - 20th International Conference, CARDIS 2021, Revised Selected Papers: 20th International Conference, CARDIS 2021, Lübeck, Germany, November 11–12, 2021, Revised Selected Papers. Lecture Notes in Computer Science, vol. 13173, Springer Verlag, pp. 289-309, 20th Smart Card Research and Advanced Application Conference, Lübeck, Germany, 11/11/21. https://doi.org/10.1007/978-3-030-97348-3_16
Xu, Z, Pemberton, O, Oswald, D & Zheng, Z 2022, Reveal the invisible secret: chosen-ciphertext side-channel attacks on NTRU. in Proceedings of the 21st Smart Card Research and Advanced Application Conference (CARDIS) 2022. Lecture Notes in Computer Science, Springer, 21st Smart Card Research and Advanced Application Conference, Birmingham, United Kingdom, 7/11/22.
Aldoseri, A & Oswald, D 2022, insecure:// Vulnerability analysis of URI scheme handling in Android mobile browsers. in Proceedings of MADWeb 2022: Workshop on Measurements, Attacks, and Defenses for the Web. Proceedings of the Workshop on Measurements, Attacks, and Defenses for the Web (MADWeb), The Internet Society, Workshop on Measurements, Attacks, and Defenses for the Web (MADWeb) 2022
, 28/04/22.
Lipp, M, Kogler, A, Oswald, D, Schwarz, M, Easdon, C, Canella, C & Gruss, D 2021, PLATYPUS: software-based power side-channel attacks on x86. in 2021 IEEE Symposium on Security and Privacy (SP). Proceedings of the IEEE Symposium on Security and Privacy, IEEE Computer Society Press, pp. 355-371, 42nd IEEE Symposium on Security and Privacy (IEEE S&P 2021), virtual event, 24/05/21. https://doi.org/10.1109/SP40001.2021.00063.
Alder, F, Van Bulck, J, Oswald, D & Piessens, F 2020, Faulty Point Unit: ABI Poisoning Attacks on Intel SGX. in ACSAC '20: Annual Computer Security Applications Conference 2020. Association for Computing Machinery (ACM), pp. 415-427, ACSAC '20: Computer Security Applications Conference 2020, virtual event, 7/12/20. https://doi.org/10.1145/3427228.3427270
Murdock, K, Oswald, D, Garcia, F, Van Bulck, J, Gruss, D & Piessens, F 2020, Plundervolt: software-based fault injection attacks against Intel SGX. in 2020 IEEE Symposium on Security and Privacy (SP)., 9152636, IEEE Symposium on Security and Privacy, IEEE Computer Society Press, pp. 1466-1482, 41st IEEE Symposium on Security and Privacy, San Francisco, United States, 17/05/20. https://doi.org/10.1109/SP40000.2020.00057
Chen, Z, Vasilakis, G, Murdock, K, Dean, E, Oswald, D & Garcia, F 2020, VoltPillager: Hardware-based fault injection attacks against Intel SGX Enclaves using the SVID voltage scaling interface. in Proceedings of 30th Usenix Security Symposium (USENIX Security 21). USENIX , 30th USENIX Security Symposium 2021 (USENIX Security 21), Vancouver, Canada, 11/08/21.
Van Bulck, J, Oswald, D, Marin, E, Aldoseri, A, Garcia, FD & Piessens, F 2019, A tale of two worlds: assessing the vulnerability of enclave shielding runtimes. in CCS '19 : Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security. Association for Computing Machinery (ACM), pp. 1741-1758, 26th ACM SIGSAC Conference on Computer and Communications Security (CCS 2019), London, United Kingdom, 11/11/19. https://doi.org/10.1145/3319535.3363206
View all publications in research portal