PhD Student
IEEE Symposium on Security and Privacy (S&P)
TREVEX: A Black-Box Detection Framework For Data-Flow Transient Execution Vulnerabilities
ACM Conference on Computer and Communications Security (CCS)
Styled to Steal: The Overlooked Attack Surface in Email Clients
Usenix Security Symposium (USENIX-Security)
Usenix Security Symposium (USENIX-Security)
IEEE Symposium on Security and Privacy (S&P)
Rapid Reversing of Non-Linear CPU Cache Slice Functions: Unlocking Physical Address Leakage
The Web Conference (WWW)
Peripheral Instinct: How External Devices Breach Browser Sandboxes
Microarchitecture Security Conference (uASC)
Hidden in Plain Sight: Scriptless Microarchitectural Attacks via TrueType Font Hinting
Network and Distributed System Security Symposium (NDSS)
Cascading Spy Sheets: Exploiting the Complexity of Modern CSS for Email and Browser Fingerprinting
International Symposium on Research in Attacks Intrusions and Defenses (RAID)
Honey, I Cached our Security Tokens Re-usage of Security Tokens in the Wild
ACM Conference on Computer and Communications Security (CCS)