\n
\n\n \n \n \n \n \n \n RemembERR: Leveraging Microprocessor Errata for Design Testing and Validation.\n \n \n \n \n\n\n \n Flavien Solt; Patrick Jattke; and Kaveh Razavi.\n\n\n \n\n\n\n In
MICRO, October 2022. \n
\n\n
\n\n
\n\n
\n\n \n \n Paper\n \n \n \n URL\n \n \n\n \n\n \n link\n \n \n\n bibtex\n \n\n \n\n \n \n \n 46 downloads\n \n \n\n \n \n \n \n \n \n \n\n \n \n \n \n \n \n \n \n \n \n \n \n \n\n\n\n
\n
@inproceedings{solt_rememberr_2022,\n\ttitle = {{RemembERR: Leveraging Microprocessor Errata for Design Testing and Validation}},\n\turl = {Paper=https://comsec.ethz.ch/wp-content/files/rememberr_micro22.pdf URL=https://comsec.ethz.ch/research/hardware-design-security/rememberr},\n\tbooktitle = {{MICRO}},\n\tauthor = {Solt, Flavien and Jattke, Patrick and Razavi, Kaveh},\n\tmonth = oct,\n\tyear = {2022},\n\tkeywords = {dir\\_designsec, proj\\_lastbug, proj\\_promise, proj\\_nccr, type\\_tier1}\n}\n\n
\n
\n\n\n\n
\n
\n\n \n \n \n \n \n \n Retbleed: Arbitrary Speculative Code Execution with Return Instructions.\n \n \n \n \n\n\n \n Johannes Wikner; and Kaveh Razavi.\n\n\n \n\n\n\n In
USENIX Security, August 2022. \n
Intel Bounty Reward, CSAW Europe finalist\n\n
\n\n
\n\n
\n\n \n \n Paper\n \n \n \n URL\n \n \n\n \n\n \n link\n \n \n\n bibtex\n \n\n \n\n \n \n \n 67 downloads\n \n \n\n \n \n \n \n \n \n \n\n \n \n \n \n \n \n \n \n \n\n\n\n
\n
@inproceedings{wikner_retbleed_2022,\n\ttitle = {{Retbleed: Arbitrary Speculative Code Execution with Return Instructions}},\n\turl = {Paper=https://comsec.ethz.ch/wp-content/files/retbleed_sec22.pdf URL=https://comsec.ethz.ch/research/microarch/retbleed},\n\tbooktitle = {{USENIX Security}},\n\tauthor = {Wikner, Johannes and Razavi, Kaveh},\n\tnote = {Intel Bounty Reward, CSAW Europe finalist},\n\tmonth = aug,\n\tyear = {2022},\n\tkeywords = {dir\\_microarch, type\\_tier1, proj\\_promise}\n}\n\n
\n
\n\n\n\n
\n
\n\n \n \n \n \n \n \n ProTRR: Principled yet Optimal In-DRAM Target Row Refresh.\n \n \n \n \n\n\n \n Michele Marazzi; Patrick Jattke; Flavien Solt; and Kaveh Razavi.\n\n\n \n\n\n\n In
S&P, May 2022. \n
Patent pending, ETH Spark Award Nomination, CSAW Europe finalist\n\n
\n\n
\n\n
\n\n \n \n Paper\n \n \n \n URL\n \n \n\n \n\n \n link\n \n \n\n bibtex\n \n\n \n\n \n \n \n 33 downloads\n \n \n\n \n \n \n \n \n \n \n\n \n \n \n \n \n \n \n \n \n \n \n \n \n\n\n\n
\n
@inproceedings{marazzi_protrr_2022,\n\ttitle = {{ProTRR}: {Principled} yet {Optimal} {In-DRAM} {Target Row Refresh}},\n\turl = {Paper=https://comsec.ethz.ch/wp-content/files/protrr_sp22.pdf URL=https://comsec.ethz.ch/research/dram/protrr},\n\tbooktitle = {{S\\&P}},\n\tnote = {Patent pending, ETH Spark Award Nomination, CSAW Europe finalist},\n\tauthor = {Marazzi, Michele and Jattke, Patrick and Solt, Flavien and Razavi, Kaveh},\n\tmonth = may,\n\tyear = {2022},\n\tkeywords = {dir\\_dram, proj\\_mfs, proj\\_nccr, type\\_conf, type\\_tier1}\n}\n\n
\n
\n\n\n\n
\n
\n\n \n \n \n \n \n \n Blacksmith: Scalable Rowhammering in the Frequency Domain.\n \n \n \n \n\n\n \n Patrick Jattke; Victor Veen; Pietro Frigo; Stijn Gunter; and Kaveh Razavi.\n\n\n \n\n\n\n In
S&P, May 2022. \n
\n\n
\n\n
\n\n
\n\n \n \n Paper\n \n \n \n URL\n \n \n\n \n\n \n link\n \n \n\n bibtex\n \n\n \n\n \n \n \n 290 downloads\n \n \n\n \n \n \n \n \n \n \n\n \n \n \n \n \n \n \n \n \n \n \n \n \n\n\n\n
\n
@inproceedings{jattke_blacksmith_2022,\n\ttitle = {{Blacksmith}: {Scalable} {Rowhammering} in the {Frequency} {Domain}},\n\turl = {Paper=https://comsec.ethz.ch/wp-content/files/blacksmith_sp22.pdf URL=https://comsec.ethz.ch/research/dram/blacksmith},\n\tbooktitle = {{S\\&P}},\n\tauthor = {Jattke, Patrick and van der Veen, Victor and Frigo, Pietro and Gunter, Stijn and Razavi, Kaveh},\n\tmonth = may,\n\tyear = {2022},\n\tkeywords = {dir\\_dram, proj\\_mfs, proj\\_nccr, type\\_conf, type\\_tier1}\n}\n\n\n
\n
\n\n\n\n
\n
\n\n \n \n \n \n \n \n Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel.\n \n \n \n \n\n\n \n Brian Johannesmeyer; Jakob Koschel; Kaveh Razavi; Herbert Bos; and Cristiano Giuffrida.\n\n\n \n\n\n\n In
NDSS, April 2022. \n
\n\n
\n\n
\n\n
\n\n \n \n Paper\n \n \n\n \n\n \n link\n \n \n\n bibtex\n \n\n \n\n \n \n \n 517 downloads\n \n \n\n \n \n \n \n \n \n \n\n \n \n \n \n \n \n \n \n \n\n\n\n
\n
@inproceedings{johannesmeyer_kasper_2022,\n\ttitle = {Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel},\n\turl = {Paper=https://comsec.ethz.ch/wp-content/files/kasper_ndss22.pdf},\n\tbooktitle = {{NDSS}},\n\tauthor = {Johannesmeyer, Brian and Koschel, Jakob and Razavi, Kaveh and Bos, Herbert and Giuffrida, Cristiano},\n\tmonth = apr,\n\tyear = {2022},\n\tkeywords = {dir\\_microarch, type\\_conf, type\\_tier1}\n}\n\n
\n
\n\n\n\n
\n
\n\n \n \n \n \n \n \n DupeFS: Leaking Data Over the Network With Filesystem Deduplication Side Channels.\n \n \n \n \n\n\n \n Andrei Bacs; Saidgani Musaev; Kaveh Razavi; Cristiano Giuffrida; and Herbert Bos.\n\n\n \n\n\n\n In
FAST, February 2022. \n
\n\n
\n\n
\n\n
\n\n \n \n Paper\n \n \n\n \n\n \n link\n \n \n\n bibtex\n \n\n \n\n \n \n \n 127 downloads\n \n \n\n \n \n \n \n \n \n \n\n \n \n \n \n \n \n \n \n \n \n \n\n\n\n
\n
@inproceedings{dupefs_bacs_2022,\n\ttitle = {DupeFS: Leaking Data Over the Network With Filesystem Deduplication Side Channels},\n\turl = {Paper=https://comsec.ethz.ch/wp-content/files/dupefs_fast22.pdf},\n\tbooktitle = {{FAST}},\n\tauthor = {Bacs, Andrei and Musaev, Saidgani and Razavi, Kaveh and Giuffrida, Cristiano and Bos, Herbert},\n\tmonth = feb,\n\tyear = {2022},\n\tkeywords = {dir\\_os, dir\\_peripheral, type\\_conf, type\\_tier1}\n}\n\n
\n
\n\n\n\n