|
Cristiano Giuffrida
@
c_giuffrida
Amsterdam, The Netherlands
|
|
Assistant Professor in Systems Security & Reliability @VUamsterdam. Co-leads @vu5ec
|
|
|
514
Tweetovi
|
281
Pratim
|
648
Osobe koje vas prate
|
| Tweetovi |
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Thorsten Holz
@thorstenholz
|
2. velj |
|
Now that the @USENIXSecurity decisions for the fall deadline are sent out a quick reminder: we organize an artifact evaluation, you can register your paper until February 4 and then submit the artifact by February 7. Details are available at usenix.org/conference/use… #usesec20
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Lorenzo Cavallaro
@lcavallaro
|
27. sij |
|
Are you working on thought-provoking and/or preliminary yet promising systems security research? Wait no longer and submit your work to @EuroSecWorkshop 2020 (co-located with @EuroSys_conf)! Deadline Feb 20, 2020 - w00t w00t :-) twitter.com/EuroSecWorksho…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
VUSec
@vu5ec
|
27. sij |
|
Another day, another #RIDL embargo and addendum! “New” (not really!) variants of the day: L1D evictions (Fig 6, RIDL paper) or #L1DES and vector registers or #VRS. See mdsattacks.com. As a bonus: a faster RIDL exploit that leaks a root hash in 4s: youtube.com/watch?v=4DQAcC…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
EuroSec Workshop
@EuroSecWorkshop
|
27. sij |
|
This year it took us a little while longer, but of course we are going to have another great workshop at @EuroSys_conf 2020 🙃 You find the #cfp here: concordia-h2020.eu/eurosec-2020/#… pic.twitter.com/qaRDyu5MhN
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Davide Balzarotti
@balzarot
|
23. sij |
|
The Security Circus 2019 update is now online:
s3.eurecom.fr/~balzarot/note…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
VUSec
@vu5ec
|
14. sij |
|
Our NDSS paper, ABSynthe is now online:
download.vusec.net/papers/absynth…
ABSynthe takes a target program and a microarchitecture and automatically synthesizes new side channels. With cool leakage maps!
@bjg @c_giuffrida @kavehrazavi @mik__ @herbertbos
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
DIMVA Conference
@DIMVAConf
|
6. sij |
|
The DIMVA 2020 Call for Papers is out.
Submission deadline: 16/02/2020.
Get the #DIMVA2020 #CFP: dimva2020.campus.ciencias.ulisboa.pt/dimva2020-cfp.…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Erik Bosman
@brainsmoke
|
18. pro |
|
I have retroactively fixed everybody's complaint about movie hacking/reverse engineering not being realistic. #hexdumpinstyle pic.twitter.com/J02WHUxhtv
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
VUSec
@vu5ec
|
4. pro |
|
We compiled a long list of Threats to Validity/Relevance in Security Research for our students, building on common sense & our papers on malware experiments and on benchmarking (and inspired by @GernotHeiser's excellent blog). Perhaps useful for others?
bit.ly/2XAUtmS
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Financial Times
@FinancialTimes
|
13. stu |
|
Intel is still working to close a potentially damaging loophole in its chip architecture that could allow hackers to steal data, almost two years after the issue was disclosed on.ft.com/2qJLaVB
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Stephan van Schaik
@themadstephan
|
12. stu |
|
In other news #RIDL Rogue In-Flight Data Load won the 2nd place for Applied Research at @CsawEurope 2019. I met many nice and interesting people at the poster presentation :). @noopwafel @sirmx @pit_frg @kavehrazavi @c_giuffrida @herbertbos @vu5ec pic.twitter.com/I5rEjkKqEU
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Kim Zetter
@KimZetter
|
12. stu |
|
Even the patch Intel released today still doesn't address all of the vulns the researchers submitted to the company - and it still leaves unfixed the core issue from which all of the vulnerabilities arise.
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Kim Zetter
@KimZetter
|
12. stu |
|
When Intel released patch for CPU vulns last May, it said the patch fixed all the vulns. But researchers at @vu5ec say this isn't true and Intel knew it. Intel asked them not to disclose this and to alter conf. paper about the vulns. My story for @nytimes nytimes.com/2019/11/12/tec…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
VUSec
@vu5ec
|
12. stu |
|
Long embargos without transparency hurt endusers who remain unknowingly exposed to serious flaws. @KimZetter covers our #RIDL saga with @Intel in her @NYTimes piece. #RIDL remains a problem after 1+ year, 2 flawed patches and 2 embargos (+1 still ongoing). nytimes.com/2019/11/12/tec…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Andy Greenberg
@a_greenberg
|
12. stu |
|
Microarchitectural processor vulnerabilities like Spectre and Meltdown were bad, but at least Intel fixed them promptly. Now it seems another deep-seated chip flaw lingered in Intel’s silicon for more than a year after the company was warned about it. wired.com/story/intel-md…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Kav
@kavehrazavi
|
12. stu |
|
@noopwafel deserves a lot of credit for this. She is better at finding #RIDL variants than #Intel engineers. Also kudos to Jonas Theis, our master student who put together the fast /etc/shadow exploit as a term project! @vu5ec twitter.com/vu5ec/status/1…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
VUSec
@vu5ec
|
12. stu |
|
Video shows #RIDL leaking root password hash in default settings in 30s! @themadstephan @noopwafel @pit_frg @sirmc @kavehrazavi @herbertbos @c_giuffrida
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Gernot Heiser
@GernotHeiser
|
30. lis |
|
Immensely honoured to have been involved in this work, and it being recognised for its long-term impact #sel4 twitter.com/bipartite/stat…
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Laura Ferranti
@ferranti_laura
|
24. lis |
|
Are you interested in #platooning and #ridesharing applications? Would you like to explore #privacy and #security issues in these domains? Then check our vacancy for a Postdoc on "Privacy-preserving Algorithms for #Robot Motion Planning":
academictransfer.com/nl/286536/post…
#tudelft
|
||
|
|
||
| Cristiano Giuffrida proslijedio/la je tweet | ||
|
Mathias Payer
@gannimo
|
24. lis |
|
Visiting @vu5ec as a committee member for the wizard convention^Z @vvdveen's defense, who successfully passed with just a little help from his paranymphs. Congratulations! pic.twitter.com/9Sl0PyOHJ1
|
||
|
|
||