We have an opening for an exciting #interdisciplinary #PostDoc at the intersection of #Security and #Privacy and tech #policy at @PolytechBXL. Application deadline is 2023-08-26 AoE. Talk to me if you are interested! #postdocposition #TechPolicy #Brussels cybersecurity.ulb.ac.be/ulb-cyber-2023…

Excited to share that our paper on verifying the side-channel guarantees of RTL processor designs has been accepted at ACM CCS 2025 2023! Preprint available at arxiv.org/abs/2305.06979. Joint work with my student Zilong Wang, Klaus Gleissenthall , Jan Reineke and Gideon Mohr (1/2)

Great faculty opportunity at the Group T Campus of KU Leuven (Belgium): Professor in software systems and software development for edge computing. Both junior and senior people can apply. Juniors will start in a tenure track! For the full info see kuleuven.be/personeel/jobs…

📣 The deadline for submitting to the #Cybersecurity Artifact Competition & Impact #Award at #ACSAC2023 has been extended to 2nd October! 📣 If you did not have the chance yet, submit your artifact now! All infos at: acsac.org/2023/submissio…

A great 3-day workshop on "Formal Methods & Security", organized in the lovely Oléron island in France. gtmfs2024.sciencesconf.org Security from hardware to code and protocols, all kinds of formal methods welcome (even under-approximations :-) Still time to register!

Got a recently published work you want everyone to know about? 🤯 Have a new exciting idea to share? 💡 Is it about programming languages or analysis for security? 🤔 😎 Perfect, you still have 10 days to submit to PLAS! plas24.github.io

It is not too late to submit your awesome work to PLAS! Submission deadline has been extended to June 30th.

Finally arrived at Copenhagen for PLDI. I will be mostly at the PLMW workshop tomorrow. If you are looking for a PhD or postdoc position around PL, FM and low-level security (binary code, reverse, malware, vulnerability analysis, etc.), let's chat

Are you interested in #Rust and OS security? We have a PhD position opened in the #SUSHI team Centre Inria de l'Université de Rennes CentraleSupélec IRISA on "Type-based security properties assurance in operating systems". You can contact us by mail or DM. team.inria.fr/sushi/files/20…

Today, IEEE CSF awarded the Test-of-time to four papers among all appeared in any of the 27 editions before 2014. One of them is this one, which I had the pleasure (and fun!) to coauthor with Tamara Rezk and Gilles Barthe. I am really happy 😊

With the #GhostWrite CPU vulnerability, all isolation boundaries are broken - sandbox/container/VM can't prevent GhostWrite from writing and reading arbitrary physical memory on affected RISC-V CPUs. Deterministic, fast, and reliable - no side channels. ghostwriteattack.com

Finally, a practical cryptographic side channel attack “in the wild”! Sort of. ninjalab.io/eucleak/

Telegram may start “moderating private chats.” This seems like a decision that would only be possible in a non-E2E messenger. theverge.com/2024/9/5/24237…

The program for PLAS is online: plas24.github.io! Are you into formal methods/PL for security? Then join our workshop, colocated with CCS, on Oct. 14th in Salt Lake City! We have 2 keynotes by Natasha Fernandes and Binoy Ravindran and 8 promising presentations!

About 250 scientists from 31 countries have signed another open letter homes.esat.kuleuven.be/~preneel/Open_… criticizing the latest EU #chatcontrol draft patrick-breyer.de/wp-content/upl…. The letter confirms 2 earlier letters from July 2023 edri.org/wp-content/upl… and May 2024 nce.mpi-sp.org/index.php/s/eq…

Guess what? #IBPB (the speculation barrier) was broken in microcode for return instructions on the latest Intel CPUs. Linux also used it wrongly for AMD CPUs, so we could revive #Inception!

Our paper with Hans Winderix, Lesly-Ann Daniel, and Frank Piessens received the distinguished paper award at ACM CCS 2025! If you are interested in mitigating control-flow leakage, read the paper mici.hu/papers/winderi… and check out the repository github.com/proteus-core/l…