Claudio Canella @cc0x1f - Twitter Profile

Pinned Tweet

over 6 years ago

Today, we released the new version of our classification tree for transient-execution attacks. Now you can filter for affected vendors, leaking buffer, with or without PoCs, and more. Find the updated version at https://t.co/Qj0MBctRWn. Pull requests and feedback welcome.

cc0x1f's tweet photo. Today, we released the new version of our classification tree for transient-execution attacks. Now you can filter for affected vendors, leaking buffer, with or without PoCs, and more. Find the updated version at https://t.co/Qj0MBctRWn. Pull requests and feedback welcome. https://t.co/6SUoBabb9o

2

49

18

4

0

cc0x1f retweeted

The Michigan Daily @michigandaily

over 4 years ago

#FocalPoint: @UMich administrators were made aware of alleged academic bullying from then-@UMichCSE professor Daniel Genkin. He was later hired by Georgia Tech. Our investigation into previously-undisclosed allegations of abusive behavior against Genkin: https://t.co/8rHz7jG4Dc

0

26

9

1

0

Claudio Canella @cc0x1f

over 4 years ago

Proud to announce that our work on automatically generating Linux seccomp filters won the Best Paper Award at CCSW. Thanks again to my colleagues Mario Werner, @lavados, and @misc0110 for their help.

cc0x1f's tweet photo. Proud to announce that our work on automatically generating Linux seccomp filters won the Best Paper Award at CCSW. Thanks again to my colleagues Mario Werner, @lavados, and @misc0110 for their help. https://t.co/tknA4j4N5n

5

85

15

5

0

cc0x1f retweeted

Lukas Giner @redrabbyte

over 4 years ago

We've open-sourced our mitigation, LVINullify, on https://t.co/3xUWzlw4jJ Big thanks to all my co-authors for their hard work!

0

7

3

0

Who to follow

Michael Schwarz

@misc0110

InfoSec Faculty @ #CISPA. Side-channel attacks. Exploiting microarchitectures. #Meltdown #Spectre #ZombieLoad #SGX #JavaScript #Rowhammer

#InfoSec University Professor @ #TUGraz. #meltdown, #spectre, #rowhammer, cache attacks, sustainable security. Produced a side channel security sitcom.

cc0x1f retweeted

Lukas Giner @redrabbyte

over 4 years ago

Happy to announce my first paper has been accepted at USENIX 2022! @0xhilbert, @cc0x1f , @misc0110, @lavados and I have an in-depth look at the remaining attack surface presented by LVI-Null and propose a targeted (creative😉) mitigation for LVI fixed CPUs https://t.co/68N8U7iaQr

1

36

15

2

0

cc0x1f retweeted

Cat Easdon @cat_easdon

over 4 years ago

Delighted to announce that our paper 'Rapid Prototyping for Microarchitectural Attacks' has been accepted at @USENIXSecurity'22 #usesec22! Preprint at https://t.co/sxZmpbutib. /cc @misc0110 @marv0x90 @lavados @Dynatrace

cat_easdon's tweet photo. Delighted to announce that our paper 'Rapid Prototyping for Microarchitectural Attacks' has been accepted at @USENIXSecurity'22 #usesec22! Preprint at https://t.co/sxZmpbutib. /cc @misc0110 @marv0x90 @lavados @Dynatrace https://t.co/w7o1qUrDPf

3

120

28

17

0

cc0x1f retweeted

Daniel Weber @weber_daniel

about 5 years ago

I am honored to announce that our (ahmad, hamed, @misc0110, @chrossow) work on automatic discovery of side channels was accepted at @USENIXSecurity '21. We developed Osiris, a fuzzer searching for instructions that can be abused as microarchitectural timing side channels. (1/3)

weber_daniel's tweet photo. I am honored to announce that our (ahmad, hamed, @misc0110, @chrossow) work on automatic discovery of side channels was accepted at @USENIXSecurity '21.
We developed Osiris, a fuzzer searching for instructions that can be abused as microarchitectural timing side channels.
(1/3) https://t.co/znq2EZ8IxS

3

89

15

5

0

cc0x1f retweeted

Michael Schwarz @misc0110

about 5 years ago

I'm very proud of my student @weber_daniel who invested a lot of time to turn his (already great) bachelor thesis into a paper. Having a first-author USENIX Security paper is an exceptional start for a PhD! https://t.co/hK6h8l4XwQ

0

50

4

0

cc0x1f retweeted

Geneviève Patterson @genevievemp

about 5 years ago

Walter Lasecki assaulted me. He pinned me against a bar, he put his hand up my skirt and his fingers in my underwear. He grabbed and twisted. He leaned in and insisted that I sleep with him. “It could be innocent,” he said.

11

2K

257

91

0

Claudio Canella @cc0x1f

about 5 years ago

@verarim_ @heydari_be @vanhoefm That matches my experience with defensive research ;)

0

Claudio Canella @cc0x1f

about 5 years ago

@claudiorlandi @gannimo Or just tell reviewers to provide additional feedback on why they rejected the paper. Quick and easy fix because then you eliminate all the speculation and can actually further improve the paper.

0

7

0

cc0x1f retweeted

Black Hat

@BlackHatEvents

about 5 years ago

Enter Sandbox | At this #BHASIA Briefing @cc0x1f & @misc0110 propose a new approach for automatically generating seccomp filters for Linux applications, & show the effectiveness of their new approach in preventing real-world exploits. Learn more: https://t.co/PuZouT54M4

0

23

9

2

0

cc0x1f retweeted

Black Hat

@BlackHatEvents

over 5 years ago

@cc0x1f & @misc0110 propose a new approach for automatically generating seccomp filters for Linux applications, and show the effectiveness of their new approach in preventing real-world exploits with only minimal overhead in #BHASIA Briefing https://t.co/5rSb8tIBR0

0

5

1

0

cc0x1f retweeted

Black Hat

@BlackHatEvents

over 5 years ago

@cc0x1f & @misc0110 propose a new approach for automatically generating seccomp filters for Linux applications, and show the effectiveness of their new approach in preventing real-world exploits with only minimal overhead in #BHASIA Briefing https://t.co/Sf1InBhn1e

0

4

2

0

cc0x1f retweeted

Daniel Gruss @lavados

over 5 years ago

Hey #graz and #german-speaking followers! If you're thinking about what to study, I'm giving a short talk in German @ 17:30 today: https://t.co/bUmK915rll @kleinezeitung

0

4

0

cc0x1f retweeted

Daniel Gruss @lavados

over 5 years ago

Finished my habilitation (venia docendi). Thus, my official title is now "https://t.co/Et6geynYTi. Priv.-Doz. Dipl.-Ing. Dr.techn. BSc" (the "Priv.-Doz." is new). The habilitation thesis is now public on my website: https://t.co/DK4sIcJkN1

lavados's tweet photo. Finished my habilitation (venia docendi). Thus, my official title is now "https://t.co/Et6geynYTi. Priv.-Doz. Dipl.-Ing. Dr.techn. BSc" (the "Priv.-Doz." is new).
The habilitation thesis is now public on my website: https://t.co/DK4sIcJkN1 https://t.co/DItzzX80B1

30

282

43

23

0

Claudio Canella @cc0x1f

over 5 years ago

@danielmgmi @AndrewCMyers @gannimo @thorstenholz But you only mitigate 50% of the vulnerabilities. I need at least 95%

1

0

Claudio Canella @cc0x1f

over 5 years ago

@gannimo @thorstenholz @AndrewCMyers Reviews for defensive papers in a nutshell: Well, I have the feeling that your defense missed something. I don't know what it is but based on this feeling I have to reject it.

2

6

0

cc0x1f retweeted

Andreas Kogler @0xhilbert

over 5 years ago

It was an incredible experience to work on #PLATYPUS as my master's thesis, and then continue working on it in my PhD and seeing it accepted! @mlqxyz @sublevado @misc0110 @cat_easdon @cc0x1f @lavados

0

33

7

0

Claudio Canella @cc0x1f

over 5 years ago

@againsthimself @ben_nassi @thorstenholz This might just be my experience but I never had the impression this year that many people watched the videos which resulted in far less interaction in the Q&A session.

1

0

cc0x1f retweeted

David Oswald @sublevado

over 5 years ago

With #VoltPillager, we show that Intel #SGX is vulnerable to low-cost hardware fault injection attacks - and that SGX cannot protect against an attacker with physical access (like malicious cloud provider). More details: https://t.co/Z2ACYwJVpc @halfdoof @Vge0rge @ZitaiChen

1

74

24

6

0

Claudio Canella

@cc0x1f

Who to follow

Last Seen Users on Sotwe

Trends for you

Most Popular Users