TUM Logo

Marius Momeu

Marius Momeu

Wimi

Address:

Technische Universität München
Chair for IT Security (I20)
Boltzmannstraße 3
85748 Garching (near Munich)
Germany


Phone: +49 (0)89 289-18592
Fax: +49 (0)89 289-18579
E-Mail:
Room: 01.08.057


Research Interests

 

My area of research covers the follwoing cybersecurity topics:

Software Memory Corruption Vulnerabilities and Mitigations

  • for system and user software written in memory unsafe languages (e.g., C/C++)
    • e.g., OS kernels, unikernels, containers, hypervisors, userland services, etc.
  • hardening techniques via hardware extensions (e.g., VT-x, MPK, PAC, etc.)
  • anatomy of code-reuse attacks, data-oriented attacks, heap flaws, etc.
  • in-process data and code memory isolation techniques

Automated Software Testing via Fuzzing & Symbolic Execution

  • targeting large stateful software such as OS kernels (e.g. the Linux kernel) and hypervisors (e.g. Xen)
  • assisted by coverage tracing, data-flow and control-flow analysis

Trusted Execution Environments (TEE) and Confidential Computing

  • covering attacks and applications across existing technologies (SGX, TrustZone, and AMD SME/SEV)

Software Mitigations for Microarchitectural Flaws

  • Meltdown, Spectre, Foreshadow, etc.

Secure & Anonymous Online Voting Systems

  • online voting architecture design (secure software stack, resilient network topology, anonymity, verifiability)
  • vulnerabilities in existing online voting platforms

Student Topics

Open

  • BA/MA/GR - Kernel/Microkernel/Unikernel Isolation
  • BA/MA/GR - Hypervisor Fuzzing

In Progress


Teaching

Summer Semester 2021

Winter Semester 2020/2021


Master's Thesis

Hardening the Linux Kernel Slab Allocator


Publications

2020 xMP: Selective Memory Protection for Kernel and User Space
2018 Hiding in the Shadows: Empowering ARM for Stealthy Virtual Machine Introspection