Marius Momeu
Marius Momeu
Wimi
| Address: | Technische Universität München |
| Phone: | +49 (0)89 289-18592 |
| Fax: | +49 (0)89 289-18579 |
| E-Mail: | Marius Momeu |
| Room: | 01.08.057 |
Research Interests
My area of research covers the follwoing cybersecurity topics:
Software Memory Corruption Vulnerabilities and Mitigations
- for system and user software written in memory unsafe languages (e.g., C/C++)
- e.g., OS kernels, unikernels, containers, hypervisors, userland services, etc.
- hardening techniques via hardware extensions (e.g., VT-x, MPK, PAC, etc.)
- anatomy of code-reuse attacks, data-oriented attacks, heap flaws, etc.
- in-process data and code memory isolation techniques
Automated Software Testing via Fuzzing & Symbolic Execution
- targeting large stateful software such as OS kernels (e.g. the Linux kernel) and hypervisors (e.g. Xen)
- assisted by coverage tracing, data-flow and control-flow analysis
Trusted Execution Environments (TEE) and Confidential Computing
- covering attacks and applications across existing technologies (SGX, TrustZone, and AMD SME/SEV)
Software Mitigations for Microarchitectural Flaws
- Meltdown, Spectre, Foreshadow, etc.
Secure & Anonymous Online Voting Systems
- online voting architecture design (secure software stack, resilient network topology, anonymity, verifiability)
- vulnerabilities in existing online voting platforms
Student Topics
Open
- BA/MA/GR - Kernel/Microkernel/Unikernel Isolation
- BA/MA/GR - Hypervisor Fuzzing
In Progress
Teaching
Summer Semester 2021
- Systems Hardening Seminar
- (In)Security of Online Voting Seminar
Winter Semester 2020/2021
- Systems Hardening Seminar
Master's Thesis
Hardening the Linux Kernel Slab Allocator
Publications
| 2020 | xMP: Selective Memory Protection for Kernel and User Space | |
| 2018 | Hiding in the Shadows: Empowering ARM for Stealthy Virtual Machine Introspection |