Today my PhD student Dr. @anavybor brilliantly defended her thesis: Urban data science for sustainable mobility ๐คฉ #proudadvisor
Thesis: https://en.itu.dk/Research/PhD-Programme/PhD-Defences/PhD-Defences-2025/March/Anastassia-Vybornova
Today my PhD student Dr. @anavybor brilliantly defended her thesis: Urban data science for sustainable mobility ๐คฉ #proudadvisor
Thesis: https://en.itu.dk/Research/PhD-Programme/PhD-Defences/PhD-Defences-2025/March/Anastassia-Vybornova
As we welcome 2025, I'd like to take a moment to reflect on what an extraordinary year 2024 has been for Brown CS Secure Systems Lab (https://gitlab.com/brown-ssl/). It has been a year of innovation, creativity, and growthโboth for the lab and for me personally as its director. Witnessing the passion, dedication, and brilliance of our teamโNeophytos Christou, Alexander Gaidis, Marius Momeu, @dijin, and Vaggelis Atlidakisโhas been truly fulfilling and inspiring!
In 2024, we tackled complex challenges and made significant strides in advancing our research on software hardening and OS kernel protection. Here are some highlights from this remarkable year:
โณ๏ธ Marius Momeu presented #SafeSlab at @acm_ccs #CCS2024. Safeslab hardens the Linux SLUB allocator against exploits that abuse use-after-free (#UaF) vulnerabilities, using #Intel #MPK. (Joint work with Technical University of Munich and @mikepo.)
๐ https://cs.brown.edu/~vpk/papers/safeslab.ccs24.pdf
๐พ https://github.com/tum-itsec/safeslab
โณ๏ธ Neophytos Christou presented #Eclipse at @acm_ccs #CCS2024. Eclipse is a compiler-assisted framework that propagates artificial data dependencies onto sensitive data, preventing the CPU from using attacker-controlled input during speculative execution.
๐ https://cs.brown.edu/~vpk/papers/eclipse.ccs24.pdf
๐พ https://gitlab.com/brown-ssl/eclipse
โณ๏ธ Di Jin presented #BeeBox at the @usenixassociation Security Symposium 2024. BeeBox hardens #Linux BPF/eBPF against transient execution attacks. #usesec24
๐ https://cs.brown.edu/~vpk/papers/beebox.sec24.pdf
๐พ https://gitlab.com/brown-ssl/beebox
โณ๏ธ Yaniv David presented #Quack at the NDSS Symposium 2024. Quack hardens PHP code against deserialization attacks using a novel (static) duck typing-based approach. (Joint work with Andreas D Kellas and Junfeng Yang.) #NDSSsymposium2024
๐ https://cs.brown.edu/~vpk/papers/quack.ndss24.pdf
๐พ https://github.com/columbia/quack
โณ๏ธ Marius Momeu presented #ISLAB at @ACM #ASIACCS24. ISLAB hardens SLAB-based (kernel) allocators, against memory errors, via SMAP-assisted isolation. (Joint work with Technical University of Munich and @mikepo.) #asiaccs
๐ https://cs.brown.edu/~vpk/papers/islab.asiaccs24.pdf
๐พ https://github.com/tum-itsec/islab
๐ #EPF (presented by Di Jin at @usenixassociation #ATC 2023) was the runner-up for the "Bug of the Year" award ("Weirdest Machine" category) at IEEE Symposium on Security and Privacy LangSec (Language-Theoretic Security) workshop 2024! #atc23 #LangSec
โจ๏ธ https://langsec.org/spw24/bugs-of-the-year-awards.html
๐ https://cs.brown.edu/~vpk/papers/epf.atc23.pdf
๐พ https://gitlab.com/brown-ssl/epf
๐ I am honored and delighted to have received the "Distinguished Reviewer Award" at @acm_ccs #CCS2024!
๐
Alexander Gaidis has been awarded the "Distinguished Artifact Reviewer" award at the @usenixassociation Security Symposium 2024!
https://cs.brown.edu/news/2024/09/20/brown-cs-phd-student-alexander-j-gaidis-has-been-named-a-usenix-security-2024-distinguished-artifact-reviewer/
#usesec24 #proudadvisor
๐ข I had the great pleasure of discussing some of these works recently at the Computer Systems Seminar at Boston University!
๐ฝ๏ธ https://www.bu.edu/rhcollab/events/bu-systems-bu%E2%99%BAs-seminar/
Two of my #undergraduate students just got #NSFGRFP for 3 years of support during their #PhD . They are starting #gradschool in September, and I'm over the moon for them. #professorlife #proudadvisor #gfrp
Our paper "Tabbed Out: Subverting the Android Custom Tab Security Model" got accepted at IEEE S&P 2024! Watch out this space for the preprint if you're into mobile & web (in)security. Congrats to my coauthors from TU Wien: Philipp Beer, Lorenzo Veronese, and Martina Lindorfer!
This is a follow-up to Philipp's thesis that resulted in a preliminary paper discussed last year at the #secweb workshop! Congrats to Philipp, and looking forward to more cool research together ๐ฅ #proudadvisor
Today, some of my amazing undergrad RAs (https://acdmammoths.github.io) learned about git
rebasing and squashing. It was some of the most fun I've ever had explaining something. It is also such an important skill for a productive programmer (i.e., computer scientist), and I wished someone explained it to me when I was an undergrad. Their feature branches had no conflicts when rebasing on top of main
(pheew), so we'll cover conflict resolution another time. #professorlife #proudadvisor #datamammoths
๐ Graduated two Ph.D. students today at the Beautiful Kodak Hall of Eastman Theater. ๐
Congratulations to Kamrul Hasan (Ph.D. #6) and Raiyan Abdul Baten (Ph.D. #7). ๐
Kamrul has joined META as a research scientist, and Raiyan will join the University of South Florida as an Assistant Professor of Computer Science. ๐
While I will miss them, I am thrilled for their bright future ahead. The best is yet to come! ๐๐๐ #ProudAdvisor
Congratulations to Dr. Seyedhamed Ghavamnia (@s_hamedgh) who successfully defended his dissertation! #ProudAdvisor
My student and coauthor Stefan Walzer-Goldfeld was selected as a finalist for the CRA Outstanding Undergraduate Researcher award ๐
. He was one of only four awardees/runner-ups/finalists from SLACs. #proudadvisor moment #professorlife
https://cra.org/about/awards/outstanding-undergraduate-researcher-award/โ
#ProudAdvisor day
The first, 1st-author paper by @sgrouffal, who just started a #PhD with me, is now fully published on #AandA. Hence, it will be a Grouffal et al. (2022).
She wrote that paper during her #Master #thesis (also with me as supervisor).
Salomรฉ started her #PhD in October this year, and she is already writing a second 1st-author #paper.
Keep on the good work @sgrouffal ๐
Open-access paper link: https://www.aanda.org/articles/aa/full_html/2022/12/aa44182-22/aa44182-22.html