TEEcorrelate: An Information-Preserving Defense against Performance-Counter Attacks on TEEs

Hannes Weissteiner, Fabian Rauscher, Robin Leander Schröder, Jonas Juffinger, Stefan Gast, Jan Wichelmann, Thomas Eisenbarth, Daniel Gruss

USENIX Security 2025

Real-World Study of the Security of Educational Test Systems

Stefan Gast, Sebastian Daniel Felix, Alexander Steinmaurer, Jonas Juffinger, Daniel Gruss

OSVS 2025

CounterSEVeillance: Performance-Counter Attacks on AMD SEV-SNP

Stefan Gast, Hannes Weissteiner, Robin Leander Schröder, Daniel Gruss

NDSS 2025

SLUBStick: Arbitrary Memory Writes through Practical Software Cross-Cache Attacks within the Linux Kernel

Lukas Maar, Stefan Gast, Martin Unterguggenberger, Mathias Oberhuber, Stefan Mangard

USENIX Security 2024

SnailLoad: Exploiting Remote Network Latency Measurements without JavaScript

Stefan Gast, Roland Czerny, Jonas Juffinger, Fabian Rauscher, Simone Franza, Daniel Gruss

USENIX Security 2024

Website

Divide and Surrender: Exploiting Variable Division Instruction Timing in HQC Key Recovery Attacks

Robin Leander Schröder, Stefan Gast, Qian Guo

USENIX Security 2024

Remote Scheduler Contention Attacks

Stefan Gast, Jonas Juffinger, Lukas Maar, Christoph Royer, Andreas Kogler, Daniel Gruss

FC 2024

SQUIP: Exploiting the Scheduler Queue Contention Side Channel

Stefan Gast, Jonas Juffinger, Martin Schwarzl, Gururaj Saileshwar, Andreas Kogler, Simone Franza, Markus Köstl, Daniel Gruss

IEEE S&P 2023

Systematic Analysis of Programming Languages and Their Execution Environments for Spectre Attacks

Amir Naseredini, Stefan Gast, Martin Schwarzl, Pedro Miguel Sousa Bernardo, Amel Smajic, Claudio Canella, Martin Berger, Daniel Gruss

ICISSP 2022