About Me

I am an PhD student at in the Secure Systems group at the Institute of Applied Information Processing and Communications at Graz University of Technology. I am the founder of pwmt.org, an open-source community creating functional and simplistic applications and libraries. I am interested in microarchitectural side-channel attacks and apiculture.

If you have any questions or just want to get in touch, feel free to contact me!

Publications

2018
Meltdown

Moritz Lipp, Michael Schwarz, Daniel Gruss, Thomas Prescher, Werner Haas, Stefan Mangard, Paul Kocher, Daniel Genkin, Yuval Yarom, Mike Hamburg

Paper
Website
Spectre Attacks
Exploiting Speculative Execution

Paul Kocher, Daniel Genkin, Daniel Gruss, Werner Haas, Mike Hamburg, Moritz Lipp, Stefan Mangard, Thomas Prescher, Michael Schwarz, Yuval Yarom

Paper
Website
JavaScript Zero
Real JavaScript and Zero Side-Channel Attacks

Michael Schwarz, Moritz Lipp, Daniel Gruss

Paper
Github
KeyDrown
Eliminating Software-Based Keystroke Timing Side-Channel Attacks

Michael Schwarz, Moritz Lipp, Daniel Gruss, Samuel Weiser, Clémentine Maurice, Raphael Spreitzer, Stefan Mangard

Network and Distributed System Security Symposium (NDSS'18), San Diego, USA

Paper
Github
2017
Another Flip in the Wall of Rowhammer Defenses

Daniel Gruss, Moritz Lipp, Michael Schwarz, Daniel Genkin, Jonas Juffinger, Sioli O'Connell, Wolfgang Schoechl, Yuval Yarom

Paper
Github
Practical Keystroke Timing Attacks in Sandboxed JavaScript

Moritz Lipp, Daniel Gruss, Michael Schwarz, David Bidner, Clémentine Maurice, Stefan Mangard

22nd European Symposium on Research in Computer Security (ESORICS'17), Oslo, Norway

Paper
Slides
Github
KASLR is Dead: Long Live KASLR

Daniel Gruss, Moritz Lipp, Michael Schwarz, Richard Fellner, Clémentine Maurice, Stefan Mangard

International Symposium on Engineering Secure Software and Systems (ESSoS'17), Bonn, Germany

Paper
Slides
Github
2016
Cache Attacks And Rowhammer on ARM
Master thesis

Moritz Lipp

Graz University of Technology

Paper
Prefetch Side-Channel Attacks
Bypassing SMAP and Kernel ASLR

Daniel Gruss, Anders Fogh, Clémentine Maurice, Moritz Lipp, Stefan Mangard

23rd ACM Conference on Computer and Communications Security (CCS'16), Vienna, Austria

Paper
Slides
Github
ARMageddon
Cache Attacks on Mobile Devices

Moritz Lipp, Daniel Gruss, Raphael Spreitzer, Clémentine Maurice, Stefan Mangard

25th USENIX Security Symposium (USENIX'16), Austin, Texas, USA

Paper
Slides
Github

Presentations

2017
How processor performance is tied to side-channel leakage
With great speed comes great leakage

Daniel Gruss, Moritz Lipp

Qualcomm Mobile Security Summit 2017, San Diego, CA, USA

2016
What could possibly go wrong with <insert x86 instruction here>?

Clémentine Maurice, Moritz Lipp

33rd Chaos Communication Congress (33C3), Hamburg, Germany

Slides
Presentation
ARMageddon
How Your Smartphone CPU Breaks Software-Level Security and Privacy

Moritz Lipp, Clémentine Maurice

Black Hat Europe 2016, London, UK

Paper
Slides
Presentation

Awards

2017
Pwnie Award
Best Song

Manuel Weber, Daniel Gruss, Michael Schwarz, Moritz Lipp, Rebekka Aigner

Black Hat USA, Las Vegas, USA

Video
2016
IAIK Student Research Excellence Award

Moritz Lipp

IAIK Graz University of Technology, Graz, Austria

WKO Steiermark Stipend

Moritz Lipp

Wirtschaftskammer Steiermark, Graz, Austria