Skip to content
View fa-schwarz's full-sized avatar
4 followers · 2 following

Organizations

@sengsgx @trugw @feido-token @sev-vmi

Block or report fa-schwarz

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
fa-schwarz/README.md

About Me

Hey, my name is Fabian F. Schwarz, and I have been a PhD Candidate at the CISPA Helmholtz Center for Information Security for the last couple or years. I have successfully graduated at the 28th August 2024. My research focus so far has been on the design of new system and network defenses based on confidential computing technologies---to be precise: trusted execution environments (TEEs). I have practical experience with Intel SGX (user space TEE), Arm TrustZone (system-level TEE), and AMD SEV-SNP (trusted virtual machines), and have been responsible for the high-level design of a new RISC-V CPU extension (publication is pending).

Publications

  1. SENG, the SGX-Enforcing Network Gateway, USENIX Security 2020, paper link
  2. TrustedGateway: TEE-Assisted Routing and Firewall Enforcement Using ARM TrustZone, RAID 2022, paper link
  3. FeIDo: Recoverable FIDO2 Tokens Using Electronic IDs, CCS 2022, paper link
  4. 00SEVen -- Re-enabling Virtual Machine Forensics: Introspecting Confidential VMs using privileged in-VM Agents, USENIX Security 2024, paper link

A research paper on a RISC-V CPU security extension is currently under revision.

Pinned Loading

  1. sengsgx/sengsgx sengsgx/sengsgx Public

    SENG: reliable, central per-application firewall policies via Intel SGX based client shielding

    C++ 6 3

  2. trugw/TrustedGateway trugw/TrustedGateway Public

    Trusted Gateway: hardened router architecture with ARM TrustZone protected firewall, routing, and NIC modules.

    C 11 1

  3. feido-token/feido feido-token/feido Public

    Umbrella repository of the FeIDo prototype.

    2

  4. feido-token/feido-credential-service feido-token/feido-credential-service Public

    FeIDo's credential service performing the eID-based credential derivation.

    C

  5. sengsgx/seng-netfilter sengsgx/seng-netfilter Public

    Integration of SENG's app-grained firewall policies into Netfilter and iptables

    C 5

  6. sev-vmi/00seven sev-vmi/00seven Public

    Remote inspection support for confidential AMD SEV-SNP VMs.

    Shell 3