M. Sc. Lucas Davi

  • Former Research Assistant - Research Group System Security
Davi, Lucas

Address

Ruhr-Uni­ver­si­ty Bo­chum
Uni­ver­si­täts­stra­ße 150
D - 44801 Bo­chum
Ger­ma­ny

room
ID 2/141
phone:
(+49)(0)234 / 32 - 28669
Fax:
(+49)(0)234 / 32 - 14956
Email:
lucas.davi@rub.de PGP key

Vita

  • 2003: Ab­itur at Michael-Ende Gymnasium Tönisvorst, Ger­ma­ny.
  • 2003-2006: Apprenticeship as an IT Management Assistant at ThyssenKrupp Steel AG Duisburg, Ger­ma­ny.
  • 2003-2007: Stu­dies at Neuss Uni­ver­si­ty of Applied Science, Ger­ma­ny. Di­plo­ma (FH) in Business Informatics.
  • 2006-2007: Employed as IT Management Assistant at ThyssenKrupp Steel AG Duisburg, Ger­ma­ny.
  • 2007-2009: Stu­dies at Ruhr-Uni­ver­si­ty of Bochum, Ger­ma­ny. Master of Science in IT-Security.
  • 2008-2009: Stu­dent as­sis­tant at the Sys­tem Se­cu­ri­ty Lab at the Horst Görtz In­sti­tu­te for IT-Se­cu­ri­ty (HGI), Ruhr-Uni­ver­si­ty Bo­chum.
  • Since 2010: Re­se­arch assistant and PhD student at the Sys­tem Se­cu­ri­ty Lab at Horst Görtz In­sti­tu­te for IT Se­cu­ri­ty (HGI), Ruhr-Uni­ver­si­ty Bo­chum.

Research

  • Return-Oriented Programming
  • Trusted Computing
  • Operating System Security

Publications

2013
PSiOS: Bring Your Own Privacy & Security to iOS Devices

Tim Werthmann, Ralf Hund, Lucas Davi, Ahmad-Reza Sadeghi, Thorsten Holz - ACM Symposium on Information, Computer and Communications Security (ASIACCS), Hangzhou, China, May 2013 - **Distinguished Paper Award**

2012
MoCFI: A Framework to Mitigate Control-Flow Attacks on Smartphones

Lucas Davi, Alexandra Dmitrienko, Manuel Egele, Thomas Fischer, Thorsten Holz, Ralf Hund, Stefan Nürnberger, Ahmad-Reza Sadeghi - Annual Network & Distributed System Security Symposium (NDSS), San Diego, February 2012

Towards Taming Privilege-Escalation Attacks on Android

Alexandra Dmitrienko, Sven Bugiel, Lucas Davi, Thomas Fischer, Ahmad-Reza Sadeghi, Bhargava Shastry - To appear in 19th Annual Network & Distributed System Security Symposium (NDSS)

2011
Scalable Trust Establishment with Software Reputation

Sven Bugiel, Lucas Davi, Steffen Schulz - Workshop on Scalable Trusted Computing (STC), ACM, 2011

POSTER: Control-Flow Integrity for Smartphones.

Lucas Davi, Alexandra Dmitrienko, Manuel Egele, Thorsten Holz, Ralf Hund, Stefan Nürnberger, Ahmad-Reza Sadeghi, Thomas Fischer - 18th ACM Conference on Computer and Communications Security (CCS'11)

POSTER: The Quest for Security against Privilege Escalation Attacks on Android

Sven Bugiel, Lucas Davi, Alexandra Dmitrienko, Thomas Fischer, Ahmad-Reza Sadeghi, Bhargava Shastry - 18th ACM Conference on Computer and Communications Security (CCS'11)

Trusted Virtual Domains on OKL4: Secure Information Sharing on Smartphones

Lucas Davi, Alexandra Dmitrienko, Christoph Kowalski, Marcel Winandy - STC '11: Proceedings of the 6th ACM Workshop on Scalable Trusted Computing, pp. 49-58, ACM, 2011.

XManDroid: A New Android Evolution to Mitigate Privilege Escalation Attacks.

Sven Bugiel, Lucas Davi, Alexandra Dmitrienko, Thomas Fischer, Ahmad-Reza Sadeghi - Technical Report: TUD-CS-2011-0127

ROPdefender: A Detection Tool to Defend Against Return-Oriented Programming Attacks

Lucas Davi, Ahmad-Reza Sadeghi, Marcel Winandy - 6th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2011), ACM, 2011.

2010
Privilege Escalation Attacks on Android.

Lucas Davi, Alexandra Dmitrienko, Ahmad-Reza Sadeghi, Marcel Winandy - Information Security, 13th International Conference, ISC 2010, LNCS 6531/2011, pp. 346-360, Springer 2011.

Return-Oriented Programming without Returns

Stephen Checkoway, Lucas Davi, Alexandra Dmitrienko, Ahmad-Reza Sadeghi, Hovav Shacham, Marcel Winandy - 17th ACM Conference on Computer and Communications Security (CCS 2010)

Return-Oriented Programming without Returns on ARM

Lucas Davi, Alexandra Dmitrienko, Ahmad-Reza Sadeghi, Marcel Winandy - Tech­ni­cal Re­port HGI-TR-2010-002

ROPdefender: A Detection Tool to Defend Against Return-Oriented Programming Attacks

Lucas Davi, Ahmad-Reza Sadeghi, Marcel Winandy - Technical Report HGI-TR-2010-001

2009
Dynamic Integrity Measurement and Attestation: Towards Defense Against Return-Oriented Programming Attacks.

Lucas Davi, Ahmad-Reza Sadeghi, Marcel Winandy - STC'09: Proceedings of the 4th ACM Workshop on Scalable Trusted Computing, p. 49-54, ACM, 2009.