M. Sc. Lucas Davi

  • Ehemalige/r Mitarbeiter/in - Arbeitsgruppe Systemsicherheit
Davi, Lucas

Adresse

Ruhr-Uni­ver­si­tät Bo­chum
Uni­ver­si­täts­stra­ße 150
D - 44801 Bo­chum

Lo­ca­ti­on:
Dept. of Electr. Eng. and In­for­ma­ti­on Sci­en­ces
Uni­ver­si­täts­str. 150

Raum
ID 2/141
Telefon:
(+49)(0)234 / 32 - 28669
Fax:
(+49)(0)234 / 32 - 14956
E-Mail:
lucas.davi@rub.de PGP Schlüssel

Lebenslauf

  • 2003: Ab­itur am Michael-Ende Gymnasium Tönisvorst.
  • 2003-2006: Ausbildung zum Informatikkaufmann bei der ThyssenKrupp Steel AG Duisburg.
  • 2003-2007: Studium an der Fachhochschule für Ökonomie und Management (FOM) Neuss: Diplom-Wirtschaftsinformatiker (FH).
  • 2006-2007: Angestellt als Informatikkaufmann bei der ThyssenKrupp Steel AG Duisburg.
  • 2007-2009: Studium an der Ruhr-Universität Bochum: Master of Science IT-Security.
  • 2008-2009: Studentische Hilfskraft am Lehrstuhl für Systemsicherheit am Horst Görtz In­sti­tu­t für IT-Sicherheit (HGI), Ruhr-Universität Bochum.
  • Seit 2010: Wissenschaftlicher Mitarbeiter am Lehrstuhl für Systemsicherheit am Horst Görtz In­sti­tu­t für IT-Sicherheit (HGI), Ruhr-Universität Bo­chum.

Forschung

  • Return-Oriented Programming
  • Trusted Computing
  • Operating System Security

Veröffentlichungen

2015
It's a TRAP: Table Randomization and Protection against Function Reuse Attacks

Stephen Crane, Stijn Volckaert, Felix Schuster, Christopher Liebchen, Per Larsen, Lucas Davi, Ahmad-Reza Sadeghi, Thorsten Holz, Bjorn De Sutter, Michael Franz - 22nd ACM Conference on Computer and Communications Security (CCS), Denver, October 2015

Counterfeit Object-oriented Programming: On the Difficulty of Preventing Code Reuse Attacks in C++ Applications

Felix Schuster, Thomas Tendyck, Christopher Liebchen, Lucas Davi, Ahmad-Reza Sadeghi, Thorsten Holz - 36th IEEE Symposium on Security and Privacy (Oakland), San Jose, May 2015

2013
PSiOS: Bring Your Own Privacy & Security to iOS Devices

Tim Werthmann, Ralf Hund, Lucas Davi, Ahmad-Reza Sadeghi, Thorsten Holz - ACM Symposium on Information, Computer and Communications Security (ASIACCS), Hangzhou, China, May 2013 - **Distinguished Paper Award**

2012
MoCFI: A Framework to Mitigate Control-Flow Attacks on Smartphones

Lucas Davi, Alexandra Dmitrienko, Manuel Egele, Thomas Fischer, Thorsten Holz, Ralf Hund, Stefan Nürnberger, Ahmad-Reza Sadeghi - Annual Network & Distributed System Security Symposium (NDSS), San Diego, February 2012

Towards Taming Privilege-Escalation Attacks on Android

Alexandra Dmitrienko, Sven Bugiel, Lucas Davi, Thomas Fischer, Ahmad-Reza Sadeghi, Bhargava Shastry - To appear in 19th Annual Network & Distributed System Security Symposium (NDSS)

2011
Scalable Trust Establishment with Software Reputation

Sven Bugiel, Lucas Davi, Steffen Schulz - Workshop on Scalable Trusted Computing (STC), ACM, 2011

POSTER: Control-Flow Integrity for Smartphones.

Lucas Davi, Alexandra Dmitrienko, Manuel Egele, Thorsten Holz, Ralf Hund, Stefan Nürnberger, Ahmad-Reza Sadeghi, Thomas Fischer - 18th ACM Conference on Computer and Communications Security (CCS'11)

POSTER: The Quest for Security against Privilege Escalation Attacks on Android

Sven Bugiel, Lucas Davi, Alexandra Dmitrienko, Thomas Fischer, Ahmad-Reza Sadeghi, Bhargava Shastry - 18th ACM Conference on Computer and Communications Security (CCS'11)

Trusted Virtual Domains on OKL4: Secure Information Sharing on Smartphones

Lucas Davi, Alexandra Dmitrienko, Christoph Kowalski, Marcel Winandy - STC '11: Proceedings of the 6th ACM Workshop on Scalable Trusted Computing, pp. 49-58, ACM, 2011.

XManDroid: A New Android Evolution to Mitigate Privilege Escalation Attacks.

Sven Bugiel, Lucas Davi, Alexandra Dmitrienko, Thomas Fischer, Ahmad-Reza Sadeghi - Technical Report: TUD-CS-2011-0127

ROPdefender: A Detection Tool to Defend Against Return-Oriented Programming Attacks

Lucas Davi, Ahmad-Reza Sadeghi, Marcel Winandy - 6th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2011), ACM, 2011.

2010
Privilege Escalation Attacks on Android.

Lucas Davi, Alexandra Dmitrienko, Ahmad-Reza Sadeghi, Marcel Winandy - Information Security, 13th International Conference, ISC 2010, LNCS 6531/2011, pp. 346-360, Springer 2011.

Return-Oriented Programming without Returns

Stephen Checkoway, Lucas Davi, Alexandra Dmitrienko, Ahmad-Reza Sadeghi, Hovav Shacham, Marcel Winandy - 17th ACM Conference on Computer and Communications Security (CCS 2010)

Return-Oriented Programming without Returns on ARM

Lucas Davi, Alexandra Dmitrienko, Ahmad-Reza Sadeghi, Marcel Winandy - Tech­ni­cal Re­port HGI-TR-2010-002

ROPdefender: A Detection Tool to Defend Against Return-Oriented Programming Attacks

Lucas Davi, Ahmad-Reza Sadeghi, Marcel Winandy - Technical Report HGI-TR-2010-001

2009
Dynamic Integrity Measurement and Attestation: Towards Defense Against Return-Oriented Programming Attacks.

Lucas Davi, Ahmad-Reza Sadeghi, Marcel Winandy - STC'09: Proceedings of the 4th ACM Workshop on Scalable Trusted Computing, p. 49-54, ACM, 2009.