~<html>
<head>
  <style type="text/css">
    body {
      background: #eee;
      color: #333;
      font-size: 14px;
      font-family: arial,sans-serif;
      line-height: 1.4;
      margin: 0;
    }

    header {
      background: #1a237e;
      height: 200px;
    }

    main {
      background: #fff;
      box-shadow: 0 3px 6px rgba(0,0,0,0.16), 0 3px 6px rgba(0,0,0,0.23);
      margin: -130px auto 32px;
      padding: 64px;
      width: 800px;
    }

    h1,
    h2 {
      margin: 0;
    }

    a {
      color: #245dc1;
      text-decoration: none;
    }

    a.highlight {
      color: #ff5722;
    }

    .flex {
      display: flex;
    }

    .flex > .left {
      flex: 1;
    }

    .photo {
      margin: 0 0 16px 16px;
    }

    .callout {
      background: #eee;
      border-left: 4px solid #ff5722;
      line-height: 1.6;
      margin: 16px 0;
      padding: 16px;
    }

    .paper {
      margin: 16px 0;
    }

    .links {
      margin: 4px 16px;
    }
  </style>
  <title>David Kohlbrenner</title>
</head>
<body>
  <header></header>
  <main>
    <div class="flex">
      <div class="left">
        <h1>David Kohlbrenner</h1>

        <div class="callout">
	  Want to do a PhD in security and systems/architecture?
	  <br>
	  <a href="https://www.cs.washington.edu/academics/phd">Apply</a> to the UW PhD program.
        </div>
        <h2>Info</h2>
        <p>
	  I am an Assistant Professor in the <a href="https://www.cs.washington.edu/">Paul G. Allen School of Computer Science and Engineering</a> at the University of Washington. <br>

	  Previously I was a post-doc
	  with <a href="https://people.eecs.berkeley.edu/~dawnsong">Dawn
	  Song</a> and
	  the <a href="https://adept.eecs.berkeley.edu/">ADEPT</a> lab
	  at UC Berkeley, and did my PhD
	  with <a href="https://www.cs.utexas.edu/~hovav/">Hovav
	  Shacham</a> at UC San Diego.<br>

	  <br>
	<a href="https://scholar.google.com/citations?user=uQdC9agAAAAJ&hl=en">Google Scholar profile</a><br>
        </p>
	<p><b>Contact:</b> dkohlbre [at] cs.washington.edu <br>
	If you are a UW student, please send from your academic email address<br>
	(david.kohlbrenner [at] gmail.com for non-academic)</p>
      </div>
      <img class="photo" src="2020_dkphoto.png" width="204" height="262">
    </div>
    <h2>Research</h2>
    <p>My research interests span software security, systems, and hardware architecture.<br>
      I put special focus on the impact of hardware design on high-level software security.</p>
    <p> Active projects include:
      <br>Next generation microarchitectural side-channels and formal defenses.
      <br>FPGA analog side-channels.
      <br>The <a href="https://keystone-enclave.org/">Keystone</a> TEE framework for RISC-V.
    </p>
    <h2>Teaching</h2>
    <p>
      CSE484 Computer Security and Privacy (<a href="https://courses.cs.washington.edu/courses/cse484/21au/">Au21</a>, <a href="https://courses.cs.washington.edu/courses/cse484/21wi/">Wi21</a>)
    <br>
    CSE564 (Graduate) Computer Security and Privacy (<a href="https://courses.cs.washington.edu/courses/cse564/20au/">Au20</a>)
    <br>
    CSEP564 (Graduate, PMP) Computer Security and Privacy (<a href="https://courses.cs.washington.edu/courses/csep564/22au/">Au22</a>)
    <br>
    CSE599 Hardware Security (<a href="https://homes.cs.washington.edu/~dkohlbre/classes/599HWS/">Sp22</a>)
    </p>
    <p>
    Previously:<br>
    <a href="https://berkeley-secure-hardware.github.io/cs294-156-f18/">Advanced topics on secure hardware</a> (UC Berkeley)<br>
    <a href="https://cse80.github.io/">CSE80 Linux and the Command Line</a> aka <a href="https://bitbucket.org/t4cs/t4cs">T4CS</a> (UC San Diego)<br>
    </p>
    <p>

    <h2>Students</h2>
    <a href="https://homes.cs.washington.edu/~mkf727/">Michael Flanders</a> (PhD, Fall 2021 - present)
    </p>
    <p>
    <h2>Conference Publications</h2>
    <div class="paper">
    Y. Wang, R. Paccagnella, ET. He, H. Shacham, C. Fletcher, D. Kohlbrenner
    <a href="https://www.hertzbleed.com/hertzbleed.pdf">"Hertzbleed: Turning Power Side-Channel Attacks Into Remote Timing Attacks on x86"</a>
    USENIX Security, 2022.<br>
    <font color="#ff5722">Winner Pwnie Award 2022 -- Best Cryptographic Attack</font>
      <div class="links">
        See more at <a href="https://www.hertzbleed.com/">hertzbleed.com</a><br>
      </div>
    </div>
    <div class="paper">
    J. Vicarte, M. Flanders, R. Paccagnella, G. Garret-Grossman, A. Morrison, C. Fletcher, D. Kohlbrenner
    <a href="https://www.prefetchers.info/augury.pdf">"Augury: Using Data Memory-Dependent Prefetchers to Leak Data at Rest"</a>
    IEEE Security and Privacy (Oakland), 2022.<br>
    <font color="#ff5722">2nd at CSAW 2022 Applied Research Competition</font>
      <div class="links">
        See more at <a href="https://www.prefetchers.info/">prefetchers.info</a><br>
      </div>
    </div>
    <div class="paper">
    J. Vicarte, P. Shome, N. Nayak, C. Trippel, A. Morrison, D. Kohlbrenner, C. Fletcher
    <a href="papers/pandora.pdf">"Opening Pandora's Box: A Systematic Study of New Ways Microarchitecture Can Leak Private Data"</a>
    ISCA, 2021.<br>
    <font color="#ff5722">Honorable Mention for Intel Hardware Security Academic Award 2022</font>
    </div>
    <div class="paper">
      D. Lee, D. Kohlbrenner, S. Shinde, D. Song, K. Asanovic
      <a href="https://dl.acm.org/doi/abs/10.1145/3342195.3387532">
        "Keystone: An Open Framework for Architecting TEEs"
      </a>
      EuroSys 2020.
    </div>
    <div class="paper">
      I. Lebedev, K. Hogan, J. Drean, D. Kohlbrenner, D. Lee, K. Asanovic, D. Song, S. Devadas
      <a href="https://ieeexplore.ieee.org/abstract/document/8715182">
	"Sanctorum: A lightweight security monitor for secure enclaves" 
      </a>
      Design, Automation & Test in Europe Conference & Exhibition (DATE). IEEE, 2019.
    </div>
    <div class="paper">
      D. Kohlbrenner and H. Shacham
<a href="papers/floatdefenses_v2.pdf">"On the effectiveness of mitigations against floating-point timing channels."</a> USENIX Security. August 2017 (Updated Nov 2022, <a href="https://www.usenix.org/conference/usenixsecurity17/technical-sessions/presentation/kohlbrenner">original</a>
      USENIX Security. August 2017
      <div class="links">
        <a href="floats/index.html">Tools and attack details</a><br>
        <!--a href="https://www.usenix.org/sites/default/files/conference/protected-files/usenixsecurity17_slides_kohlbrenner.pdf">
          Slides
        </a-->
      </div>
    </div>
    <div class="paper">
      C. Disselkoen, D. Kohlbrenner, L. Porter, D. Tullsen
      <a href="https://www.usenix.org/conference/usenixsecurity17/technical-sessions/presentation/disselkoen">
        "Prime+Abort: A Timer-Free High-Precision L3 Cache Attack using Intel TSX"
      </a>
      USENIX Security. August 2017
    </div>
    <div class="paper">
      D. Kohlbrenner and H. Shacham
      <a href="https://www.usenix.org/system/files/conference/usenixsecurity16/sec16_paper_kohlbrenner.pdf">
        "Trusted Browsers for Uncertain Times."
      </a>
      USENIX Security. August 2016<br>
      <font color="#ff5722">2nd at CSAW 2016 Applied Research Competition</font>
      <div class="links">
        <!--a href="papers/uncertaintimes-slides.pdf">Slides</a-->
      </div>
    </div>
    <div class="paper">
      M. Andrysco, D. Kohlbrenner, K. Mowery, R. Jhala, S. Lerner, and H. Shacham
      <a href="papers/subnormal.pdf">"On Subnormal Floating Point and Abnormal Timing."</a>
      IEEE Security and Privacy (Oakland), May 2015 (Updated June 2017, <a href="papers/subnormal_v1.pdf">original</a>)<br>
      <div class="links">
        <!--a href="papers/subnormal-slides.pdf">Slides</a-->
      </div>
    </div>
    <div class="paper">
      K. Mowery, M. Wei, D. Kohlbrenner, H. Shacham, and S. Swanson
      <a href="papers/earlyentropy.pdf">"Welcome to the Entropics: Boot-Time Entropy in Embedded Devices."</a>
      IEEE Security and Privacy (Oakland), May 2013
    </div>

    <h2>Other Publications</h2>
    <div class="paper">
      G. Andrade, D. Lee, D. Kohlbrenner, K. Asanovic, D. Song
      <a href="https://carrv.github.io/2020/papers/CARRV2020_paper_13_Andrade.pdf">"Software-Based Off-Chip Memory Protection for RISC-V Trusted Execution Environments"</a> Workshop on Computer Architecture Research with RISC-V (CARRV), May 2020
    </div>
    <div class="paper">
      K. Cheang, C. Rasmussen, D. Lee, D. Kohlbrenner, K. Asanovic, S. Seshia
      <a href="https://ascslab.org/conferences/secriscv/materials/papers/paper_19.pdf">"Verifying RISC-V Physical Memory Protection"</a> Workshop on Secure RISC-V Architecture Design (SECRISC-V 2020), Aug 2020
</div>

    <div class="paper">
      D. Kohlbrenner, S. Shinde, D. Lee, K. Asanovic, D. Song
<a href="https://ieeexplore.ieee.org/abstract/document/9103538">"Building Open Trusted Execution Environments"</a>
     IEEE Security & Privacy Magazine ( Volume: 18 , Issue: 5 , Sept.-Oct. 2020 )
</div>

<h2>Unpublishable Non-papers</h2>
<div>
<a href="https://www.youtube.com/watch?v=xtZVU2mt2p4">Skystriker</a> by Skullduggery Systems
<a rel="me" href="https://infosec.exchange/@dkohlbre"></a>
</div>
<h2>Other bits</h2>
<div>
<a href="blog/paper_writing.html">How I manage paper writing</a><br>
<a href="blog/2022_Feb_eduroam.html">Setting up client cert eduroam</a><br>
<a href="blog/2020_Apr_presentation_setup.html">Setting up nice Zoom talks</a><br>
</div>
  </main>
</body>
</html>