Markus Kammerstetter

Markus Kammerstetter

General Information

I am head of the Hardware Security Lab, senior PhD candidate at iSecLab Vienna / Automation Systems Group at Vienna University of Technology and managing director of the IT security company Trustworks KG.

Together with participating project and industry partners, I recently co-authored a number of research proposals in the Smart Grid security domain. One of my latest efforts led to the SG² KIRAS research project which has a strong security focus on critical smart grid infrastructures.

As head of the Hardware Security Lab I am heavily involved in continuously extending the lab with respect to personnel and lab equipment resources. The result is a unique environment in the hardware security domain with sophisticated and dedicated analysis tools ranging from a Scanning Electron Microscope (SEM), plasma etcher or a custom confocal microscope to side channel/fault injection equipment, RFID analysis tools and software defined radio (SDR).

In my master's thesis, entitled "Real-time Encrypted Speech Communication Over Low Bandwidth Channels", I implemented an embedded real-time system, allowing secure speech communication over channels with 9600 baud/s and below. Besides confidentiality, integrity and authenticity, the system has a number of unique security features that are novel to the field and were considered for patent application. In my bachelor's thesis, I focused on semiconductor security analysis techniques, focusing on the extraction of sensitive information such as cryptographic key material, secret algorithms or program code from silicon chips.

My research interests include most aspects of computer and embedded-system security, with emphasis on hardware security as well as low-level and binary analysis, forensics and reverse engineering. However, due to the long lasting experience in the Smart Grid and hardware security domains, my current research focus is more in that area today.
In my spare time I enjoy taking part in CTF contests (e.g. UCSB iCTF in the team We_0wn_Y0u, Defcon CTF, ruCTF, etc.).

Professional Activities

Since 2005, I have been working as an independent security consultant specialized on binary vulnerability analysis for enterprise environments. Among my references are a notable financial institution as well as several large scale enterprises. Since then, I have been responsible for the discovery of more than 100 critical vulnerabilities in leading enterprise products.
Since 2012, I'm also managing director of the constantly growing IT security company Trustworks KG.

Teaching

Starting with 2007, I am or have been involved with the following courses:

Practicals and Theses

If you want to work in the hardware security lab and want to do a practical ("Praktikum") and/or thesis related to embedded, hardware, wireless, RFID or semiconductor security, please contact me.

Projects

Publications

Markus Kammerstetter, Markus Muellner, Daniel Burian, Christian Platzer and Wolfwang Kastner
Breaking Integrated Circuit Device Security through Test Mode Silicon Reverse Engineering
21st ACM Conference on Computer and Communications Security (ACM CCS), November 3-7, 2014, Scottsdale, Arizona, USA
[download]
Markus Kammerstetter, Lucie Langer, Florian Skopik and Wolfgang Kastner
Architecture-Driven Smart Grid Security Management
2nd ACM Workshop on Information Hiding and Multimedia Security, June 11-13, 2014, Salzburg, Austria
[download]
Markus Kammerstetter, Christian Platzer and Wolfgang Kastner
PROSPECT - Peripheral Proxying Supported Embedded Code Testing
9th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2014), June 4-6, 2014, Kyoto Garden Palace, Kyoto, Japan
[download]
L. Langer, M.Kammerstetter, F. Skopik, T. Hecht, and P. Smith
POSTER: Smart Grid Security Analysis: The (SG)² Approach
Smart Grids Week 2014, May 19-23, 2014, Graz, Austria
Lucie Langer, Johannes Goellner, Christian Meurers, Andreas Peer, Markus Kammerstetter and Thomas Bleier
Importance of Risk Management for the Security of Smart Grids
European Meetings on Cybernetics and Systems Research, April 22-25 2014, Vienna, Austria
Markus Kammerstetter, Lucie Langer, Florian Skopik, Friederich Kupzog and Wolfgang Kastner
Practical Risk Assessment Using a Cumulative Smart Grid Model
3rd International Conference on Smart Grids and Green IT Systems (SMARTGREENS), April 3-4 2014, Barcelona, Spain
[download]
Johannes Goellner, Christian Meurers, Andreas Peer, Lucie Langer and Markus Kammerstetter
Bedeutung des Risikomanagements für die Sicherheit von Smart Grids
13th SYMPOSIUM ENERGY INNOVATION (EnInnov2014), 12th - 14th February 2014, Graz, Austria
L. Langer, F. Kupzog, M. Kammerstetter, T. Kerbl, F. Skopik
Smart Grid Security Guidance (SG)2 - Empfehlungen für sichere Smart Grids in Österreich
ComForEn 2013, 4. Fachkonferenz Kommunikation für Energienetze der Zukunft, September 26, 2013
Markus Kammerstetter, Christian Platzer and Gilbert Wondracek
Vanity, Cracks and Malware: Insights into the Anti-Copy Protection Ecosystem
19th ACM Conference on Computer and Communications Security (CCS 2012), October 2012, Raleigh, NC, USA
[download]
Florian Skopik, Thomas Bleier, Markus Kammerstetter and Georg Kienesberger
Smart Grid Security Guidance: Eine Sicherheitsinitiative fuer Intelligente Stromnetze
42. Jahrestagung der Gesellschaft fuer Informatik e.V. (GI) (INFORMATIK 2012), September 16-21, 2012, Braunschweig, Germany
[download]
Markus Kammerstetter
Real-time Encrypted Speed Communication Over Low Bandwidth Channels
Master's thesis, May 11, 2011, suggested for Distinguished Young Alumnus Award
[download]

Notable Achievements

  • I was recommended for the Distinguished Young Alumnus Award due to my outstanding master's thesis.
  • My paper "Practical Risk Assessment Using a Cumulative Smart Grid Model" was recommended for the best paper award at SMARTGREENS'14.
  • Together with the WoY team, we managed to take the 2nd place in the iCTF competition 2005
  • Together with the WoY team, we managed to take the 1st place in the iCTF competition 2006
  • Together with the WoY team, we managed to take the 4th place in the iCTF competition 2007
  • Together with the WoY team, we managed to take the 5th place in the iCTF competition 2008
  • Together with the WoY team, we managed to take the 1st place in the iCTF competition 2011
  • Together with the WoY team, we managed to take the 2nd place in the iCTF competition 2012/13

Contact

I can be reached under mk (at) iseclab org

You can find my contact information through TISS.


Last Modified: Wed Dec 3 22:52:12 CET 2014


International Secure Systems Lab www.iseclab.org