I am head of the Hardware Security Lab, senior PhD candidate at the Secure Systems Lab Vienna / Automation Systems Group at Vienna University of Technology and managing director of the IT security company Trustworks KG.
Together with participating project and industry partners, I recently co-authored a number of research proposals
in the Smart Grid and hardware security domains. One of my latest efforts led to the KIRAS SG², the RASSA (Reference Architecture for Secure Smart Grids in Austria) and the EU Horizon 2020 AnyPLACE research projects, all having a strong security focus on critical smart grid infrastructures.
As head of the Hardware Security Lab I am heavily involved in continuously extending the lab with respect to personnel and lab equipment resources. The result is a unique environment in the hardware security domain with sophisticated and dedicated analysis tools ranging from a Scanning Electron Microscope (SEM), plasma etcher or a custom confocal microscope to side channel/fault injection equipment, RFID analysis tools and software defined radio (SDR).
In my master's thesis, entitled "Real-time Encrypted Speech Communication Over Low Bandwidth Channels", I implemented
an embedded real-time system, allowing secure speech communication over channels with 9600 baud/s and below.
Besides confidentiality, integrity and authenticity, the system has a number of unique security features that are
novel to the field and were considered for patent application.
In my bachelor's thesis, I focused on semiconductor security analysis techniques, focusing on the extraction of sensitive
information such as cryptographic key material, secret algorithms or program code from silicon chips.
My research interests include most aspects of computer and embedded-system security, with emphasis on hardware security as well as low-level and binary analysis, forensics and reverse engineering.
However, due to the long lasting experience in the Smart Grid and hardware security domains, my current research focus is more in that area today.
In my spare time I enjoy taking part in CTF contests (e.g. UCSB iCTF in the team We_0wn_Y0u, Defcon CTF, ruCTF, etc.).
Since 2005, I have been working as an independent security consultant specialized on binary vulnerability analysis for enterprise environments.
Among my references are a notable financial institution as well as several large scale enterprises. Since then, I have been responsible for the discovery of more than 100 critical vulnerabilities in leading enterprise products.
Since 2012, I'm also managing director of the constantly growing IT security company Trustworks KG.
Starting with 2007, I am or have been involved with the following courses:
Practicals and Theses
If you want to work in the hardware security lab and want to do a practical ("Praktikum") and/or thesis related to embedded, hardware, wireless, RFID or semiconductor security, please contact me.
Adrian Dabrowski, Markus Kammerstetter, Eduard Thamm, Edgar Weippl and Wolfgang Kastner|
Leveraging Competitive Gamification for Sustainable Fun and Profit in Security Education
USENIX Summit on Gaming, Games and Gamification in Security Education (3GSE '15) co-located with USENIX Security Symposium 2015, August 11, 2015, Washington D.C., USA
Florian Skopik and Paul Smith (Editors); Dariusz Kloza, Lucie Langer, Markus Kammerstetter, Martin Hutle, Kieran McLaughlin et al. (Authors)|
Book: Smart Grid Security
Elsevier Science Publishing Co Inc (June 1st, 2015), ISBN 978-0128021224
Markus Kammerstetter, Markus Muellner, Daniel Burian, Christian Platzer and Wolfgang Kastner|
Breaking Integrated Circuit Device Security through Test Mode Silicon Reverse Engineering
21st ACM Conference on Computer and Communications Security (ACM CCS), November 3-7, 2014, Scottsdale, Arizona, USA
Markus Kammerstetter, Lucie Langer, Florian Skopik and Wolfgang Kastner|
Architecture-Driven Smart Grid Security Management
2nd ACM Workshop on Information Hiding and Multimedia Security, June 11-13, 2014, Salzburg, Austria
Markus Kammerstetter, Christian Platzer and Wolfgang Kastner|
PROSPECT - Peripheral Proxying Supported Embedded Code Testing
9th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2014), June 4-6, 2014, Kyoto Garden Palace, Kyoto, Japan
L. Langer, M.Kammerstetter, F. Skopik, T. Hecht, and P. Smith|
POSTER: Smart Grid Security Analysis: The (SG)² Approach
Smart Grids Week 2014, May 19-23, 2014, Graz, Austria
Lucie Langer, Johannes Goellner, Christian Meurers, Andreas Peer, Markus Kammerstetter and Thomas Bleier|
Importance of Risk Management for the Security of Smart Grids
European Meetings on Cybernetics and Systems Research EMCSR 2014, April 22-25 2014, Vienna, Austria
Markus Kammerstetter, Lucie Langer, Florian Skopik, Friederich Kupzog and Wolfgang Kastner|
Practical Risk Assessment Using a Cumulative Smart Grid Model
3rd International Conference on Smart Grids and Green IT Systems (SMARTGREENS), April 3-4 2014, Barcelona, Spain
Johannes Goellner, Christian Meurers, Andreas Peer, Lucie Langer and Markus Kammerstetter|
Bedeutung des Risikomanagements für die Sicherheit von Smart Grids
13th SYMPOSIUM ENERGY INNOVATION (EnInnov2014), 12th - 14th February 2014, Graz, Austria
L. Langer, F. Kupzog, M. Kammerstetter, T. Kerbl, F. Skopik|
Smart Grid Security Guidance (SG)2 - Empfehlungen für sichere Smart Grids in Österreich
ComForEn 2013, 4. Fachkonferenz Kommunikation für Energienetze der Zukunft, September 26, 2013
Markus Kammerstetter, Christian Platzer and Gilbert Wondracek|
Vanity, Cracks and Malware: Insights into the Anti-Copy Protection Ecosystem
19th ACM Conference on Computer and Communications Security (CCS 2012), October 2012, Raleigh, NC, USA
Florian Skopik, Thomas Bleier, Markus Kammerstetter and Georg Kienesberger|
Smart Grid Security Guidance: Eine Sicherheitsinitiative fuer Intelligente Stromnetze
42. Jahrestagung der Gesellschaft fuer Informatik e.V. (GI) (INFORMATIK 2012), September 16-21, 2012, Braunschweig, Germany
Real-time Encrypted Speed Communication Over Low Bandwidth Channels
Master's thesis, May 11, 2011, suggested for Distinguished Young Alumnus Award
- I was recommended for the Distinguished Young Alumnus Award due to my outstanding master's thesis.
- My paper "Practical Risk Assessment Using a Cumulative Smart Grid Model" was recommended for the best paper award at SMARTGREENS'14.
- Together with the WoY team, we managed to take the 3rd place in the iCTF competition 2014/15
- Together with the WoY team, we managed to take the 2nd place in the iCTF competition 2012/13
- Together with the WoY team, we managed to take the 1st place in the iCTF competition 2011
- Together with the WoY team, we managed to take the 5th place in the iCTF competition 2008
- Together with the WoY team, we managed to take the 4th place in the iCTF competition 2007
- Together with the WoY team, we managed to take the 1st place in the iCTF competition 2006
- Together with the WoY team, we managed to take the 2nd place in the iCTF competition 2005
I can be reached under mk (at) seclab.tuwien.ac.at
You can find my contact information through TISS.
Last Modified: Fri Aug 28 11:25:24 CEST 2015