Anjo Vahldiek-Oberwagner

Research Scientist @ Intel Labs, Adjunct Lecturer @ TU Munich

About

Anjo is a system security researcher with expertise in analyzing, designing, and building secure hardware and software systems, particularly for datacenter workloads. His work at Intel Labs has centered on advancing confidential computing, in-process isolation, and memory-safe architectures—critical areas for protecting sensitive data and enabling secure AI and cloud-native services.

Interests

System Security
Operating Systems
Distributed Systems

Education & Experience

Adjunct Lecturer, since July, 2022

TU Munich
Research Scientist, since April, 2019

Intel Labs
PhD in Computer Science, February, 2019

Max Planck Institute for Software Systems & Saarland University
B.Sc. in Applied Computer Science, September, 2009

Cooperative University State University Baden-Wuertemberg

News

[Dec 25] Accepted to serve on ACM Rep’26 PC
[Nov 25] Accepted to serve on EuroSys’27 PC
[Oct 25] Accepted to serve on ACM CCS’26 PC
[Sep 25] Recursive Attesation accepted at ApSys’25
[Jul 25] Lessons learned from 5 years of Artifact Evaluations at EuroSys presented at ACM REP’25
[Apr 25] Validation and Endorsement Services accepted at SysTEX’25
[Mar 25] Accepted to serve on EuroSys’26 PC
[Feb 25] Cloud-Scale Distributed Capabilities accepted at HCDS’25

Projects

Memory-Safe Hardware and Software Architecture

Optimize local microservice executions using memory-safe languages and hardware optimizations

Research Artifacts and Evaluation

Building and evaluating reproducible and reusable research artifacts.

Protecting Persistent Data

Enforcing security policies at the storage layer to reduce attack surface of existing solutions.

Secure In-Process Memory Isolation and Efficient Cloud Deployments

Providing in-process isolation for sensitive data and state to increase the security and robustness of applications and its use to provide efficient cloud deployments

Shielding Applications in an untrusted Cloud

Lift and shift unmodified applications into Intel SGX enclaves to shield them in an untrusted cloud.

Selected Publications

More Publications

Lessons Learned from Five Years of Artifact Evaluations at EuroSys

Daniele Cono D’Elia, Thaleia Dimitra Doudali, Cristiano Giuffrida, Miguel Matos, Mathias Payer, Solal Pirelli, Georgios Portokalidis, Valerio Schiavoni, Salvatore Signorello, Anjo Vahldiek-Oberwagner

In Proceedings of the ACM Conference on Reproducibility and Replicability (ACM REP), 2025.

PDF

Pegasus: Transparent and Unified Kernel-Bypass Networking for Fast Local and Remote Communication

Dinglan Peng, Congyu Liu, Tapti Palit, Anjo Vahldiek-Oberwagner, Mona Vij, Pedro Fonseca

ACM EuroSys, 2025.

PDF Code

Segue & ColorGuard: Optimizing SFI Performance and Scalability on Modern Architectures

Shravan Narayan, Tal Garfinkel, Evan Johnson, Zachary Yedidia, Yingchen Wang, Andrew Brown, Anjo Vahldiek-Oberwagner, Michael LeMay, Wenyong Huang, Xin Wang, Mingqiu Sun, Dean Tullsen, Deian Stefan

ASPLOS, 2025.

PDF Code

SoK: A Systems Perspective on Compound AI Threats and Countermeasures

Sarbartha Banerjee, Prateek Sahu, Mulong Luo, Anjo Vahldiek-Oberwagner, Neeraja J. Yadwadkar, Mohit Tiwari

arXiv, 2024.

PDF

Endokernel: A Thread Safe Monitor for Lightweight Subprocess Isolation

Fangfei Yang, Bumjin Im, Weijie Huang, Kelly Kaoudis, Anjo Vahldiek-Oberwagner, Chia-Che Tsai, Nathan Dautenhahn

USENIX Security, 2024.

Hardware-Assisted Fault Isolation: Going Beyond the Limits of Software-Based Sandboxing

Shravan Narayan, Tal Garfinkel, Mohammadkazem Taram, Joey Rudek, Daniel Moghimi, Evan Johnson, Anjo Vahldiek-Oberwagner, Michael LeMay, Ravi Sahita, Dean Tullsen, Deian Stefan

IEEE Micro Top Picks, 2024.

PDF

Going beyond the Limits of SFI: Flexible and Secure Hardware-Assisted In-Process Isolation with HFI

Shravan Narayan, Tal Garfinkel, Mohammadkazem Taram, Joey Rudek, Daniel Moghimi, Evan Johnson, Anjo Vahldiek-Oberwagner, Michael LeMay, Ravi Sahita, Dean Tullsen, Deian Stefan

ASPLOS, Distinguished Paper Award, 2023.

PDF

uSwitch: Fast Kernel Context Isolation with Implicit Context Switches

Dinglan Peng, Congyu Liu, Tapti Palit, Pedro Fonseca, Anjo Vahldiek-Oberwagner, Mona Vij

IEEE S&P, 2023.

PDF Code

ERIM: Secure, Efficient In-Process Isolation with Memory Protection Keys

Anjo Vahldiek-Oberwagner, Eslam Elnikety, Nuno O. Duarte, Michael Sammler, Peter Druschel, Deepak Garg

USENIX Security, Distinguished Paper Award and Internet Defense Prize, 2019.

PDF Code Slides Video

Thoth : Comprehensive Policy Compliance in Data Retrieval Systems

Eslam Elnikety, Aastha Mehta, Anjo Vahldiek-oberwagner, Deepak Garg, Peter Druschel

Usenix Security, 2016.

PDF

Service

Program Committee/Associate (Co-)Chair

SysTEX 2025 co-PC chair
EuroS&P 2026 Area Chair in System Security

Program Committee

EuroSys: 2025, 2026, 2027
ACM CCS: 2026
Usenix Security: 2021, 2022, 2023, 2024 & Research Ethics Committee Member, 2025
ACM Conference on Reproducibility and Replicability: 2023, 2024, 2025, 2026
Workshop on System Software for Trusted Execution (SysTEX): 2026
Workshop on Metascience and Critical Reflections in Security & Privacy: 2026
Workshop on Kernel Isolation, Safety and Verification (KISV): 2025
Middleware Doctoral Workshop: 2020
Intel Software Professionals Conference - Security Track: 2020
EuroSys ShadowPC: 2020
SOCC Posters: 2020

Artifact Evaluation

Steering Committee

Journal

ACM TOPS Associate Editor [2024 - ]
DTRAP External Reviewer: 2021

Organization

Registration for EuroSys’21

Awards

Intel Corporate Research Council Mentor of the Month December 2024 for our successful collaboration with Purdue
HFI selected into IEEE Micro Top Picks 2024
HFI wins honorable mention at Intel Hardware Security Academic Award (IHSAA)
Distinguished Paper Award at ASPLOS 2023 for HFI
Selected as DARPA Riser 2022, Topic: “The Rise of Memory-Safe Languages: Building a Fast, Elastic, Secure Software & Hardware Architecture”
Intel High-5 Patent Award 2021
Intel Labs 2021 Gordy Award Honorable Mention in “Excelence in Risk Taking” for our continued work on the Graphene Library OS (in collaboration with Dmitrii Kuvaiskii, Mona Vij, Sudha Krishnakumar, Isaku Yamahata)
Facebook and USENIX Internet Defense Prize 2019 for ERIM
Distinguished Paper Award at USENIX Security 2019 for ERIM

Anjo Vahldiek-Oberwagner

Research Scientist @ Intel Labs, Adjunct Lecturer @ TU Munich

About

Interests

Education & Experience

News

Projects

Memory-Safe Hardware and Software Architecture

Research Artifacts and Evaluation

Protecting Persistent Data

Secure In-Process Memory Isolation and Efficient Cloud Deployments

Shielding Applications in an untrusted Cloud

Selected Publications

Service

Program Committee/Associate (Co-)Chair

Program Committee

Artifact Evaluation

Steering Committee

Journal

Organization

Awards

Contact