Anjo Vahldiek-Oberwagner

Research Scientist @ Intel Labs

About

I’m interested in analyzing, designing, building and evaluating secure software and hardware systems. In particular, in techniques protecting data confidentiality and integrity of sensitive data at rest, in-flight or in-memory.

Interests

System Security
Operating Systems
Distributed Systems

Education & Experience

Research Scientist, since April, 2019

Intel Labs
PhD in Computer Science, February, 2019

Max Planck Institute for Software Systems & Saarland University
B.Sc. in Applied Computer Science, September, 2009

Cooperative University State University Baden-Wuertemberg

Projects

Protecting Persistent Data

Enforcing security policies at the storage layer to reduce attack surface of existing solutions.

Secure, Efficient In-Process Memory Isolation

Providing isolation for sensitive data and state to increase the security and robustness of applications.

Shielding Applications in an untrusted Cloud

Lift and shift unmodified applications into Intel SGX enclaves to shield them in an untrusted cloud.

Selected Publications

More Publications

The Endokernel: Fast, Secure, and Programmable Subprocess Virtualization

Bumjin Im, Fangfei Yang, Chia-Che Tasi, Michael LeMay, Anjo Vahldiek-Oberwagner, Nathan Dautenhahn

arXiv, 2021.

PDF

Swivel: Hardening WebAssembly against Spectre

Shravan Narayan, Craig Disselkoen, Daniel Moghimi, Sunjay Cauligi, Evan Johnson, Zhao Gang, Anjo Vahldiek-Oberwagner, Ravi Sahita, Hovav Shacham, Dean Tullsen, Deian Stefan

USENIX Security, 2021.

PDF

Privacy-Preserving Machine Learning in Untrusted Clouds Made Simple

Dayeol Lee, Dmitrii Kuvaiskii, Anjo Vahldiek-Oberwagner, Mona Vij

arXiv, 2020.

PDF

Automatically Securing Linux Application Containers in Untrusted Clouds

Anjo Vahldiek-Oberwagner, Dmitrii Kuvaiskii

Linux Security Summit, 2020.

Slides Video

ERIM: Secure, Efficient In-Process Isolation with Memory Protection Keys

Anjo Vahldiek-Oberwagner, Eslam Elnikety, Nuno O. Duarte, Michael Sammler, Peter Druschel, Deepak Garg

USENIX Security,
Distinguished Paper Award and Internet Defense Prize, 2019.

PDF Code Slides Video

Pesos: Policy Enhanced Secure Object store

Robert Krahn, Bohdan Trach, Anjo Vahldiek-Oberwagner, Thomas Knauth, Pramod Bhatotia, Christof Fetzer

ACM EuroSys, 2018.

PDF

Light-Weight Contexts: An OS Abstraction for Safety and Performance

James Litton, Anjo Vahldiek-Oberwagner, Eslam Elnikety, Deepak Garg, Bobby Bhattacharjee, Peter Druschel

USENIX OSDI, 2016.

PDF Code

Thoth : Comprehensive Policy Compliance in Data Retrieval Systems

Eslam Elnikety, Aastha Mehta, Anjo Vahldiek-oberwagner, Deepak Garg, Peter Druschel

Usenix Security, 2016.

PDF

Guardat: Enforcing data policies at the storage layer

Anjo Vahldiek-Oberwagner, Eslam Elnikety, Aastha Mehta, Deepak Garg, Peter Druschel, Rodrigo Rodrigues, Johannes Gehrke, Ansley Post

ACM EuroSys, 2015.

PDF Poster Slides Video Extended technical report

Service

Program Committee

Usenix Security: 2021, 2022
Middleware Doctoral Workshop: 2020
Intel Software Professionals Conference - Security Track: 2020
EuroSys ShadowPC: 2020
SOCC Posters: 2020

Artifact Evaluation

External Reviewer

EuroSys: 2018
HotOS: 2017
OSDI: 2016

Organization

Registration for EuroSys’21

Awards

Intel High-5 Patent Award 2021
Intel Labs 2021 Gordy Award Honorable Mention in “Excelence in Risk Taking” for our continued work on the Graphene Library OS (in collaboration with Dmitrii Kuvaiskii, Mona Vij, Sudha Krishnakumar, Isaku Yamahata)
Facebook and USENIX Internet Defense Prize 2019
Distinguished Paper Award at USENIX Security 2019