@misc{hetterich2026instrsem,
  title={InstrSem: Automatically and Generically Inferring Semantics of (Undocumented) CPU Instructions},
  howpublished={USENIX Security},
  author={Lorenz Hetterich and Fabian Thomas and Tristan Hornetz and Michael Schwarz},
  year={2026}
}

@misc{zhang2026snpeek,
  title={SNPeek: Side-Channel Analysis for Privacy Applications on Confidential VMs},
  howpublished={NDSS},
  author={Ruiyi Zhang and Albert Cheu and Adria Gascon and Daniel Moghimi and Phillipp Schoppmann and Michael Schwarz and Octavian Suciu},
  year={2026}
}

@misc{gerlach2026zerostore,
  title={Zero-Store Elimination and its Implications on the SIKE Cryptosystem},
  howpublished={uASC},
  author={Lukas Gerlach and Niklas Flentje and Michael Schwarz},
  year={2026}
}

@misc{thomas2025exfilstate,
  title={ExfilState: Automated Discovery of Timer-Free Cache Side Channels on ARM CPUs},
  howpublished={CCS},
  author={Fabian Thomas and Michael Torres and Daniel Moghimi and Michael Schwarz},
  year={2025}
}

@misc{thomas2025riscover,
  title={RISCover: Automatic Discovery of User-exploitable Architectural Security Vulnerabilities in Closed-Source RISC-V CPUs},
  howpublished={CCS},
  author={Fabian Thomas and Eric García Arribas and Lorenz Hetterich and Daniel Weber and Lukas Gerlach and Ruiyi Zhang and Michael Schwarz},
  year={2025}
}

@misc{trampert2025styled,
  title={Styled to Steal: The Overlooked Attack Surface in Email Clients},
  howpublished={CCS},
  author={Leon Trampert and Daniel Weber and Christian Rossow and Michael Schwarz},
  year={2025}
}

@misc{schloegel2025cve,
  title={Confusing Value with Enumeration: Studying the Use of CVEs in Academia},
  howpublished={USENIX Security},
  author={Moritz Schloegel and Daniel Klischies and Simon Koch and David Klein and Lukas Gerlach and Malte Wessels and Leon Trampert and Martin Johns and Mathy Vanhoef and Michael Schwarz and Thorsten Holz and Jo Van Bulck},
  year={2025}
}

@misc{weber2025scase,
  title={SCASE: Automated Secret Recovery via Side-Channel-Assisted Symbolic Execution},
  howpublished={USENIX Security},
  author={Daniel Weber and Lukas Gerlach and Leon Trampert and Youheng Lue and Jo Van Bulck and Michael Schwarz},
  year={2025}
}

@misc{zhang2025mapalloc,
  title={Taming the Linux Memory Allocator for Rapid Prototyping},
  howpublished={DIMVA},
  author={Ruiyi Zhang and Tristan Hornetz and Lukas Gerlach and Michael Schwarz},
  year={2025}
}

@misc{rainer2025rapid,
  title={Rapid Reversing of Non-Linear CPU Cache Slice Functions: Unlocking Physical Address Leakage},
  howpublished={S\&P},
  author={Mikka Rainer and Lorenz Hetterich and Fabian Thomas and Tristan Hornetz and Leon Trampert and Lukas Gerlach and Michael Schwarz},
  year={2025}
}

@misc{gerlach2025compiler,
  title={Do Compilers Break Constant-time Guarantees?},
  howpublished={FC},
  author={Lukas Gerlach and Robert Pietsch and Michael Schwarz},
  year={2025}
}

@misc{hornetz2025lixom,
  title={Lixom: Protecting Encryption Keys with Execute-Only Memory},
  howpublished={FC},
  author={Tristan Hornetz and Lukas Gerlach and Michael Schwarz},
  year={2025}
}

@misc{trampert2025peripheralinstinct,
  title={Peripheral Instinct: How External Devices Breach Browser Sandboxes},
  howpublished={WWW},
  author={Leon Trampert and Lorenz Hetterich and Lukas Gerlach and Mona Schappert and Christian Rossow and Michael Schwarz},
  year={2025}
}

@misc{hetterich2025shadowload,
  title={ShadowLoad: Injecting State into Hardware Prefetchers},
  howpublished={ASPLOS},
  author={Lorenz Hetterich and Fabian Thomas and Lukas Gerlach and Ruiyi Zhang and Nils Bernsdorf and Eduard Ebert and Michael Schwarz},
  year={2025}
}

@misc{trampert2025cascadingspysheets,
  title={Cascading Spy Sheets: Exploiting the Complexity of Modern CSS for Email and Browser Fingerprinting},
  howpublished={NDSS},
  author={Leon Trampert and Daniel Weber and Lukas Gerlach and Christian Rossow and Michael Schwarz},
  year={2025}
}

@misc{hornetz2025portprint,
  title={PortPrint: Identifying Inaccessible Code with Port Contention},
  howpublished={uASC},
  author={Tristan Hornetz and Michael Schwarz},
  year={2025}
}

@misc{trampert2025hiddenplainsight,
  title={Hidden in Plain Sight: Scriptless Microarchitectural Attacks via TrueType Font Hinting},
  howpublished={uASC},
  author={Leon Trampert and Michael Schwarz},
  year={2025}
}

@misc{weber2024irqguard,
  title={No Leakage Without State Change: Repurposing Configurable CPU Exceptions to Prevent Microarchitectural Attacks},
  howpublished={ACSAC},
  author={Daniel Weber and Leonard Niemann and Lukas Gerlach and Jan Reineke and Michael Schwarz},
  year={2024}
}

@misc{zhang2024cachewarp,
  title={CacheWarp: Software-based Fault Injection using Selective State Reset},
  howpublished={USENIX Security},
  author={Ruiyi Zhang and Lukas Gerlach and Daniel Weber and Lorenz Hetterich and Youheng Lü and Andreas Kogler and Michael Schwarz},
  year={2024}
}

@misc{bauer2024switchpoline,
  title={Switchpoline: A Software Mitigation for Spectre-BTB and Spectre-BHB on ARMv8},
  howpublished={ASIACCS},
  author={Markus Bauer and Lorenz Hetterich and Christian Rossow and Michael Schwarz},
  year={2024}
}

@misc{gerlach2024hash,
  title={Efficient and Generic Microarchitectural Hash-Function Recovery},
  howpublished={S\&P},
  author={Lukas Gerlach and Simon Schwarz and Nicolas Faroß and Michael Schwarz},
  year={2024}
}

@misc{schlueter2023fetchbench,
  title={FetchBench: Systematic Identification and Characterization of Proprietary Prefetchers},
  howpublished={CCS},
  author={Till Schlüter and Amit Choudhari and Lorenz Hetterich and Leon Trampert and Hamed Nemati and Ahmad Ibrahim and Michael Schwarz and Christian Rossow and Nils Ole Tippenhauer},
  year={2023}
}

@misc{gerlach2023blacksmithrepro,
  title={A Rowhammer Reproduction Study Using the Blacksmith Fuzzer},
  howpublished={ESORICS},
  author={Lukas Gerlach and Fabian Thomas and Robert Pietsch and Michael Schwarz},
  year={2023}
}

@misc{weber2023masc,
  title={Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks},
  howpublished={ESORICS},
  author={Daniel Weber and Fabian Thomas and Lukas Gerlach and Ruiyi Zhang and Michael Schwarz},
  year={2023}
}

@misc{weber2023meltdown3a,
  title={Reviving Meltdown 3a},
  howpublished={ESORICS},
  author={Daniel Weber and Fabian Thomas and Lukas Gerlach and Ruiyi Zhang and Michael Schwarz},
  year={2023}
}

@misc{kogler2023collidepower,
  title={Collide+Power: Leaking Inaccessible Data with Software-based Power Side Channels},
  howpublished={USENIX Security},
  author={Andreas Kogler and Jonas Juffinger and Lukas Giner and Lukas Gerlach and Martin Schwarzl and Michael Schwarz and Daniel Gruss and Stefan Mangard},
  year={2023}
}

@misc{zhang2023mwait,
  title={(M)WAIT for It: Bridging the Gap between Microarchitectural and Architectural Side Channels},
  howpublished={USENIX Security},
  author={Ruiyi Zhang and Taehyun Kim and Daniel Weber and Michael Schwarz},
  year={2023}
}

@misc{thomas2023hammulator,
  title={Hammulator: Simulate Now - Exploit Later},
  howpublished={DRAMSec},
  author={Fabian Thomas and Lukas Gerlach and Michael Schwarz},
  year={2023}
}

@misc{borrello2023cpu,
  title={CustomProcessingUnit: Reverse Engineering and Customization of Intel Microcode},
  howpublished={WOOT},
  author={Pietro Borrello and Catherine Easdon and Martin Schwarzl and Roland Czerny and Michael Schwarz},
  year={2023}
}

@misc{gerlach2023riscv,
  title={A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs},
  howpublished={S\&P},
  author={Lukas Gerlach and Daniel Weber and Ruiyi Zhang and Michael Schwarz},
  year={2023}
}

@misc{schwarzl2023compression,
  title={Practical Timing Side-Channel Attacks on Memory Compression},
  howpublished={S\&P},
  author={Martin Schwarzl and Pietro Borrello and Gururaj Saileshwar and Hanna Müller and Michael Schwarz and Daniel Gruss},
  year={2023}
}

@misc{chakraborty2023talus,
  title={TALUS: Reinforcing TEE Confidentiality with Cryptographic Coprocessors},
  howpublished={FC},
  author={Dhiman Chakraborty and Michael Schwarz and Sven Bugiel},
  year={2023}
}

@misc{karvandi2022hyperdbg,
  title={HyperDbg: Reinventing Hardware-Assisted Debugging},
  howpublished={CCS},
  author={Mohammad Sina Karvandi and MohammadHossein Gholamrezaei and Saleh Khalaj Monfared and Soroush Meghdadizanjani and Behrooz Abbassi and Ali Amini and Reza Mortazavi and Saeid Gorgin and Dara Rahmati and Michael Schwarz},
  year={2022}
}

@misc{rokicki2022portcontention,
  title={CPU Port Contention Without SMT},
  howpublished={ESORICS},
  author={Thomas Rokicki and Clémentine Maurice and Michael Schwarz},
  year={2022}
}

@misc{schwarzl2022dpi,
  title={Robust and Scalable Process Isolation against Spectre in the Cloud},
  howpublished={ESORICS},
  author={Martin Schwarzl and Pietro Borrello and Andreas Kogler and Kenton Varda and Thomas Schuster and Michael Schwarz and Daniel Gruss},
  year={2022}
}

@misc{trampert2022uarchfp,
  title={Browser-based CPU Fingerprinting},
  howpublished={ESORICS},
  author={Leon Trampert and Christian Rossow and Michael Schwarz},
  year={2022}
}

@misc{borrello2022aepicleak,
  title={ÆPIC Leak: Architecturally Leaking Uninitialized Data from the Microarchitecture},
  howpublished={USENIX Security},
  author={Pietro Borrello and Andreas Kogler and Martin Schwarzl and Moritz Lipp and Daniel Gruss and Michael Schwarz},
  year={2022}
}

@misc{easdon2022rapid,
  title={Rapid Prototyping for Microarchitectural Attacks},
  howpublished={USENIX Security},
  author={Catherine Easdon and Michael Schwarz and Martin Schwarzl and Daniel Gruss},
  year={2022}
}

@misc{giner2022lvi,
  title={Repurposing Segmentation as a Practical LVI-NULL Mitigation in SGX},
  howpublished={USENIX Security},
  author={Lukas Giner and Andreas Kogler and Claudio Canella and Michael Schwarz and Daniel Gruss},
  year={2022}
}

@misc{kogler2022minefield,
  title={Minefield: A Software-only Protection for SGX Enclaves against DVFS Attacks},
  howpublished={USENIX Security},
  author={Andreas Kogler and Daniel Gruss and Michael Schwarz},
  year={2022}
}

@misc{lipp2022amd,
  title={AMD Prefetch Attacks through Power and Time},
  howpublished={USENIX Security},
  author={Moritz Lipp and Daniel Gruss and Michael Schwarz},
  year={2022}
}

@misc{hetterich2022applespectre,
  title={Branch Different - Spectre Attacks on Apple Silicon},
  howpublished={DIMVA},
  author={Lorenz Hetterich and Michael Schwarz},
  year={2022}
}

@misc{kogler2022msrtemplate,
  title={Finding and Exploiting CPU Features using MSR Templating},
  howpublished={S\&P},
  author={Andreas Kogler and Daniel Weber and Martin Haubenwallner and Moritz Lipp and Daniel Gruss and Michael Schwarz},
  year={2022}
}

@misc{canella2021chestnut,
  title={Automating Seccomp Filter Generation for Linux Applications},
  howpublished={CCSW},
  author={Claudio Canella and Mario Werner and Daniel Gruss and Michael Schwarz},
  year={2021}
}

@misc{weber2021osiris,
  title={Osiris: Automated Discovery of Microarchitectural Side Channels},
  howpublished={USENIX Security},
  author={Daniel Weber and Ahmad Ibrahim and Hamed Nemati and Michael Schwarz and Christian Rossow},
  year={2021}
}

@misc{lipp2021platypus,
  title={PLATYPUS: Software-based Power Side-Channel Attacks on x86},
  howpublished={S\&P},
  author={Moritz Lipp and Andreas Kogler and David Oswald and Michael Schwarz and Catherine Easdon and Claudio Canella and Daniel Gruss},
  year={2021}
}

@misc{schwarzl2021specderef,
  title={Speculative Dereferencing of Registers: Reviving Foreshadow},
  howpublished={FC},
  author={Martin Schwarzl and Thomas Schuster and Michael Schwarz and Daniel Gruss},
  year={2021}
}

@misc{schwarzl2021specfuscator,
  title={Specfuscator: Evaluating Branch Removal as a Spectre Mitigation},
  howpublished={FC},
  author={Martin Schwarzl and Claudio Canella and Daniel Gruss and Michael Schwarz},
  year={2021}
}

@misc{trampert2025spysheets,
  title={Cascading Spy Sheets: The Privacy & Security Implications of CSS in Emails},
  howpublished={FOSDEM},
  author={Leon Trampert and Daniel Weber and Michael Schwarz},
  year={2026}
}

@misc{schwarz2025cpu,
  title={CPU Security Myths: Busted, Roasted, and Repeated Anyway},
  howpublished={Qualcomm Innovation Fellowship},
  author={Michael Schwarz},
  year={2025}
}

@misc{schwarz2024wie,
  title={Wie man unsichere Webseiten erkennt und sich schützt},
  howpublished={Saar-Security},
  author={Michael Schwarz},
  year={2024}
}

@misc{schwarz2024leaky,
  title={Leaky Processors: When the Laws of Nature Reveal Secrets},
  howpublished={Forschung in Natur- und Ingenieurwissenschaften},
  author={Michael Schwarz},
  year={2024}
}

@misc{schwarz2023visible,
  title={(In)visible Bugs - From Transient Execution to Architectural CPU Vulnerabilities},
  howpublished={AsianHOST},
  author={Michael Schwarz},
  year={2023}
}

@misc{schwarz2023great,
  title={With Great Power Comes Great Potential},
  howpublished={Tsinghua University},
  author={Michael Schwarz},
  year={2023}
}

@misc{gerlach2023security,
  title={A Security RISC? The State of Microarchitectural Attacks on RISC-V},
  howpublished={Black Hat Europe},
  author={Lukas Gerlach and Daniel Weber and Michael Schwarz},
  year={2023}
}

@misc{schwarz2023keine,
  title={Keine Frage des ob, sondern des wann...},
  howpublished={Cyber Security Tag},
  author={Michael Schwarz},
  year={2023}
}

@misc{schwarz2023unsichere,
  title={Unsichere Webseiten Erkennen},
  howpublished={CISPA <3 IGB},
  author={Michael Schwarz},
  year={2023}
}

@misc{schwarz2023beyond,
  title={Beyond the Noise: Automated Discovery of Microarchitectural Security Leaks},
  howpublished={CISPA Summer School},
  author={Michael Schwarz},
  year={2023}
}

@misc{weber2023cpu,
  title={CPU Fuzzing: Automatic Discovery of Microarchitectural Attacks},
  howpublished={RuhrSec},
  author={Daniel Weber and Michael Schwarz},
  year={2023}
}

@misc{schwarz2023sichere,
  title={Sichere die digitale Zukunft! - Smart Home und Passwortsicherheit},
  howpublished={Otto-Hahn-Gymnasium},
  author={Michael Schwarz},
  year={2023}
}

@misc{lipp2023transient,
  title={Transient Execution Attacks},
  howpublished={IT-Defense},
  author={Moritz Lipp and Michael Schwarz and Daniel Gruss},
  year={2023}
}

@misc{schwarz2022bug,
  title={Bug-Free Software but Insecure Systems?},
  howpublished={Airbus \& CISPA Day},
  author={Michael Schwarz},
  year={2022}
}

@misc{schwarz2022automated,
  title={Automated CPU-vulnerability Discovery},
  howpublished={EC Visit CISPA},
  author={Michael Schwarz},
  year={2022}
}

@misc{schwarz2022random,
  title={From Random Timings to Data Leakage},
  howpublished={Mathematics Preparatory Course UdS},
  author={Michael Schwarz},
  year={2022}
}

@misc{schwarz2022sicherheit,
  title={Sicherheit von Prozessoren},
  howpublished={Tag der offenen Tür | Universität des Saarlandes},
  author={Michael Schwarz},
  year={2022}
}

@misc{schwarz2022cpu,
  title={CPU Fuzzing for Discovering Hardware-caused Information Leakage},
  howpublished={hardwear.io},
  author={Michael Schwarz},
  year={2022}
}

@misc{schwarz2021learning,
  title={Learning Security through Gamified Challenges},
  howpublished={Best-Practice E-Learning an der UdS},
  author={Michael Schwarz},
  year={2021}
}

@misc{schwarz2021unsichere,
  title={Unsichere Systeme trotz fehlerfreier Software? Wie Hardware die Sicherheit von Software untergräbt},
  howpublished={Regionaltagung des Senior Experten Service},
  author={Michael Schwarz},
  year={2021}
}

@misc{schwarz2021seitenkanal,
  title={Seitenkanal-Angriffe: Wie Seiteneffekte Geheimnisse Verraten},
  howpublished={CISPA Roadshow},
  author={Michael Schwarz},
  year={2021}
}

@misc{schwarz2021pubquiz,
  title={Pubquiz rund um Informatik und Cybersicherheit},
  howpublished={Digitaltag},
  author={Michael Schwarz},
  year={2021}
}

@misc{canella2021enter,
  title={Enter Sandbox},
  howpublished={Black Hat Asia},
  author={Claudio Canella and Mario Werner and Michael Schwarz},
  year={2021}
}

@misc{schwarz2022turning,
  title={Turning Timing Differences into Data Leakage},
  howpublished={MIC-SEC},
  author={Michael Schwarz and Daniel Weber},
  year={2022}
}