Posts

This paper grew out of a three-month internship at Huawei and was completed with additional work at the University of Trento. It studies a security gap that has long remained underexplored in modern GPUs: despite the adoption of protections such as ASLR and stack canaries, the lack of hardware-enforced Data Execution Prevention still leaves room for code-injection attacks. The paper shows that these attacks are possible independently of CPU-side vulnerabilities, and that a software-based DEP mechanism can enforce W\oplusX-style memory protection while remaining compatible with proprietary vendor toolchains and precompiled libraries. ...

Presenting TAGSHIELD at AsiaCCS 2026 was a particularly meaningful experience for me, as it was my first academic conference as a speaker. TAGSHIELD addresses stack memory corruption in memory-unsafe C and C++ software by building on Arm Memory Tagging Extension (MTE). The main contribution of the paper is TAGShield, a runtime mitigation mechanism that enforces persistent and deterministic protection for stack spatial memory errors while preserving pointer tag integrity. It combines compile-time tagging with lightweight instrumentation to keep tags correct and to reduce the risk that pointer arithmetic or adversarial manipulation weakens the defense. ...

This is the result of my six-months internship at Quarkslab in Paris. During the internship I had the opportunity to analyze and break (literally) a Starlink’s User Terminal, extracting the firmware from it and trying to understand how the device works. You can have a look at my blog post and my Master’s Thesis Talking about this Maya Posch on hackaday.com jandeboevrie on Hacker News Ridaleneas in the SpaceXLounge on Reddit A First Glimpse of the Starlink User Ternimal on DARKNAVY