Lukas Gerlach

PhD Candidate

About

I am a PhD candidate at CISPA Helmholtz Center for Information Security in the research group of Dr. Michael Schwarz, where I started in 2023. My research focuses on microarchitectural security, exploring vulnerabilities in modern and emerging CPU architectures.

I work on automated security analysis techniques to discover and understand processor vulnerabilities, with publications at IEEE S&P, USENIX Security, and other top venues. My research spans RISC-V security, automated reverse-engineering of CPU internals, side-channel attacks on trusted execution environments, and compiler-induced cryptographic vulnerabilities.

Publications

2026

Zero-Store Elimination and its Implications on the SIKE Cryptosystem Lukas Gerlach, Niklas Flentje, Michael Schwarz uASC2026

2025

RISCover: Automatic Discovery of User-exploitable Architectural Security Vulnerabilities in Closed-Source RISC-V CPUs Fabian Thomas, Eric García Arribas, Lorenz Hetterich, Daniel Weber, Lukas Gerlach, Ruiyi Zhang, Michael Schwarz CCS2025

SCASE: Automated Secret Recovery via Side-Channel-Assisted Symbolic Execution Daniel Weber, Lukas Gerlach, Leon Trampert, Youheng Lue, Jo Van Bulck, Michael Schwarz USENIX Security2025

Confusing Value with Enumeration: Studying the Use of CVEs in Academia Moritz Schloegel, Daniel Klischies, Simon Koch, David Klein, Lukas Gerlach, Malte Wessels, Leon Trampert, Martin Johns, Mathy Vanhoef, Michael Schwarz, Thorsten Holz, Jo Van Bulck USENIX Security2025

Taming the Linux Memory Allocator for Rapid Prototyping Ruiyi Zhang, Tristan Hornetz, Lukas Gerlach, Michael Schwarz DIMVA2025

Rapid Reversing of Non-Linear CPU Cache Slice Functions: Unlocking Physical Address Leakage Mikka Rainer, Lorenz Hetterich, Fabian Thomas, Tristan Hornetz, Leon Trampert, Lukas Gerlach, Michael Schwarz S&P2025

Lixom: Protecting Encryption Keys with Execute-Only Memory Tristan Hornetz, Lukas Gerlach, Michael Schwarz FC2025

Do Compilers Break Constant-time Guarantees? Lukas Gerlach, Robert Pietsch, Michael Schwarz FC2025

Cascading Spy Sheets: Exploiting the Complexity of Modern CSS for Email and Browser Fingerprinting Leon Trampert, Daniel Weber, Lukas Gerlach, Christian Rossow, Michael Schwarz NDSS2025

ShadowLoad: Injecting State into Hardware Prefetchers Lorenz Hetterich, Fabian Thomas, Lukas Gerlach, Ruiyi Zhang, Nils Bernsdorf, Eduard Ebert, Michael Schwarz ASPLOS2025

Peripheral Instinct: How External Devices Breach Browser Sandboxes Leon Trampert, Lorenz Hetterich, Lukas Gerlach, Mona Schappert, Christian Rossow, Michael Schwarz WWW2025

2024

No Leakage Without State Change: Repurposing Configurable CPU Exceptions to Prevent Microarchitectural Attacks Daniel Weber, Leonard Niemann, Lukas Gerlach, Jan Reineke, Michael Schwarz ACSAC2024

Efficient and Generic Microarchitectural Hash-Function Recovery Lukas Gerlach, Simon Schwarz, Nicolas Faroß, Michael Schwarz IEEE S&P2024

CacheWarp: Software-based Fault Injection using Selective State Reset Ruiyi Zhang, Lukas Gerlach, Daniel Weber, Lorenz Hetterich, Youheng Lü, Andreas Kogler, Michael Schwarz USENIX Security2024

2023

Reviving Meltdown 3a Daniel Weber, Fabian Thomas, Lukas Gerlach, Ruiyi Zhang, Michael Schwarz ESORICS2023

Indirect Meltdown: Building Novel Side-Channel Attacks from Transient-Execution Attacks Daniel Weber, Fabian Thomas, Lukas Gerlach, Ruiyi Zhang, Michael Schwarz ESORICS2023

A Rowhammer Reproduction Study Using the Blacksmith Fuzzer Lukas Gerlach, Fabian Thomas, Robert Pietsch, Michael Schwarz ESORICS2023

Collide+Power: Leaking Inaccessible Data with Software-based Power Side Channels Andreas Kogler, Jonas Juffinger, Lukas Giner, Lukas Gerlach, Martin Schwarzl, Michael Schwarz, Daniel Gruss, Stefan Mangard USENIX Security2023

Hammulator: Simulate Now-Exploit Later Fabian Thomas, Lukas Gerlach, Michael Schwarz DRAMSec2023

A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs Lukas Gerlach, Daniel Weber, Ruiyi Zhang, Michael Schwarz IEEE S&P2023

Talks

A Security RISC? The State of Microarchitectural Attacks on RISC-V Blackhat EU 2023

Rowhammer Revisited: From Exploration to Exploitation and Mitigation m0leCon 2023 2023