Bernhard Grill

Bernhard Grill

General Information

I am working as software and security engineer at Google in Zurich, after spending an awesome time in their headquarter in Mountain View.

Prior, I was a master student at the Secure Systems Lab @ Vienna University of Technology where I conducted my master thesis in the area of malware detection and analysis. Thereby, I have also worked with Herbert Bos' system security research group at VU Amsterdam.

Research Interests & Projects

I am mainly interested in system security with special emphasis on malicious code detection, malware analysis and reversing.

Teaching

I was also involved in teaching advanced classes on system and network security: Advanced Internet Security (aka InetSec2)

Media

Competitions

I have participated in various security competitions and Capture The Flags (CTF).

Contact

You can reach me via bgrill(at)seclab.tuwien.ac.at

If you prefer a more stealth communication my pgp key id is 0xEEA9691C and the corresponding fingerprint: BEC2 51DF FFB2 6B4D EAB9 C5FA 7490 1CB0 EEA9 691C

Publications

Blog posts

  1. Detecting and eliminating the Android Chamois botnet [Google blog]

Conferences and Workshops

  1. Slick: An Intrusion Detection System for Virtualized Storage Devices
    Andrei Bacs, Cristiano Giuffrida, Bernhard Grill, and Herbert Bos
    31st ACM Symposium on Applied Computing (SAC), Pisa, Italy, April 2016, acceptance rate: 24.1% (252/1047)
    [paper]

  2. "Nice Boots!" - A Large-Scale Analysis of Bootkits and New Ways to Stop Them
    Bernhard Grill, Andrei Bacs, Christian Platzer, and Herbert Bos
    12th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Milano, Italy, July 2015, acceptance rate: 22.7% (17/75)
    [paper] [slides]

  3. Multi-objective evolutionary optimization of computation-intensive simulations – The case of security control selection
    Bernhard Grill, Andreas Ekelhart, Elmar Kiesling, Christian Stummer and Christine Strauss
    11th Metaheuristics International Conference (MIC), Agadir, Marocco, June 2015
    [paper] [slides]

  4. A Practical Approach for Generic Bootkit Detection and Prevention
    Bernhard Grill, Christian Platzer and Juergen Eckel
    7th European Workshop on System Security (EuroSec), Amsterdam, Netherlands, April 2014, acceptance rate: 42.9% (6/14)
    [paper] [slides]

  5. Komplexe Systeme, heterogene Angreifer und vielfältige Abwehrmechanismen: Simulationsbasierte Entscheidungsunterstützung im IT-Sicherheitsmanagement (german language)
    Andreas Ekelhart, Bernhard Grill, Elmar Kiesling, Christine Strauss and Christian Stummer
    6. GI-Sicherheit Fachtagung, Vienna, Austria, March 2014, acceptance rate: 41.2% (35/85)
    [paper (german)] [slides]

  6. Evolving Secure Information Systems through Attack Simulation
    Elmar Kiesling, Andreas Ekelhart, Bernhard Grill, Christian Stummer and Christine Strauss
    47th Hawaii International Conference on System Science (HICSS), Hawaii, USA, January 2014
    [paper]

  7. Simulation-based optimization of information security controls: An adversary-centric approach
    Elmar Kiesling, Andreas Ekelhart, Bernhard Grill, Christine Strauss and Christian Stummer
    45th Winter Simulation Conference (WSC), Washington D.C., USA, December 2013
    [paper]

  8. Multi objective decision support for IT security control selection
    Elmar Kiesling, Andreas Ekelhart, Bernhard Grill, Christine Strauss and Christian Stummer
    26th European Conference on Operational Research (EURO), Rome, Italy, July 2013

  9. Simulation based optimization of IT security controls: Initial experiences with metaheuristic solution procedures
    Elmar Kiesling, Andreas Ekelhart, Bernhard Grill, Christine Strauss and Christian Stummer
    14th EU/ME Workshop, Hamburg, Germany, February 2013
    [paper]

Journals

  1. Selecting security control portfolios: a multi-objective simulation-optimization approach
    Elmar Kiesling, Andreas Ekelhart, Bernhard Grill, Christine Strauss and Christian Stummer
    EURO Journal on Decision Processing (EJDP), Springer, April 2016

  2. Integrating attacker behavior in IT security analysis: a discrete-event simulation approach
    Andreas Ekelhart, Elmar Kiesling, Bernhard Grill, Christine Strauss and Christian Stummer
    Journal on Information Technology & Management (ITEM), Springer, June 2015
    [paper]

Miscellaneous

  • September 2014: Checkout our white paper (german) on the shellshock bug (CVE-2014-6271, CVE-2014-7169, and many more...)
  • July 2014: I have discovered a local (and possibly also remote) privilege escalation to gain admin privileges as user due to wrong configuration on the pre installed Win7 of Acer laptops.
  • April 2014: Checkout our white paper (german) on the SSL heartbleed bug (CVE-2014-0160)

Last Modified: Sat Jul 29 15:48:45 CEST 2017


International Secure Systems Lab www.iseclab.org