Cascading Spy Sheets: The Privacy & Security Implications of CSS in Emails

Leon Trampert is a PhD student at the CISPA Helmholtz Center for Information Security under the supervision of Dr. Michael Schwarz and Prof. Christian Rossow. He likes to explore unintended security and privacy implications introduced by new Web standards. As such, he is interested in up-and-coming Web features such as WebAssembly or WebUSB. Leon has presented his work at various academic and industry conferences, including NDSS, ACM WWW, Black Hat Asia, and RuhrSec.

Daniel Weber is a PhD candidate researching in the field of microarchitectural attacks, such as side-channel and transient-execution attacks. His work focuses on automating the process of finding such attacks. Daniel gave presentations and trainings about his work on both, academic (e.g., USENIX, ESORICS) as well as industrial (e.g., Black Hat Europe/Asia/MEA, RuhrSec) conferences. He is part of Michael Schwarz' research group at the CISPA Helmholtz Center for Information Security. Before that, he obtained a Bachelor's degree in Cybersecurity from Saarland University. In his free time, Daniel participates in Capture the Flag competitions as part of the team saarsec.

Michael Schwarz is a tenured faculty at the CISPA Helmholtz Center for Information Security in Saarbruecken, Germany, with a focus on microarchitectural side-channel attacks and system security. He obtained his PhD with the title "Software-based Side-Channel Attacks and Defenses in Restricted Environments" in 2019 from Graz University of Technology. He holds two master's degrees, one in computer science and one in software engineering with a strong focus on security. He was part of the discovery of multiple CPU vulnerabilities, including Meltdown, Spectre, LVI, PLATYPUS, ZombieLoad, ÆPIC Leak, CacheWarp, Collide+Power, and GhostWrite. He was also part of the KAISER patch, the basis for Meltdown countermeasures now deployed in every modern operating system under names such as KPTI or KVA Shadow.