IEEE Symposium on Security and Privacy 2026

Enter, Exit, Page Fault, Leak: Testing Isolation Boundaries for Microarchitectural Leaks
Oleksii Oleksenko¹, Flavien Solt², Cédric Fournet¹, Jana Hofmann,¹, Boris Köpf¹, Stavros Volos¹
¹: Azure Research, Microsoft, ²: ETH Zurich

Your Compiler is Backdooring Your Model: Understanding and Exploiting Compilation Inconsistency Vulnerabilities in Deep Learning Compilers
Simin Chen¹, Jinjun Peng¹, Yixin He², Junfeng Yang¹, Baishakhi Ray¹
¹: Columbia University, ²: University of Southern California

Demystifying and Exploiting ASLR on NVIDIA GPUs
Ruofan Zhu¹, Ganhao Chen¹, Wenbo Shen¹, Lyuye Zhang², Dakun Shen¹, Rui Chang¹, Yanan Guo³
¹: Zhejiang University, ²: Nanyang Technological University, ³: University of Rochester

Phoenix: Rowhammer Attacks on DDR5 with Self-Correcting Synchronization
Diego Meyer¹, Patrick Jattke¹, Michele Marazzi¹, Salman Qazi², Daniel Moghimi², Kaveh Razavi¹
¹: ETH Zurich, ²: Google

Nebula: Proving machine executions via folding schemes
Arasu Arun¹, Srinath Setty²
¹: New York University, ²: Microsoft Research

LLMs in the SOC: An Empirical Study of Human-AI Collaboration in Security Operations Centres
Ronal Singh¹, Shahroz Tariq¹, Fatemeh Jalalvand¹, Mohan Baruwal Chhetri¹, Surya Nepal¹, Cecile Paris¹, Martin Lochner²
¹: Data61, CSIRO, ²: eSentire Inc

Auditing Apple’s DifferentialPrivacy.framework: Implementation Bugs, Misconfigurations, and Practical Risks
Rishav Chourasia¹, Ergute Bao², Uzair Javaid¹, Xiaokui Xiao³
¹: Betterdata.ai, ²: Mohamed bin Zayed University of Artificial Intelligence, ³: National University of Singapore

Lost in Translation: Text Message Spoofing via Email
Sumanth Rao¹, Ye Shu¹, Stefan Savage¹, Aaron Schulman¹, Geoffrey M. Voelker¹, Enze Liu²
¹: UC San Diego, ²: CMU

BreakFAST: Confused Deputy Attack on Infinity Fabric to Break AMD SEV-SNP
Philipp Giersfeld, Benedict Schlüter, Shweta Shinde
ETH Zurich

Weighted Batched Threshold Encryption with Applications to Mempool Privacy
Amit Agarwal¹, Kushal Babel¹, Sourav Das¹, Babak Poorebrahim Gilkalaye¹, Arup Mondal², Benny Pinkas³, Peter Rindal¹, Aayush Yadav⁴
¹: Category Labs, ²: Ashoka University, ³: Bar-Ilan University, ⁴: George Mason University

TREVEX: A Black-Box Detection Framework For Data-Flow Transient Execution Vulnerabilities
Daniel Weber, Fabian Thomas, Leon Trampert, Ruiyi Zhang, Michael Schwarz
CISPA Helmholtz Center for Information Security

GPUBreach: Privilege Escalation Attacks on GPUs using Rowhammer
Chris S. Lin, Yuqin Yan, Guozhen Ding, Joyce Qu, Joseph Zhu, David Lie, Gururaj Saileshwar
University of Toronto

Responsible Disclosure is a Two-Way Street: Empirically Measuring the Responsible Disclosure Contract in the Firmware Ecosystem
Hui Jun Tay, Souradip Nath, Arvind S Raj, Abhay Bhat, Ishan Bansal, Audrey Dutcher, Moritz Schloegel, Adam Doupé, Tiffany Bao, Yan Shoshitaishvili, Ruoyu Wang
Arizona State University

Goldilocks and the Three P-States: Mitigating Hertzbleed with Formal Leakage Guarantees
Inwhan Chun¹, Christine Guo², Riccardo Paccagnella¹
¹: Carnegie Mellon University, ²: Princeton University

Distinguished Paper Awards