Benedict Markus Schlüter

Security Researcher & Doctoral Student at ETH Zurich

Security researcher with comprehensive knowledge of x86 and Arm architectures and a history of finding vulnerabilities in systems powering millions of servers. Aiming to leverage my expertise in confidential computing and bare-metal vulnerability assessment to build secure, high-performance hardware architectures that protect foundational bare-metal infrastructure without compromising workloads.

Education

  • Doctoral Student
    ETH Zurich, Switzerland (Feb. 2023 - Sep. 2026)
  • M.Sc, IT-Security
    Ruhr University Bochum, Germany (Oct. 2021 - Oct. 2022)
    Grade: 88% (fastest graduate, finished in 1 instead of 2 years)
  • B.Sc, Electrical Engineering
    Ruhr University Bochum, Germany (since Oct. 2021)
    Grade: 88% 110/180 ECTS (studying EE as a side quest)
  • B.Sc, IT-Security
    Ruhr University Bochum, Germany (Oct. 2018 - Sep. 2021)
    Grade: 96% (highest GPA in the graduation year out of 250)

Selected Publications

  • Staleus: Breaking AMD’s SEV-SNP via Residual Coherency States
    USENIX Security 2026 | Benedict Schlüter, Shweta Shinde
  • BreakFAST: Confused Deputy Attack on Infinity Fabric to Break AMD SEV-SNP
    IEEE S&P 2026 / Distinguished Paper Award | Philipp Giersfeld*, Benedict Schlüter*, Shweta Shinde
  • Fabricked: Misconfiguring Infinity Fabric to Break AMD SEV-SNP
    USENIX Security 2026 | Benedict Schlüter*, Christoph Wech*, Shweta Shinde
  • RMPocalypse: How a Catch-22 Breaks AMD SEV-SNP
    CCS 2025 | Benedict Schlüter, Shweta Shinde
  • WeSee: Using Malicious #VC Interrupts to Break AMD SEV-SNP
    IEEE S&P 2024 / Distinguished Paper Award | Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, Shweta Shinde

For a full list of publications and manuscripts, please visit my Publications page or Google Scholar.

Impact & CVEs

  • CVE-2021-29155 / CVE-2021-34556 / CVE-2021-33624: Three speculative execution vulnerabilities in the Linux eBPF subsystem. Led to disabling unprivileged eBPF by default in Linux.
  • CVE-2024-25742 / 2024-2574 / 2024-25744: Interrupt injection attack vector compromising virtual machines across Intel and AMD.
  • CVE-2024-29970 / CVE-2024-29971 / CVE-2024-25371: Signal injection into SGX enclaves resulting in state corruption (EnclaveOS, Scone, Gramine).
  • CVE-2025-0033: Insufficient protection of the SEV-SNP RMP during initialization.
  • CVE-2025-54510 / CVE-2025-54509 / CVE-2025-61971 / CVE-2025-61972: Embargoed vulnerabilities related to platform architecture and coherency.

Work Experience

  • Doctoral Student | ETH Zurich (since Feb. 2023)
    Expert in AMD x86 architecture, specifically SEV-SNP security frameworks. Identified multiple novel platform-level vulnerabilities. Highly familiar with KVM internals and developed exploits for various vulnerabilities.
  • Security Software Engineer | Edgeless Systems GmbH (Oct. 2021 - Sep. 2022)
    Designed and implemented high-availability backends in Golang for Constellation. Focused on secure inter-node state exchange using gRPC and bootstrapping Kubernetes clusters within dynamic WireGuard VPNs.
  • Teaching Assistant / Lecturer | Ruhr University Bochum (Oct. 2019 - Jan. 2023)
    Head TA for a first-year architecture lecture (600+ attendees). Lecturer for second-year System Theory.

Awards & Honors

  • Distinguished Paper Award: IEEE S&P 2026 & IEEE S&P 2024
  • Google PhD Fellowship 2025: Privacy, Safety, and Security
  • Pwnie Award Finalist 2024: Most Innovative Research
  • Eurobits Excellence Award 2022: Best German info-sec thesis
  • G-DATA Award 2022 & ESCRYPT Young Talent Award 2022: Top academic achievements at RUB
[email protected]