Ilya Grishchenko

Postdoctoral Researcher at UCSB SecLab

Logo Google Scholar

Welcome!

I am a postdoctoral researcher in Computer Science at the University of California, Santa Barbara, where I work in Security Lab (SecLab) led by Dr. Christopher Kruegel and Dr. Giovanni Vigna. My research is centered on Computer Security, specifically focusing on System Security and Formal Methods. The primary aim of my work is to develop automated program analysis techniques addressing different security challenges. You can find a list of my publications below or on my Google Scholar page.

Before coming to UCSB, I was a postdoctoral researcher at CISPA, where I worked with Dr. Christian Rossow. I obtained my Diploma from Orenburg State University, my Master’s degree from Saarland University, and my PhD from TU Wien under the supervision of Dr. Matteo Maffei. You can see more about my background in my CV.

I enjoy engaging in conversations and am always open to communication via email. Feel free to reach out to me at grishchenko@ucsb.edu.

Publications

[10] Ruaro, N., Gritti, F., McLaughlin, R., Grishchenko, I., Kruegel, C., & Vigna, G. (forthcoming, 2024). Not your Type! Detecting Storage Collision Vulnerabilities in Ethereum Smart Contracts. NDSS’24. [pdf]

[9] Gritti, F., Ruaro, N., McLaughlin, R., Bose, P., Das, D., Grishchenko, I., Kruegel, C., & Vigna, G. (2023). Confusum Contractum: Confused Deputy Vulnerabilities in Ethereum Smart Contracts. USENIX’23. [pdf]

[8] Bose, P., Das, D., Vasan, S., Mariani, S., Grishchenko, I., Continella, A., Bianchi, A., Kruegel, C., & Vigna, G. (2023). COLUMBUS: Android App Testing Through Systematic Callback Exploration. ICSE ‘23. [pdf]

[7] Krupp, J., Grishchenko, I., & Rossow, C. (2022). AmpFuzz: Fuzzing for Amplification DDoS Vulnerabilities. USENIX’22. [pdf]

[6] Gritti, F., Pagani, F., Grishchenko, I., Dresel, L., Redini, N., Kruegel, C., & Vigna, G. (2022). HEAPSTER: Analyzing the Security of Dynamic Allocators for Monolithic Firmware Images. S&P’22. [pdf]

[5] Bauer, M., Grishchenko, I., & Rossow, C. (2022). TyPro: Forward CFI for C-Style Indirect Function Calls Using Type Propagation. ACSAC’22. [pdf]

[4] Schneidewind, C., Grishchenko, I., Scherer, M., & Maffei, M. (2020). eThor: Practical and Provably Sound Static Analysis of Ethereum Smart contracts. CCS’20. [pdf]

[3] Grishchenko, I., Maffei, M., & Schneidewind, C. (2018). A Semantic Framework for the Security Analysis of Ethereum Smart contracts. POST’18. [pdf]

[2] Calzavara, S., Grishchenko, I., Koutsos, A., & Maffei, M. (2017). A Sound Flow-sensitive Heap Abstraction for the Static Analysis of Android Applications. CSF’17. [pdf]

[1] Calzavara, S., Grishchenko, I., & Maffei, M. (2016). HornDroid: Practical and Sound Static Analysis of Android Applications by SMT Solving. EuroS&P’16. [pdf]

Service

[BAR’23] (Program Committee) [RAID’24] (Program Committee) [USENIX’24] (Program Committee)