Marcel Busch, M. Sc.

Department of Computer Science
Chair of Computer Science 1 (IT Security Infrastructures)

Room: Room 12.156
Martensstr. 3
91058 Erlangen

I am a PostDoc at Friedrich-Alexander-Universität Erlangen-Nürnberg working with the System Security and Software Protection research group. Currently, my research focuses on the security of mobile devices – especially trusted execution environments (TEEs) and their flaws. I am interested in binary analysis and automated vulnerability discovery.


  • Marcel Busch, Florian Nicolai, Fabian Fleischer, Christsian Rückert, Christoph Safferling, and Felix Freiling. “Make Remote Forensic Investigations Forensic Again: Increasing the Evidential Value of Remote Forensic Investigations”. In: International Conference on Digital Forensics and Cyber Crime (ICDF2C 2020). 2020. Best Paper Award.
  • Marcel Busch, Johannes Westphal, and Tilo Müller. “Unearthing the TrustedCore: A Critical Review on Huawei’s Trusted Execution Environment”. In: Proceedings of the 14th USENIX Workshop on Offensive Technologies (WOOT) co-located with the 29th USENIX Security Symposium (USENIX Security 2020). 2020. Best Student Paper Award.
  • Fabian Fleischer, Marcel Busch, and Phillip Kuhrt. “Memory Corruption Attacks within Android TEEs: A Case Study Based on OP-TEE”. In: Proceedings of the International Workshop on Security of Mobile Applications (IWSMA) co-located with the 15th International Conference on Availability, Reliability and Security (ARES). 2020.
  • Chad Spensky, Aravind Machiry, Marcel Busch, Kevin Leach, Rick Housley, Christopher Kruegel, and Giovanni Vigna. “TRUST. IO: Protecting Physical Interfaces on Cyber- physical Systems”. In: Proceedings of the 8th IEEE Conference on Communications and Network Security (IEEE CNS). 2020.
  • Marcel Busch and Kalle Dirsch. “Finding 1-Day Vulnerabilities in Trusted Applications using Selective Symbolic Execution”. In: Proceedings of the 3rd Workshop on Binary Analysis Research (BAR) co-located with the 27th Network and Distributed System Security Symposium (NDSS). 2020.
  • Marcel Busch, Ralph Schlenk, and Hans Heckel. “TEEMo: Trusted Peripheral Monitoring for Optical Networks and Beyond”. In: Proceedings of the 4th Workshop on System Software for Trusted Execution (SysTEX) co-located with the 27th ACM Symposium on Operating Systems Principles (SOSP). 2019. Best Paper Award.
  • Marcel Busch, Mykolai Protsenko, and Tilo Müller. “A Cloud-Based Compilation and Hardening Platform for Android Apps”. In: Proceedings of the 12th International Conference on Availability, Reliability and Security (ARES). ACM, 2017.
  • Markus Meyer, Helge Janicke, Peter Trapp, Christian Facchi, and Marcel Busch. “Performance Simulation of a System’s Parallelization”. In: Proceedings of the 6th International Conference on Software Engineering Advances (ICSEA). IARIA, 2011.


I regularly participate in capture-the-flag competitions with the FAU Security Team (FAUST) or Shellphish from UC Santa Barbara.
At our lab, I am the responsible for FAUST. If you are with FAU and interested in security, you should consider subscribing to our mailinglist. If you have other questions regarding the team, feel free to drop me an email.


ID: 804A129426B28454
SHA1 Fingerprint: CD35 4C70 B196 89FA 51F8  0617 804A 1294 26B2 8454
Public Key: ASCII-armored


Serial Number: 7648765103955783 (0x1b2c82e6fddf47)
SHA1 Fingerprint: A420 C861 100A 6F01 6650 120E 0429 1272 7BE0 2A5E
Issuer: FAU-CA > DFN-Verein PCA Global – G01 > Deutsche Telekom Root CA 2
Certificate: PEM / DER / TXT

You might also want to retrieve and verify this information directly from the DFN PKI.