Homepage of Jämes Ménétrey

I'm a Ph.D. Student at the University of Neuchâtel,
in the Faculty of Science, affiliated with the Computer Science Department (IIUN).

I'm also a Recognized Contributor to WebAssembly technologies by the Bytecode Alliance.

Research

I'm deeply engaged in the fields of computer programming and cybersecurity. My research primarily revolves around two key areas:

Enhancing software security: This involves the use of trusted execution environments (TEEs) to secure software execution. My approach is centered on safeguarding sensitive computations and data from unauthorized access and manipulation, while ensuring trustworthy execution thanks to attestation.
Simplifying programming experience: I focus on abstracting the complexity inherent in programming for trusted execution environments through the use of WebAssembly. This technology serves as a bridge, making it easier for developers to work with various TEEs and platforms.

My Ph.D. thesis focuses on combining these two areas to provide trustworthy and attestable executing environments, while lowering the friction for developers of using such complex technologies by leveraging WebAssembly.

My research projects mostly use Intel SGX as a trusted execution environment, and WebAssembly Micro Runtime (WAMR) as a runtime to execute WebAssembly bytecode. As a strong believer in open source, my scientific contributions are usually available online, and upstreamed back to the official open-source repositories when possible.

Publications

My publications are also indexed on Google Scholar and DBLP. Influential publications are highlighted.

Conference Papers and Journal Articles

Fortress: Securing IoT Peripherals with Trusted Execution Environments P. Yuhala, J. Ménétrey, P. Felber, M. Pasin, V. Schiavoni ACM/SIGAPP Symposium On Applied Computing DOI arXiv Conference	SAC'24
A Comprehensive Trusted Runtime for WebAssembly with Intel SGX J. Ménétrey, M. Pasin, P. Felber, V. Schiavoni, G. Mazzero, A. Hollum, D. Vaydia IEEE Transactions on Dependable and Secure Computing DOI Journal Code	TDSC
A Holistic Approach for Trustworthy Distributed Systems with WebAssembly and TEEs J. Ménétrey, A. Grüter, P. Yuhala, J. Oeftiger, P. Felber, M. Pasin, V. Schiavoni Conference on Principles of Distributed Systems DOI arXiv Conference Code	OPODIS'23
Preventing EFail Attacks with Client-Side WebAssembly: The Case of Swiss Post's IncaMail P. Gerig, J. Ménétrey, B. Lanoix, F. Stoller, P. Felber, M. Pasin, V. Schiavoni ACM International Conference on Distributed and Event-Based Systems DOI arXiv Conference	DEBS'23
WaTZ: A Trusted WebAssembly Runtime Environment with Remote Attestation for TrustZone J. Ménétrey, M. Pasin, P. Felber, V. Schiavoni IEEE International Conference on Distributed Computing Systems DOI arXiv Conference Code	ICDCS'22
WebAssembly as a common layer for the cloud-edge continuum J. Ménétrey, M. Pasin, P. Felber, V. Schiavoni Flexible Resource and Application Management on the Edge DOI arXiv Conference	FRAME'22
Attestation Mechanisms for Trusted Execution Environments Demystified J. Ménétrey, C. Göttel, A. Khurshid, M. Pasin, P. Felber, V. Schiavoni, S. Raza IFIP International Conference on Distributed Applications and Interoperable Systems DOI arXiv Conference	DAIS'22
An Exploratory Study of Attestation Mechanisms for Trusted Execution Environments J. Ménétrey, C. Göttel, M. Pasin, P. Felber, V. Schiavoni Workshop on System Software for Trusted Execution arXiv Conference	SysTEX'22
Montsalvat: Intel SGX Shielding for GraalVM Native Images P. Yuhala, J. Ménétrey, P. Felber, V. Schiavoni, A. Tchana, G. Thomas, H. Guiroux, J. Lozi ACM/IFIP Middleware DOI arXiv Conference Code	Middleware'21
Twine: An Embedded Trusted Runtime for WebAssembly J. Ménétrey, M. Pasin, P. Felber, V. Schiavoni IEEE International Conference on Data Engineering DOI arXiv Conference Code	ICDE'21

Fortress: Securing IoT Peripherals with Trusted Execution Environments P. Yuhala, J. Ménétrey, P. Felber, M. Pasin, V. Schiavoni ACM/SIGAPP Symposium On Applied Computing DOI arXiv Conference	SAC'24
A Holistic Approach for Trustworthy Distributed Systems with WebAssembly and TEEs J. Ménétrey, A. Grüter, P. Yuhala, J. Oeftiger, P. Felber, M. Pasin, V. Schiavoni Conference on Principles of Distributed Systems DOI arXiv Conference Code	OPODIS'23
WaTZ: A Trusted WebAssembly Runtime Environment with Remote Attestation for TrustZone J. Ménétrey, M. Pasin, P. Felber, V. Schiavoni IEEE International Conference on Distributed Computing Systems DOI arXiv Conference Code	ICDCS'22
Attestation Mechanisms for Trusted Execution Environments Demystified J. Ménétrey, C. Göttel, A. Khurshid, M. Pasin, P. Felber, V. Schiavoni, S. Raza IFIP International Conference on Distributed Applications and Interoperable Systems DOI arXiv Conference	DAIS'22
Montsalvat: Intel SGX Shielding for GraalVM Native Images P. Yuhala, J. Ménétrey, P. Felber, V. Schiavoni, A. Tchana, G. Thomas, H. Guiroux, J. Lozi ACM/IFIP Middleware DOI arXiv Conference Code	Middleware'21

A Comprehensive Trusted Runtime for WebAssembly with Intel SGX J. Ménétrey, M. Pasin, P. Felber, V. Schiavoni, G. Mazzero, A. Hollum, D. Vaydia IEEE Transactions on Dependable and Secure Computing DOI Journal Code	TDSC
Preventing EFail Attacks with Client-Side WebAssembly: The Case of Swiss Post's IncaMail P. Gerig, J. Ménétrey, B. Lanoix, F. Stoller, P. Felber, M. Pasin, V. Schiavoni ACM International Conference on Distributed and Event-Based Systems DOI arXiv Conference	DEBS'23
WebAssembly as a common layer for the cloud-edge continuum J. Ménétrey, M. Pasin, P. Felber, V. Schiavoni Flexible Resource and Application Management on the Edge DOI arXiv Conference	FRAME'22
An Exploratory Study of Attestation Mechanisms for Trusted Execution Environments J. Ménétrey, C. Göttel, M. Pasin, P. Felber, V. Schiavoni Workshop on System Software for Trusted Execution arXiv Conference	SysTEX'22
Twine: An Embedded Trusted Runtime for WebAssembly J. Ménétrey, M. Pasin, P. Felber, V. Schiavoni IEEE International Conference on Data Engineering DOI arXiv Conference Code	ICDE'21

Open Source

I strongly support open source as a means of knowledge sharing. My GitHub profile is JamesMenetrey.
Below are some of my important contributions I have made over the past years.

Contributions to WebAssembly

WebAssembly Micro Runtime (WAMR) Fast, dependable and lightweight WebAssembly runtime	Repo, Pull Requests
Librats Low level attester and verifier drivers for multiple TEEs	Repo, Pull Requests
WebAssembly Spec WebAssembly specification, reference interpreter, and test suite.	Repo, Pull Requests

Contributions to TEEs

OP-TEE/build Makefiles to use OP-TEE on various platforms	Repo, Pull Requests

Contributions to Cryptography

WolfSSL/examples Example applications using the wolfSSL lightweight SSL/TLS library	Repo, Pull Requests

Contributions to Reverse Engineering

MemorySharp (author) A C# based memory editing library targeting Windows applications, offering various functions to extract and inject data and codes into remote processes to allow interoperability.	Repo
Fasm.NET (author) A managed wrapper to use FASM compiler from .NET applications.	Repo
Keystone-engine Keystone assembler framework: Core (Arm, Arm64, Hexagon, Mips, PowerPC, Sparc, SystemZ & X86) + bindings	Repo, Pull Requests

Service

Organizing Committee Member

DEBS ACM International Conference on Distributed and Event-based Systems	2023

Master and Bachelor Supervisor

UniNE University of Neuchâtel	2022, 2023

Master and Bachelor Assessor

HES-SO University of Applied Sciences and Arts Western Switzerland	2023
HEIG-VD Haute École d'Ingénierie et de Gestion du Canton de Vaud	2019

Capture the Flag Challenges Contributor

BlackAlps Black Alps is a non-profit organization whose main goal is the promotion of cybersecurity through the organization of Black Alps yearly conferences.	2019

Curriculum

Education

Ph.D. in Computer Science University of Neuchâtel, Switzerland	2020—
M.Sc. in Engineering University of Applied Sciences Western Switzerland (HES-SO)	2018—2020
B.Sc. in Computer Science Haute École d'Ingénierie et de Gestion du Canton de Vaud, Switzerland (HEIG-VD)	2014—2018
Advanced Federal Diploma of Higher Education in Software Engineering CPNV, Centre Professionnel du Nord Vaudois, Switzerland	2012—2014
Federal VET Diploma in Computer Science EPSIC École professionnelle de Lausanne, Switzerland	2008—2012

Awards

Recognized Contributor (WebAssembly-related) The Bytecode Alliance	2023
HiPEAC Tech Transfer Award (WebAssembly-related) HiPEAC	2022
Best Overall Marks Haute École d'Ingénierie et de Gestion du Canton de Vaud, Switzerland (HEIG-VD)	2018
Outstanding Bachelor's thesis Haute École d'Ingénierie et de Gestion du Canton de Vaud, Switzerland (HEIG-VD)	2018
Best Overall Marks CPNV, Centre Professionnel du Nord Vaudois, Switzerland	2014
Best Work of Diploma CPNV, Centre Professionnel du Nord Vaudois, Switzerland	2014
Award of Excellence EPSIC École professionnelle de Lausanne, Switzerland	2012

Employment

Scientific collaborator & teaching assistant University of Neuchâtel, Switzerland	2020—
Intern Security Engineer Navixia SA, Switzerland	2019—2020
Web Software Developer IMD Business School, Switzerland	2014—2018
Apprenticeship in Computer Science EPFL, Switzerland	2008—2012