Shih-Wei Li (黎士瑋)

My lab is looking for Ph.D. students, postdocs, and full-time research assitants. Email me if you are interested in applying.

find me on and .

SeKVM:
A formally verified KVM hypervisor that hosts confidential VMs (CVMs) for multiprocessor hardware.
Secvma:
An extended SeKVM with kernel integrity protection.
KrustVM:
A Rust-based secure KVM hypervisor for CVMs.
Reload+Reload:
Cache flush and memory contention side-channels on AMD SEV.
Scynteg:
A kernel-module/compiler-based system call protection framework.
CVM Live Migration:
Built the first prototype for CVM live migration on Arm Confidential Compute Architecture (CCA).