Publication

Two papers on human-centered security research to appear in Euro S&P’25

Posted on April 5, 2025 by guofei

Shreyas has two papers on human-centered security research to appear in Euro S&P’25! They are “Demystifying the Perceptions Gap Between Designers and Practitioners in Two Security Standards” and “Incentivizing Security Excellence in Cyber Liability Insurance”. Congratulations, Shreyas!

New Web3 research on ENS security to appear in WWW’25

Posted on January 25, 2025 by guofei

Our paper “Beyond Visual Confusion: Understanding How Inconsistencies in ENS Normalization Facilitate Homoglyph Attacks” is accepted to WWW’25. Congratulations, Jianwei!

New network security research to appear in USENIX Security’24

Posted on May 20, 2024 by guofei

Recently, automatic moving target defense (AMTD) is recognized as a promising proactive defense technique against cyber attacks. In particular, NTO (Network Topology Obfuscation) is an emerging AMTD approach for dynamic reconfiguration of network infrastructure/configuration. In our new research that will appear in USENIX Security’24, we introduce a new CrossPoint attack that can escape the security protections of state-of-the-art NTO defenses. Congratulations, Xuanbo!

Reputation scores for Web3 are coming! (New research to appear in ICDCS’24)

Posted on April 15, 2024 by guofei

Our paper “WIRE: Web3 Integrated Reputation Engine” is accepted to ICDCS’24. Inspired by the FICO score system in traditional finance, we introduce WIRE, a new reputation engine designed to evaluate the trustworthiness of deployed DApps in the Web3 (blockchain/cryptocurrency/etc.) world! We’re releasing our prototype here! Congratulations to Suraj & Huancheng!

Test of Time Paper Award at ACSAC’23

Posted on December 7, 2023 by guofei

Our ACSAC’07 paper “A Taxonomy of Botnet Structures” (by David Dagon, Guofei Gu, Christopher P. Lee, and Wenke Lee) received the Test of Time Paper Award at this year’s ACSAC conference (2023)! We are so honored and humbled to receive this recognition for our botnet research in 2007!

Some background on the award from ACSAC: “These awards provide an opportunity to honor papers that have been published at ACSAC that have had enduring significance and impact to the security community. The committee considered papers published more than 15 years ago, and discussed their impact on academia, industry, and government. “

New software-defined programmable security research “Cerberus” will appear in IEEE S&P’24

Posted on August 30, 2023 by guofei

Our new research work “Cerberus” in the area of SPS (Software-defined Programmable Security) is accepted by IEEE S&P’24. This work shows that even with limited resources on existing programmable switches, we can now run multiple concurrent in-network security monitoring tasks so we can defend against diverse, high-volume, and dynamic attacks previous solutions could not handle. Cerberus can actually enhance the concurrency and capacity of programmable switches by an order of magnitude! We’ll release our prototype very soon. Congratulations again for the amazing work, Huancheng!

We are releasing SysFlow: the first programmable zero trust (ZT) framework for system security!

Posted on April 5, 2023 by guofei

Our SysFlow work will appear in IEEE Transactions on Information Forensics and Security (TIFS) 2023. SysFlow is the first programmable zero trust (ZT) framework for system security! It presents a novel system security development framework for programmable ZT security control of host system activities at runtime. It offers unprecedented and unified programmability for users to achieve their dynamic security needs. Read our paper (here) and try to use our prototype system here. Now you can build your own security applications on top of that!