Our collaborative papers on software-defined vehicle security research are accepted to USENIX Security’22! Congratulations Lei, Le & Xiapu!
Yangyong has successfully defended his PhD thesis titled “Understanding and Securing Voice
Assistant Applications”! Big congratulations!
Our research papers on Service Worker security and voice service security are accepted to RAID’21. Congratulations Patrick & Yangyong!
Happer is a new tool for unpacking Android apps via a hardware-assisted approach. Congratulations, Lei & Xiapu!
We discovered a new type of security issue in Node.js ecosystem (named HPA, Hidden Property Abusing) and developed a new detection and verification tool, Lynx (released here). Congratulations, Feng & Jianwei!
Our work on discovering a new type of Web vulnerability, namely Service Worker based Cross-Site Scripting (SW-XSS), will appear in ACSAC’20. The artifacts (including VM and new detection tool source code) are also released (check here). Congratulations, Patrick!
SVHunter is a novel tool to pinpoints a wide range of sensitive methods in SDN controllers and create data dependencies to attack these methods. The source code is available here.
See our S&P’20 paper for more details: Feng Xiao, Jinquan Zhang, Jianwei Huang, Guofei Gu, Dinghao Wu, Peng Liu. “Unexpected Data Dependency Creation and Chaining: A New Attack to SDN.” In Proc. of the 41st IEEE Symposium on Security and Privacy (S&P’20), San Francisco, CA, May 2020. [pdf] [bib]
Mr. Jonathan Grimes has successfully defended his MS thesis titled “JANUS: Alternating Strength to Detect
MAC Spoof”! He is going to join Sandia National Laboratories soon. Congratulations, Jonathan!
Our papers on programmable data plane security (Poseidon), new Buffered Packets Hijacking attack in SDN, and blockchain security (SODA) are to appear in NDSS’20. Congratulations, Menghao, Jiahao &Qi, Ting & Xiapu!
Dr. Gu is honored to be named an IEEE Fellow (class of 2020), “for contributions to malware detection and security of next generation networks”.