About
- I am an Associate Professor of Computer Science and Engineering at The Ohio State University
- I used to work at the Computer Science Department of The University of Texas at Dallas, as an assistant professor (2011-2016), an associate professor (2016-2017), and now an adjunct professor.
- I earned my PhD of computer science from Purdue University.
- I am a recipient of the NSF CAREER Award and the AFOSR YIP Award. In addition to AFOSR and NSF, my research has also been supported in part by DARPA, NSA, ONR, Raytheon, and VMware
- The best way to reach me is through my email:
- My office: DL 787
- Phone: (614) 292-0055
- Fax: (614) 292-2911
- Mail Address:
Zhiqiang Lin 787 Dreese Laboratories 2015 Neil Avenue Columbus, OH 43210-1277
Research
- Current Interests:
- Software Security (binary code analysis and its applications to vulnerability discovery, malicious code analysis, software hardening, and binary code reuses).
- Mobile Security (security of mobile systems including the security of both mobile apps and cloud servers)
- Systems Security (protecting OS kernel and hypervisor's control and data integrity, leveraging trusted hardware such as Intel SGX for secret protection)
- Cloud Computing (virtual machine introspection, automated cloud VM management)
- Digital Forensics (memory and disk forensics using program analysis and virtual machine introspection)
- Groups: The SecLab
- With Dr. Yinqian Zhang, we have established the Computer Security Laboratory (SecLab), and now we are both co-directing the lab. We are broadly interested in most of the systems security problems including but not limited to virtualization security, binary analysis, web and cloud security, mobile security, and IoT security.
- We are (always) looking for self-motivated students with solid systems (e.g., OS, virtualization, compiler, machine code) and networking as well as security background. Interested students who wish to purse a PhD under our direction please drop us an email.
- We also have openings for Post Doctoral Researchers, please contact us for further details.
- Selected and Recent Publications [Complete list]
- [NDSS'18] "Superset Disassembly: Statically Rewriting x86 Binaries Without Heuristics"
- [NDSS'18] "IoTFuzzer: Discovering Memory Corruptions in IoT Through App-based Fuzzing"
- [CCS'17] "AuthScope: Towards Automatic Discovery of Vulnerable Authorizations in Online Services''
- [CCS'17] "SGX-BigMatrix: A Practical Encrypted Data Analytic Framework With Trusted Processors''
- [CCS'17] "FreeGuard: A Faster Secure Heap Allocator''
- [WWW'17] "Exposing Server URLs of Mobile Apps With Selective Symbolic Execution"
- [NDSS'16] "Automatic Forgery of Cryptographically Consistent Messages to Identify Security Vulnerabilities in Mobile Services" (or How to brute-force user's password when given a mobile app)
- [FSE'15] "Automatically Deriving Pointer Reference Expressions From Executions For Memory Dump Analysis"
- [USENIX-SEC'15] "You Shouldn't Collect My Secrets: Thwarting Sensitive Keystroke Leakage in Mobile IME Apps"
- [USENIX-SEC'14] "Preventing Cryptographic Key Leakage in Cloud Virtual Machines"
- [USENIX-SEC'14] "X-Force: Force-Executing Binary Programs for Security Applications"
- [USENIX-ATC'14] "HyperShell: A Practical Hypervisor Layer Guest OS Shell for Automated In-VM Management"
- [NDSS'14] "Hybrid-Bridge: Efficiently Bridging the Semantic-Gap in Virtual Machine Introspection via Decoupled Execution and Training Memoization"
- [NDSS'14] "SMV-Hunter: Large Scale, Automated Detection of SSL/TLS Man-in-the-Middle Vulnerabilities in Android Apps"
- [CCS'13] "Obfuscation-resilient Binary Code Reuse through Trace-oriented Programming"
- [ISCA'13] "CPU Transparent Protection of OS Kernel and Hypervisor Integrity with Programmable DRAM"
- [CCS'12] "Binary Stirring: Self-randomizing Instruction Addresses of Legacy x86 Binary Code"
- [S&P'12] "Space Traveling across VM: Automatically Bridging the Semantic Gap in Virtual Machine Introspection via Online Kernel Data Redirection"
- [NDSS'12] "DIMSUM: Discovering Semantic Data of Interest from Un-mappable Memory with Confidence"
- [NDSS'11] "SigGraph: Brute Force Scanning of Kernel Data Structure Instances Using Graph-based Signatures"
- [NDSS'10] "Automatic Reverse Engineering of Data Structures from Binary Execution"
- [NDSS'09] "IntScope: Automatically Detecting Integer Overflows In X86 Using Symbolic Execution"
- [NDSS'08] "Automatic Protocol Format Reverse Engineering Through Context-Aware Monitored Execution"
- [FSE'08] "Deriving Input Syntactic Structure From Execution"
Teaching
- Spring 2018 (no teaching)
- The classes I taught before at the UT Dallas can be found at my prior teaching
Service
- Editorial Service:
- Associate Editor: IEEE Transactions on Dependable and Secure Computing (TDSC), 16~
- Conference Organization:
- Steering committee: International Symposium on Research in Attacks, Intrusions and Defenses (RAID), 17~
- Program co-Chair: IEEE International Performance Computing and Communications Conference (IPCCC), 13
- Program co-Chair: The Next Generation Malware Attacks and Defense Workshop (NGMAD), 13
- Publication Chair: IEEE International Performance Computing and Communications Conference (IPCCC), 12
- Publicity co-Chair: International Conference on Privacy, Security and Trust (PST), 15
- Publicity co-Chair: International Symposium on Foundations & Practice of Security (FPS), 15
- Web Chair: International Conference on Security and Privacy in Communication Networks, 15
- Local Arrangement Chair: ACM Conference on Computer and Communications Security (CCS), 17
- TPC Member:
- ACM Conference on Computer and Communications Security (CCS), 14, 15, 16, 18
- USENIX Security Symposium, 17
- Network and Distributed System Security Symposium (NDSS), 15
- World Wide Web (WWW) Conference, 18
- Annual Computer Security Applications Conference (ACSAC), 14, 16, 17, 18
- International Symposium on Research in Attacks, Intrusions and Defenses (RAID), 16
- ACM Symposium on Information, Computer and Communications Security (AsiaCCS), 13, 14, 15, 16, 18
- Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), 16, 17, 18
- Annual Digital Forensics Research Conference (DFRWS), 13, 14, 15, 16, 17, 18
- International Conference on Security and Privacy in Communication Networks (SECURECOMM), 15, 16, 17, 18
- Information Security Conference (ISC), 17
- IEEE Conference on Dependable and Secure Computing (DSC), 17
- Workshop on System Software for Trusted Execution (SysTex), 16, 17
- IEEE International Conference on Distributed Computing Systems (ICDCS), 14
- IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing (CCGrid), 13, 14
- IEEE International Conference on Big Data (BigData), 13, 14, 16
- The International Congress on Big Data (BigData), 14, 17
- International Conference on Privacy, Security and Trust (PST), 13, 14, 15
- International Symposium on Foundations and Applications of Big Data Analytics (FAB), 15, 16
- International Symposium on Big Data Management and Analytics (BIDMA), 16
- The IEEE International Conference on Cyber Security and Cloud Computing (CSCloud), 15
- International Workshop on Cloud Compliance (IWCC), 15
- Malware Memory Forensics Workshop (MMF), 14
- The European Workshop on Systems Security (EuroSec), 14
- IEEE International Performance Computing and Communications Conference (IPCCC), 11, 12, 13, 14, 15
- Workshop on Hardware and Architectural Support for Security and Privacy (HASP), 12, 13, 14, 15, 16
- IEEE International Conference on Cloud Computing Technology and Science (CloudCom), 14
- The International Symposium on Secure Virtual Infrastructures, 13, 14
- The International Conference on Information Security and Cryptology (INSCRIPT), 13
- International Workshop on Security (IWSEC), 16
- International Workshop on Security in Embedded Systems and Smartphones (SESP), 13
- International Conference on Availability, Reliability and Security (ARES), 12
- IEEE Services Workshop on Security and Privacy Engineering (SPE), 12, 13, 14
- IEEE Information Assurance Workshop (IAW), 07