I am a Distinguished Professor of Engineering in the Department of Computer Science and Engineering (CSE) at The Ohio State University (OSU), and the founding director of Computer Security Laboratory (SecLab).
I am also a faculty member at Institute for Cybersecurity and Digital Trust (ICDT), Center for Automotive Research (CAR), Translational Data Analytics Institute (TDAI), and NSF AI Institute for Future Edge Networks and Distributed Intelligence (AI-Edge).
I am the founding faculty advisor of Women in Cyber Security (WiCys) chapter at OSU, and I am also one of the faculty advisors of OSU Cybersecurity Club (OSUCyber)
I received my PhD in Computer Science from Purdue University.
I am broadly interested in most of the cybersecurity problems (e.g., vulnerability discovery, authentication, authorization, introspection, deception, applied cryptography, and side channel analysis), with a key focus on advancing or using program analysis to solve the security problems.
More specifically, I have been working on developing novel or using existing program analysis and reverse engineering techniques for vulnerability discovery with native binary code in the past decade, and recently also on byte code (Java), script code (JavaScript), or even source code (C/C++), covering the entire software stack from firmware to applications, from web, mobile, IoT (particularly Bluetooth), to blockchain. In addition to finding vulnerabilities, I also work on hardening the software against various attacks, particularly on improving or using binary code rewriting, virtual machine introspection, and trusted execution environment (TEE) towards this goal.
Sometimes, I also use program (binary or source code) analysis as a tool for measurement studies in order to gain insights and understanding on the security problems of interest.
My research has been supported in part by federal agencies such as AFOSR, ARO, DARPA, NHTSA, NSA, NSF, and ONR, and industry such as Amazon, Cisco, Raytheon, and VMware.
I am an ACM Distinguished Member, a recipient of NSF CAREER Award and AFOSR YIP Award. I also received the Harrison Faculty Award for Excellence in Engineering Education from College of Engineering, and the Outstanding Faculty Teaching Award from Departement of Computer Science and Engineering at OSU.
12/06/2022, Towards Distributed and Virtualized Trusted Execution Environments [PDF], invited talk at 2nd Program Analysis and Verification on Trusted Platforms (PAVeTrust) Workshop (PAVeTrust)
12/01/2022, Rethinking the Security and Privacy of Bluetooth Low Energy [PDF] [Youtube], invited talk at Future Edge Networks and Distributed Intelligence (AI-Edge Seminar Series )
11/30/2022, Rethinking the Security and Privacy of Bluetooth Low Energy [PDF], invited talk by the Splice group at Dartmouth College
10/25/2022, Rethinking the Security and Privacy of Bluetooth Low Energy [PDF], invited talk at Seoul National University
10/17/2022, Rethinking the Security and Privacy of Bluetooth Low Energy [PDF], Computer Science Colloquium at Purdue University
10/14/2022, Rethinking the Security and Privacy of Bluetooth Low Energy [PDF], Computer Science Colloquium at Michigan Technological University
10/03/2022, Why do we do Research in Cybersecurity? [PDF], panel discussion at 16th International Conference on Networking, Architecture, and Storage (NAS 2022)