I am a Professor of Computer Science and Engineering (CSE) at The Ohio State University (OSU), the director of Computer Security Laboratory (SecLab). I am also a faculty member at Institute for Cybersecurity and Digital Trust (ICDT), Center for Automotive Research (CAR), Translational Data Analytics Institute (TDAI), and NSF AI Institute for Future Edge Networks and Distributed Intelligence (AI-Edge).
I am the founding faculty advisor of Women in Cyber Security (WiCys) chapter at OSU, and I am also one of the faculty advisors of OSU Cybersecurity Club (OSUCyber)
I received my PhD in Computer Science from Purdue University.
I am broadly interested in most of the cybersecurity problems (e.g., vulnerability identification, authentication, authorization, introspection, deception, applied cryptography, and side channel analysis), with a key focus on using or innovating program analysis to solve the security problems.
More specifically, I have been working on developing new or using existing program analysis and reverse engineering techniques for vulnerability discovery with native binary code in the past decade, and recently also on byte code, script code, or even source code, covering the entire software stack from firmware to applications, from web and moblie to IoT. In addition to finding the vulnerabilities, I also work on hardening the software against various attacks, particulary on improving or using binary code rewriting, virtual machine introspection, and recently trusted execution environment (TEE) towards this goal.
Sometimes, I also use program analysis as a tool for measurement studies in order to gain insights and understanding on the security problems of interest.
I am a recipient of NSF CAREER Award and AFOSR YIP Award. In addition to AFOSR and NSF, my research has also been supported in part by other federal angencies such as ARO, DARPA, NHTSA, NSA, and ONR, and industry such as Amazon, Cisco, Raytheon, and VMware.