About
My name is Zhiqiang Lin, a 3rd year PhD student at Department of Computer Science, Purdue University. My academic advisor is Prof. Dongyan Xu. I also work closely with Prof. Xuxian Jiang, and Prof. Xiangyu Zhang. I am a member of Lab Friends. My primary research interests are System and Network Security, with a focus on using the techniques and tools on program analysis (VMM level, OS level, binary level, or source code level) and virtualizations, to instrument VMM, OS, binary, or even program source code to find out the vulnerability in goodware, or to analyze the behavior of malware.
Research
Recent Publications (full list).
- Zhiqiang Lin, Ryan Riley, and Dongyan Xu. "Polymorphing Software by Randomizing Data Structure Layout". In Proceedings of the 6th SIG SIDAR Conference on Detection of Intrusions and Malware and Vulnerability Assessment (DIMVA'09). Milan, Italy, July 2009 (29.5%).[Abstract][PDF][Bibtex]
- Tielei Wang, Tao Wei, Zhiqiang Lin, and Wei Zou. "IntScope: Automatically Detecting Integer Overflow Vulnerability in X86 Binary Using Symbolic Execution". To appear in Proceedings of the 16th Network and Distributed System Security Symposium (NDSS'09), San Diego, CA, February 2009 (20/171=11.7%). [Abstract][PDF][Bibtex]
- Zhiqiang Lin, and Xiangyu Zhang. "Deriving Input Syntactic Structure From Execution".In Proceedings of the 16th ACM SIGSOFT International Symposium on Foundations of Software Engineering (FSE'08). Atlanta, Georgia, USA, November 2008 (31/152=20.5%). [Abstract][PDF][Bibtex][Slides]
- Zhiqiang Lin, Xiangyu Zhang, and Dongyan Xu. "Convicting Exploitable Software Vulnerabilities: An Efficient Input Provenance Based Approach". In Proceedings of the 38th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'08), Anchorage, Alaska, USA, June 2008 (34/149=23%). [Abstract][PDF][Bibtex][Slides]
- Zhiqiang Lin, Xuxian Jiang, Dongyan Xu, and Xiangyu Zhang, "Automatic Protocol Format Reverse Engineering Through Context-Aware Monitored Execution". In Proceedings of the 15th Network and Distributed System Security Symposium (NDSS'08), San Diego, CA, February 2008 (21/118=17.8%). [Abstract][PDF][Bibtex][Slides]
Resources
- NEW: I am maintaining a directory of system and network security researchers, to help me quickly locate those active core security people.
- Also, I occasionally collected some research and development related resources, which I benefited a lot and would like to share.
Miscellaneous
Professional Activities
- Program Committee: IAW 2007
- Reviewer: RAID 2009, PLDI 2009, ICDCS 2009, MALWARE 2008, CATARS 2008, ICAC 2007, ICDCS 2007, SRDS 2007, ICCCN 2006
Awards and Honors
- ACM SIGSOFT CAPS Grant for the FSE'08, 2008
- USENIX Security Symposium 2008 Student Grant, 2008
- IEEE/IFIP DSN 2008 Student Travel Grant, 2008
- USENIX Security Symposium 2007 Student Stipend Award, 2007
Summer Intern
- Computer Science Laboratory, SRI International. Working with Dr. Vinod Yegneswaran on Malicious Code Analysis. May 2008 - August 2008
Contact
The best way to reach me: . I usually reply emails in less than a few minutes if my email kit tells me I have a to be replied email.