Publications

Note: these publication materials are presented to ensure a timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each paper's copyright (e.g., ACM Copyright Policy, IEEE Copyright Policy, ISOC Copyright Policy).

---

2011

• Junghwan Rhee, Zhiqiang Lin, and Dongyan Xu. "Characterizing Kernel Malware Behavior with Kernel Data Access Patterns". To appear in Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security (ASIACCS'11), Hong Kong, March 2011 (35/217= 16.1%). [Bibtex]

• Zhiqiang Lin, Junghwan Rhee, Xiangyu Zhang, Dongyan Xu, and Xuxian Jiang. "SigGraph: Brute Force Scanning of Kernel Data Structure Instances Using Graph-based Signatures". In Proceedings of the 18th Network and Distributed System Security Symposium (NDSS'11), San Diego, CA, February 2011 (28/139 = 20.1%). [Abstract][PDF][Bibtex][Demo][Slides]

2010

• Tao Bao, Yunhui Zheng, Zhiqiang Lin, Xiangyu Zhang and Dongyan Xu. "Strict Control Dependence and its Effect on Dynamic Information Flow Analyses". In Proceedings of the 2010 International Symposium on Software Testing and Analysis (ISSTA'10), Trento, Italy. July 2010 (24/105 = 23%). [Bibtex][PDF]

• Zhiqiang Lin, Xiangyu Zhang, and Dongyan Xu. "Reuse-Oriented Camouflaging Trojan: Vulnerability Detection and Attack Construction". In Proceedings of the 40th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN-DCCS'10), Chicago, IL, June 2010 (39/168=23.2%). [Abstract][PDF][Bibtex][Slides]

• Zhiqiang Lin, Xiangyu Zhang, and Dongyan Xu. "Automatic Reverse Engineering of Data Structures from Binary Execution". In Proceedings of the 17th Network and Distributed System Security Symposium (NDSS'10), San Diego, CA, February 2010 (24/156=15.4%). [Abstract][PDF][Bibtex][Slides][Demo]

• Zhiqiang Lin, Xiangyu Zhang, and Dongyan Xu. "Reverse Engineering Input Syntactic Structure from Program Execution and Its Applications". IEEE Transactions on Software Engineering. 36(5), 2010. [PDF][Bibtex]

2009

• Zhiqiang Lin, Ryan Riley, and Dongyan Xu. "Polymorphing Software by Randomizing Data Structure Layout". In Proceedings of the 6th SIG SIDAR Conference on Detection of Intrusions and Malware and Vulnerability Assessment (DIMVA'09). Milan, Italy, July 2009 ((10+3)/44=29.5%). [Abstract][PDF][Bibtex][Code]

• Tielei Wang, Tao Wei, Zhiqiang Lin, and Wei Zou. "IntScope: Automatically Detecting Integer Overflow Vulnerability In X86 Binary Using Symbolic Execution". In Proceedings of the 16th Network and Distributed System Security Symposium (NDSS'09), San Diego, CA, February 2009 (20/171=11.7%). [Abstract][PDF][Bibtex]

2008

• Zhiqiang Lin, and Xiangyu Zhang. "Deriving Input Syntactic Structure From Execution", in Proceedings of the 16th ACM SIGSOFT International Symposium on Foundations of Software Engineering (FSE'08). Atlanta, Georgia, USA, November 2008 (31/152=20.5%). [Abstract][PDF][Bibtex][Slides]

• Zhiqiang Lin, Xiangyu Zhang, and Dongyan Xu. "Convicting Exploitable Software Vulnerabilities: An Efficient Input Provenance Based Approach". In Proceedings of the 38th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN-DCCS'08), Anchorage, Alaska, USA, June 2008 (34/149=23%). [Abstract][PDF][Bibtex][Slides]

• Zhiqiang Lin, Xuxian Jiang, Dongyan Xu, and Xiangyu Zhang, "Automatic Protocol Format Reverse Engineering Through Context-Aware Monitored Execution", in Proceedings of the 15th Network and Distributed System Security Symposium (NDSS'08), San Diego, CA, February 2008 (21/118=17.8%) [Abstract][PDF][Bibtex][Slides]

2007

• Zhiqiang Lin, Xuxian Jiang, Dongyan Xu, Bing Mao, and Li Xie, "AutoPaG: Towards Automated Software Patch Generation with Source Code Root Cause Identification and Repair", in Proceedings of ACM Symposium on InformAtion, Computer and Communications Security (ASIACCS'07), Singapore, March 2007 (Acceptance ratio: 33/188=17.6%). [PDF][Bibtex][Slides]

2006

• Zhiqiang Lin, Nai Xia, Guole Li, Bing Mao, and Li Xie. "Transparent Run-Time Prevention of Format-String Attacks via Dynamic Taint and Flexible Validation", in Proceedings of the 9th Information Security Conference (ISC'06). Greece. Sept, 2006 (Acceptance ratio: 38/188=20.2%). [PDF][Bibtex][Code]

• Zhiqiang Lin, Bing Mao, and Li Xie. "A Practical Framework for Dynamically Immunizing Software Security Vulnerabilities", in Proceedings of the First International Conference on Availability, Reliability and Security (ARES'06) Austria. April, 2006. [PDF][Bibtex]

• Zhiqiang Lin, Bing Mao, and Li Xie. "LibsafeXP: A Practical and Transparent Tool for Run-time Buffer Overflow Preventions", in Proceedings of the 7th Annual IEEE Information Assurance Workshop (IAW'06). West Point, NY. USA. June, 2006. [PDF][Bibtex][Slides][Code]

---

HOME SOURCE