|
ResearchMy research interests lie in computer security. In particular, I'm working on executable code analysis (also called binary analysis), and its application to computer security. My PhD dissertation tackled the problem of automatic detection and analysis of malicious code. First, I developed a generic and extensible dynamic binary analysis platform, codenamed TEMU, which is based on an open-source CPU emulator QEMU. Then I proposed a series of techniques to detect and analyze malicious behaviors from several different aspects. These techniques were implemented as plugins to TEMU platform, namely Renovo, Panorama, HookFinder, and HookScout. Check my dissertation for more details. I have also worked on network security topics, such as IPsec, Email Spam, and BGP security. Please check out my publication page and my CV if you want to get more information about my research! ProjectsI aim to pursue the following projects. For highly motivated current and prospective students, if you are interested in one of these topics or a related one, please drop me an email or stop by my office.
¡¤ TEMUv2: Next-generation dynamic binary analysis platform ¡¤ Advanced Malware Detection and Analysis ¡¤ Virtualization for Computer Security ¡¤ Computer Forensic Analysis
Software¡¤ TEMU: We are going to open-source TEMU very soon! Check my homepage or bitblaze web site for updates.
¡¤ IPSAPPOL: A prototype of Application-aware IPsec Policy System on Linux 2.6 (Use at your own risk!)
|
