Heng Yin Assistant Professor Department of Electrical Engineering and Computer Science 4-283 Center for Sience and Technology Syracuse University Syracuse, NY 13244 TEL: 315-443-2483 FAX: 315-443-2583 Email: heyin [at] syr [dot] edu

I am an assistant professor in the department of Electrical Engineering and Computer Science at Syracuse University. I am a recipient of 2011 NSF CAREER award. My research interests lie in computer security. In particular, I'm interested in applying executable code analysis (also called binary analysis) and virtualization techniques to improve computer security.  I have also worked on network security topics, such as IPsec, Email Spam, and BGP security.

Teaching

• Spring 2010: CIS 700 Malware Defense and Software Security
• Summer 2010: Trusted Computing with AFRL
• Fall 2010: CIS 341/CSE 281 Computer Organization & Assembly Language
• Spring 2011: CIS 700/ CSE 791 Advanced Topics in Mobile Systems
• Fall 2011: CIS 341/CSE 281 Computer Organization & Assembly Language
• Spring 2012: CIS 700 / CSE 791 Malware Defense and Software Security

Research Interests and Projects

• Malware Detection and Analysis
• Virtualization
• Mobile System Security
• Digital Forensic Analysis

1. We have a couple of full-time and part-time RA openings for prospective and current students. If you have strong system skills and are interested in systems security research, please stop by my office or drop me an email.

Recent and Selected Publications (Complete publications)

[USENIX Security'12] ``DroidScope: Seamlessly Reconstructing OS and Dalvik Semantic Views for Dynamic Android Malware Analysis", Lok-Kwong Yan and Heng Yin, to appear in the 21st USENIX Security Symposium, Bellevue, WA, August 8-10, 2012.

[VEE'12] ``V2E: Combining Hardware Virtualization and Software Emulation for Transparent and Extensible Malware Analysis", Lok-Kwong Yan, Manjukumar Jayachandra, Mu Zhang, and Heng Yin, in the Eighth Annual International Conference on Virtual Execution Environments (VEE'12), London, UK, March 3-4, 2012. [PDF]

[NDSS'12] ``Identifying and Analyzing Pointer Misuses for Sophisticated Memory-corruption Exploit Diagnosis",Mingwei Zhang, Aravind Prakash, Xiaolei Li, Zhenkai Liang, and Heng Yin, 19th Annual Network & Distributed System Security Symposium (NDSS'12), San Diego, CA, February 5-8, 2012. [PDF]

[DIMVA'10] ``HookScout: Proactive and Binary-Centric Hook Detection'', Heng Yin, Pongsin Poosankam, Steve Hanna, and Dawn Song, in the 7th Conference on Detection of Instruction and Malware & Vulnerability Assessment (DIMVA'12), Bonn, Germany, July, 2012. [PDF]

[NDSS'08] ``HookFinder: Identifying and Understanding Malware Hooking Behaviors'', Heng Yin, Zhenkai Liang, and Dawn Song, in the 15th Annual Network and Distributed System Security Symposium (NDSS'08), San Diego, CA, February, 2008. [PDF]

[CCS'07] ``Panorama: Capturing System-wide Information Flow for Malware Detection and Analysis'', Heng Yin, Dawn Song, Manuel Egele, Christopher Kruegel, and Engin Kirda, in the 14th ACM Conference on Computer and Communication Security, Alexandra, VA, October 2007. [PDF]

Students

PhD Students: Qian Feng, Andrew Henderson, Aravind Prakash, Lok Yan, Mu Zhang.
MS Students: Eknath Venkataramani
Alumni: Tarun Sethi (MS in 2011, Cigital), Manjukumar Jayachandra (MS in 2011, Microsoft).

Professional Service

1. TPC member in SecureComm'11, DIMVA'12, SecureComm'12, NDSS'13.