FARE: Enabling Fine-grained Attack Categorization under Low-quality Labeled Data.
Proceedings of the 28th Annual Network and Distributed System Security Symposium, 2021
T2Pair: Secure and Usable Pairing for Heterogeneous IoT Devices.
Proceedings of the CCS '20: 2020 ACM SIGSAC Conference on Computer and Communications Security, 2020
Code Injection Attacks on HTML5-based Mobile Apps.
CoRR, 2014
Fine-Grained Access Control for HTML5-Based Mobile Applications in Android.
Proceedings of the Information Security, 16th International Conference, 2013
Mediums: visual integrity preserving framework.
Proceedings of the Third ACM Conference on Data and Application Security and Privacy, 2013
SCUTA: a server-side access control system for web applications.
Proceedings of the 17th ACM Symposium on Access Control Models and Technologies, 2012
Touchjacking Attacks on Web in Android, iOS, and Windows Phone.
Proceedings of the Foundations and Practice of Security - 5th International Symposium, 2012
Contego: Capability-Based Access Control for Web Browsers - (Short Paper).
Proceedings of the Trust and Trustworthy Computing - 4th International Conference, 2011
Position paper: why are there so many vulnerabilities in web applications?
Proceedings of the 2011 New Security Paradigms Workshop, 2011
Re-designing the Web's Access Control System - (Extended Abstract).
Proceedings of the Data and Applications Security and Privacy XXV, 2011
Attacks on WebView in the Android system.
Proceedings of the Twenty-Seventh Annual Computer Security Applications Conference, 2011
Bureaucratic protocols for secure two-party sorting, selection, and permuting.
Proceedings of the 5th ACM Symposium on Information, 2010