We stand with Ukraine  

Zhiyun Qian

Orcid: 0000-0003-1506-2522

Affiliations:
  • University of California Riverside, USA


According to our database1, Zhiyun Qian authored at least 120 papers between 2009 and 2024.

Collaborative distances:

Timeline

Legend:

Book 
In proceedings 
Article 
PhD thesis 
Dataset
Other 

Links

Online presence:

On csauthors.net:

Bibliography

2024
Enhancing Static Analysis for Practical Bug Detection: An LLM-Integrated Approach.
[BibTeX]
[DOI]
Haonan Li
,
Yu Hao
,
Yizhuo Zhai
,
Zhiyun Qian
Proc. ACM Program. Lang., 2024

Comprehensive Memory Safety Validation: An Alternative Approach to Memory Safety.
[BibTeX]
[DOI]
Kaiming Huang
,
Mathias Payer
,
Zhiyun Qian
,
Jack Sampson
,
Gang Tan
,
Trent Jaeger
IEEE Secur. Priv., 2024

Static Detection of Filesystem Vulnerabilities in Android Systems.
[BibTeX]
[DOI]
Yu-Tsung Lee
,
Hayawardh Vijayakumar
,
Zhiyun Qian
,
Trent Jaeger
CoRR, 2024

Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems.
[BibTeX]
[DOI]
Jinmeng Zhou
,
Jiayi Hu
,
Ziyue Pan
,
Jiaxun Zhu
,
Wenbo Shen
,
Guoren Li
,
Zhiyun Qian
CoRR, 2024

SyzRetrospector: A Large-Scale Retrospective Study of Syzbot.
[BibTeX]
[DOI]
Joseph Bursey
,
Ardalan Amiri Sani
,
Zhiyun Qian
CoRR, 2024

SymBisect: Accurate Bisection for Fuzzer-Exposed Vulnerabilities.
[BibTeX]
[DOI]
Zheng Zhang
,
Yu Hao
,
Weiteng Chen
,
Xiaochen Zou
,
Xingyu Li
,
Haonan Li
,
Yizhuo Zhai
,
Zhiyun Qian
,
Billy Lau
Proceedings of the 33rd USENIX Security Symposium, 2024

Don't Waste My Efforts: Pruning Redundant Sanitizer Checks by Developer-Implemented Type Checks.
[BibTeX]
[DOI]
Yizhuo Zhai
,
Zhiyun Qian
,
Chengyu Song
,
Manu Sridharan
,
Trent Jaeger
,
Paul L. Yu
,
Srikanth V. Krishnamurthy
Proceedings of the 33rd USENIX Security Symposium, 2024

OPTISAN: Using Multiple Spatial Error Defenses to Optimize Stack Memory Protection within a Budget.
[BibTeX]
[DOI]
Rahul George
,
Mingming Chen
,
Kaiming Huang
,
Zhiyun Qian
,
Thomas La Porta
,
Trent Jaeger
Proceedings of the 33rd USENIX Security Symposium, 2024

SyzGen++: Dependency Inference for Augmenting Kernel Driver Fuzzing.
[BibTeX]
[DOI]
Weiteng Chen
,
Yu Hao
,
Zheng Zhang
,
Xiaochen Zou
,
Dhilung Kirat
,
Shachee Mishra
,
Douglas Lee Schales
,
Jiyong Jang
,
Zhiyun Qian
Proceedings of the IEEE Symposium on Security and Privacy, 2024

SyzBridge: Bridging the Gap in Exploitability Assessment of Linux Kernel Bugs in the Linux Ecosystem.
[BibTeX]
[DOI]
Xiaochen Zou
,
Yu Hao
,
Zheng Zhang
,
Juefei Pu
,
Weiteng Chen
,
Zhiyun Qian
Proceedings of the 31st Annual Network and Distributed System Security Symposium, 2024

K-LEAK: Towards Automating the Generation of Multi-Step Infoleak Exploits against the Linux Kernel.
[BibTeX]
[DOI]
Zhengchuan Liang
,
Xiaochen Zou
,
Chengyu Song
,
Zhiyun Qian
Proceedings of the 31st Annual Network and Distributed System Security Symposium, 2024

An Investigation of Patch Porting Practices of the Linux Kernel Ecosystem.
[BibTeX]
[DOI]
Xingyu Li
,
Zheng Zhang
,
Zhiyun Qian
,
Trent Jaeger
,
Chengyu Song
Proceedings of the 21st IEEE/ACM International Conference on Mining Software Repositories, 2024

DNS Exfiltration Guided by Generative Adversarial Networks.
[BibTeX]
[DOI]
Abdulrahman Fahim
,
Shitong Zhu
,
Zhiyun Qian
,
Chengyu Song
,
Evangelos E. Papalexakis
,
Supriyo Chakraborty
,
Kevin S. Chan
,
Paul L. Yu
,
Trent Jaeger
,
Srikanth V. Krishnamurthy
Proceedings of the 9th IEEE European Symposium on Security and Privacy, 2024

2023
Top of the Heap: Efficient Memory Error Protection for Many Heap Objects.
[BibTeX]
[DOI]
Kaiming Huang
,
Mathias Payer
,
Zhiyun Qian
,
Jack Sampson
,
Gang Tan
,
Trent Jaeger
CoRR, 2023

The Hitchhiker's Guide to Program Analysis: A Journey with Large Language Models.
[BibTeX]
[DOI]
Haonan Li
,
Yu Hao
,
Yizhuo Zhai
,
Zhiyun Qian
CoRR, 2023

PolyScope: Multi-Policy Access Control Analysis to Triage Android Scoped Storage.
[BibTeX]
[DOI]
Yu Tsung Lee
,
Haining Chen
,
William Enck
,
Hayawardh Vijayakumar
,
Ninghui Li
,
Zhiyun Qian
,
Giuseppe Petracca
,
Trent Jaeger
CoRR, 2023

A Hybrid Alias Analysis and Its Application to Global Variable Protection in the Linux Kernel.
[BibTeX]
[DOI]
Guoren Li
,
Hang Zhang
,
Jinmeng Zhou
,
Wenbo Shen
,
Yulei Sui
,
Zhiyun Qian
Proceedings of the 32nd USENIX Security Symposium, 2023

SyzDescribe: Principled, Automated, Static Generation of Syscall Descriptions for Kernel Drivers.
[BibTeX]
[DOI]
Yu Hao
,
Guoren Li
,
Xiaochen Zou
,
Weiteng Chen
,
Shitong Zhu
,
Zhiyun Qian
,
Ardalan Amiri Sani
Proceedings of the 44th IEEE Symposium on Security and Privacy, 2023

Assisting Static Analysis with Large Language Models: A ChatGPT Experiment.
[BibTeX]
[DOI]
Haonan Li
,
Yu Hao
,
Yizhuo Zhai
,
Zhiyun Qian
Proceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2023

Unsafe at Any Copy: Name Collisions from Mixing Case Sensitivities.
[BibTeX]
[DOI]
Aditya Basu
,
John Sampson
,
Zhiyun Qian
,
Trent Jaeger
Proceedings of the 21st USENIX Conference on File and Storage Technologies, 2023

2022
Who Moves My App Promotion Investment? A Systematic Study About App Distribution Fraud.
[BibTeX]
[DOI]
Shaoyong Du
,
Minrui Zhao
,
Jingyu Hua
,
Hang Zhang
,
Xiaoyu Chen
,
Zhiyun Qian
,
Sheng Zhong
IEEE Trans. Dependable Secur. Comput., 2022

DNS Poisoning of Operating System Caches: Attacks and Mitigations.
[BibTeX]
[DOI]
Fatemah Alharbi
,
Yuchen Zhou
,
Feng Qian
,
Zhiyun Qian
,
Nael B. Abu-Ghazaleh
IEEE Trans. Dependable Secur. Comput., 2022

SyzScope: Revealing High-Risk Security Impacts of Fuzzer-Exposed Bugs in Linux kernel.
[BibTeX]
[DOI]
Xiaochen Zou
,
Guoren Li
,
Weiteng Chen
,
Hang Zhang
,
Zhiyun Qian
Proceedings of the 31st USENIX Security Symposium, 2022

LinKRID: Vetting Imbalance Reference Counting in Linux kernel with Symbolic Execution.
[BibTeX]
[DOI]
Jian Liu
,
Lin Yi
,
Weiteng Chen
,
Chengyu Song
,
Zhiyun Qian
,
Qiuping Yi
Proceedings of the 31st USENIX Security Symposium, 2022

Off-Path Network Traffic Manipulation via Revitalized ICMP Redirect Attacks.
[BibTeX]
[DOI]
Xuewei Feng
,
Qi Li
,
Kun Sun
,
Zhiyun Qian
,
Gang Zhao
,
Xiaohui Kuang
,
Chuanpu Fu
,
Ke Xu
Proceedings of the 31st USENIX Security Symposium, 2022

Annotating, Tracking, and Protecting Cryptographic Secrets with CryptoMPK.
[BibTeX]
[DOI]
Xuancheng Jin
,
Xuangan Xiao
,
Songlin Jia
,
Wang Gao
,
Dawu Gu
,
Hang Zhang
,
Siqi Ma
,
Zhiyun Qian
,
Juanru Li
Proceedings of the 43rd IEEE Symposium on Security and Privacy, 2022

Progressive Scrutiny: Incremental Detection of UBI bugs in the Linux Kernel.
[BibTeX]
[DOI]
Yizhuo Zhai
,
Yu Hao
,
Zheng Zhang
,
Weiteng Chen
,
Guoren Li
,
Zhiyun Qian
,
Chengyu Song
,
Manu Sridharan
,
Srikanth V. Krishnamurthy
,
Trent Jaeger
,
Paul L. Yu
Proceedings of the 29th Annual Network and Distributed System Security Symposium, 2022

The Taming of the Stack: Isolating Stack Data from Memory Errors.
[BibTeX]
[DOI]
Kaiming Huang
,
Yongzhe Huang
,
Mathias Payer
,
Zhiyun Qian
,
Jack Sampson
,
Gang Tan
,
Trent Jaeger
Proceedings of the 29th Annual Network and Distributed System Security Symposium, 2022

PMTUD is not Panacea: Revisiting IP Fragmentation Attacks against TCP.
[BibTeX]
[DOI]
Xuewei Feng
,
Qi Li
,
Kun Sun
,
Ke Xu
,
Baojun Liu
,
Xiaofeng Zheng
,
Qiushi Yang
,
Haixin Duan
,
Zhiyun Qian
Proceedings of the 29th Annual Network and Distributed System Security Symposium, 2022

Demystifying the Dependency Challenge in Kernel Fuzzing.
[BibTeX]
[DOI]
Yu Hao
,
Hang Zhang
,
Guoren Li
,
Xingyun Du
,
Zhiyun Qian
,
Ardalan Amiri Sani
Proceedings of the 44th IEEE/ACM 44th International Conference on Software Engineering, 2022

Perils and Mitigation of Security Risks of Cooperation in Mobile-as-a-Gateway IoT.
[BibTeX]
[DOI]
Xin'an Zhou
,
Jiale Guan
,
Luyi Xing
,
Zhiyun Qian
Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security, 2022

2021
Resilient User-Side Android Application Repackaging and Tampering Detection Using Cryptographically Obfuscated Logic Bombs.
[BibTeX]
[DOI]
Qiang Zeng
,
Lannan Luo
,
Zhiyun Qian
,
Xiaojiang Du
,
Zhoujun Li
,
Chin-Tser Huang
,
Csilla Farkas
IEEE Trans. Dependable Secur. Comput., 2021

Side Channel Attacks on GPUs.
[BibTeX]
[DOI]
Hoda Naghibijouybari
,
Ajaya Neupane
,
Zhiyun Qian
,
Nael B. Abu-Ghazaleh
IEEE Trans. Dependable Secur. Comput., 2021

An Empirical Analysis of Hazardous Uses of Android Shared Storage.
[BibTeX]
[DOI]
Shaoyong Du
,
Pengxiong Zhu
,
Jingyu Hua
,
Zhiyun Qian
,
Zhao Zhang
,
Xiaoyu Chen
,
Sheng Zhong
IEEE Trans. Dependable Secur. Comput., 2021

Beyond the CPU: Side-Channel Attacks on GPUs.
[BibTeX]
[DOI]
Hoda Naghibijouybari
,
Ajaya Neupane
,
Zhiyun Qian
,
Nael B. Abu-Ghazaleh
IEEE Des. Test, 2021

An Investigation of the Android Kernel Patch Ecosystem.
[BibTeX]
[DOI]
Zheng Zhang
,
Hang Zhang
,
Zhiyun Qian
,
Billy Lau
Proceedings of the 30th USENIX Security Symposium, 2021

SyzVegas: Beating Kernel Fuzzing Odds with Reinforcement Learning.
[BibTeX]
[DOI]
Daimeng Wang
,
Zheng Zhang
,
Hang Zhang
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Nael B. Abu-Ghazaleh
Proceedings of the 30th USENIX Security Symposium, 2021

Undo Workarounds for Kernel Bugs.
[BibTeX]
[DOI]
Seyed Mohammadjavad Seyed Talebi
,
Zhihao Yao
,
Ardalan Amiri Sani
,
Zhiyun Qian
,
Daniel Austin
Proceedings of the 30th USENIX Security Symposium, 2021

PolyScope: Multi-Policy Access Control Analysis to Compute Authorized Attack Operations in Android Systems.
[BibTeX]
[DOI]
Yu Tsung Lee
,
William Enck
,
Haining Chen
,
Hayawardh Vijayakumar
,
Ninghui Li
,
Zhiyun Qian
,
Daimeng Wang
,
Giuseppe Petracca
,
Trent Jaeger
Proceedings of the 30th USENIX Security Symposium, 2021

A nationwide census on wifi security threats: prevalence, riskiness, and the economics.
[BibTeX]
[DOI]
Di Gao
,
Hao Lin
,
Zhenhua Li
,
Feng Qian
,
Qi Alfred Chen
,
Zhiyun Qian
,
Wei Liu
,
Liangyi Gong
,
Yunhao Liu
Proceedings of the ACM MobiCom '21: The 27th Annual International Conference on Mobile Computing and Networking, 2021

Statically Discovering High-Order Taint Style Vulnerabilities in OS Kernels.
[BibTeX]
[DOI]
Hang Zhang
,
Weiteng Chen
,
Yu Hao
,
Guoren Li
,
Yizhuo Zhai
,
Xiaochen Zou
,
Zhiyun Qian
Proceedings of the CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security, Virtual Event, Republic of Korea, November 15, 2021

DNS Cache Poisoning Attack: Resurrections with Side Channels.
[BibTeX]
[DOI]
Keyu Man
,
Xin'an Zhou
,
Zhiyun Qian
Proceedings of the CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security, Virtual Event, Republic of Korea, November 15, 2021

SyzGen: Automated Generation of Syscall Specification of Closed-Source macOS Drivers.
[BibTeX]
[DOI]
Weiteng Chen
,
Yu Wang
,
Zheng Zhang
,
Zhiyun Qian
Proceedings of the CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security, Virtual Event, Republic of Korea, November 15, 2021

Themis: Ambiguity-Aware Network Intrusion Detection based on Symbolic Model Comparison.
[BibTeX]
[DOI]
Zhongjie Wang
,
Shitong Zhu
,
Keyu Man
,
Pengxiong Zhu
,
Yu Hao
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Tom La Porta
,
Michael J. De Lucia
Proceedings of the MTD@CCS 2021: Proceedings of the 8th ACM Workshop on Moving Target Defense, 2021

Eluding ML-based Adblockers With Actionable Adversarial Examples.
[BibTeX]
[DOI]
Shitong Zhu
,
Zhongjie Wang
,
Xun Chen
,
Shasha Li
,
Keyu Man
,
Umar Iqbal
,
Zhiyun Qian
,
Kevin S. Chan
,
Srikanth V. Krishnamurthy
,
Zubair Shafiq
,
Yu Hao
,
Guoren Li
,
Zheng Zhang
,
Xiaochen Zou
Proceedings of the ACSAC '21: Annual Computer Security Applications Conference, Virtual Event, USA, December 6, 2021

2020
Packet Header Obfuscation Using MIMO.
[BibTeX]
[DOI]
Yue Cao
,
Ahmed Osama Fathy Atya
,
Shailendra Singh
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Thomas F. La Porta
,
Prashant Krishnamurthy
,
Lisa M. Marvel
IEEE/ACM Trans. Netw., 2020

Characterizing Transnational Internet Performance and the Great Bottleneck of China.
[BibTeX]
[DOI]
Pengxiong Zhu
,
Keyu Man
,
Zhongjie Wang
,
Zhiyun Qian
,
Roya Ensafi
,
J. Alex Halderman
,
Hai-Xin Duan
Proc. ACM Meas. Anal. Comput. Syst., 2020

PolyScope: Multi-Policy Access Control Analysis to Triage Android Systems.
[BibTeX]
[DOI]
Yu Tsung Lee
,
William Enck
,
Haining Chen
,
Hayawardh Vijayakumar
,
Ninghui Li
,
Daimeng Wang
,
Zhiyun Qian
,
Giuseppe Petracca
,
Trent Jaeger
CoRR, 2020

A4 : Evading Learning-based Adblockers.
[BibTeX]
[DOI]
Shitong Zhu
,
Zhongjie Wang
,
Xun Chen
,
Shasha Li
,
Umar Iqbal
,
Zhiyun Qian
,
Kevin S. Chan
,
Srikanth V. Krishnamurthy
,
Zubair Shafiq
CoRR, 2020

Poison Over Troubled Forwarders: A Cache Poisoning Attack Targeting DNS Forwarding Devices.
[BibTeX]
[DOI]
Xiaofeng Zheng
,
Chaoyi Lu
,
Jian Peng
,
Qiushi Yang
,
Dongjie Zhou
,
Baojun Liu
,
Keyu Man
,
Shuang Hao
,
Haixin Duan
,
Zhiyun Qian
Proceedings of the 29th USENIX Security Symposium, 2020

KOOBE: Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities.
[BibTeX]
[DOI]
Weiteng Chen
,
Xiaochen Zou
,
Guoren Li
,
Zhiyun Qian
Proceedings of the 29th USENIX Security Symposium, 2020

AdGraph: A Graph-Based Approach to Ad and Tracker Blocking.
[BibTeX]
[DOI]
Umar Iqbal
,
Peter Snyder
,
Shitong Zhu
,
Benjamin Livshits
,
Zhiyun Qian
,
Zubair Shafiq
Proceedings of the 2020 IEEE Symposium on Security and Privacy, 2020

UBITect: a precise and scalable method to detect use-before-initialization bugs in Linux kernel.
[BibTeX]
[DOI]
Yizhuo Zhai
,
Yu Hao
,
Hang Zhang
,
Daimeng Wang
,
Chengyu Song
,
Zhiyun Qian
,
Mohsen Lesani
,
Srikanth V. Krishnamurthy
,
Paul L. Yu
Proceedings of the ESEC/FSE '20: 28th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2020

SymTCP: Eluding Stateful Deep Packet Inspection with Automated Discrepancy Discovery.
[BibTeX]
[DOI]
Zhongjie Wang
,
Shitong Zhu
,
Yue Cao
,
Zhiyun Qian
,
Chengyu Song
,
Srikanth V. Krishnamurthy
,
Kevin S. Chan
,
Tracy D. Braun
Proceedings of the 27th Annual Network and Distributed System Security Symposium, 2020

Experiences of landing machine learning onto market-scale mobile malware detection.
[BibTeX]
[DOI]
Liangyi Gong
,
Zhenhua Li
,
Feng Qian
,
Zifan Zhang
,
Qi Alfred Chen
,
Zhiyun Qian
,
Hao Lin
,
Yunhao Liu
Proceedings of the EuroSys '20: Fifteenth EuroSys Conference 2020, 2020

You do (not) belong here: detecting DPI evasion attacks with context learning.
[BibTeX]
[DOI]
Shitong Zhu
,
Shasha Li
,
Zhongjie Wang
,
Xun Chen
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Kevin S. Chan
,
Ananthram Swami
Proceedings of the CoNEXT '20: The 16th International Conference on emerging Networking EXperiments and Technologies, 2020

DNS Cache Poisoning Attack Reloaded: Revolutions with Side Channels.
[BibTeX]
[DOI]
Keyu Man
,
Zhiyun Qian
,
Zhongjie Wang
,
Xiaofeng Zheng
,
Youjun Huang
,
Haixin Duan
Proceedings of the CCS '20: 2020 ACM SIGSAC Conference on Computer and Communications Security, 2020

2019
Catch Me if You Can: A Closer Look at Malicious Co-Residency on the Cloud.
[BibTeX]
[DOI]
Ahmed Osama Fathy Atya
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Thomas La Porta
,
Patrick D. McDaniel
,
Lisa M. Marvel
IEEE/ACM Trans. Netw., 2019

App in the Middle: Demystify Application Virtualization in Android and its Security Threats.
[BibTeX]
[DOI]
Lei Zhang
,
Zhemin Yang
,
Yuyu He
,
Mingqi Li
,
Sen Yang
,
Min Yang
,
Yuan Zhang
,
Zhiyun Qian
Proc. ACM Meas. Anal. Comput. Syst., 2019

ShadowBlock: A Lightweight and Stealthy Adblocking Browser.
[BibTeX]
[DOI]
Shitong Zhu
,
Umar Iqbal
,
Zhongjie Wang
,
Zhiyun Qian
,
Zubair Shafiq
,
Weiteng Chen
Proceedings of the World Wide Web Conference, 2019

Application level attacks on Connected Vehicle Protocols.
[BibTeX]
[DOI]
Ahmed Abdo
,
Sakib Md. Bin Malek
,
Zhiyun Qian
,
Qi Zhu
,
Matthew J. Barth
,
Nael B. Abu-Ghazaleh
Proceedings of the 22nd International Symposium on Research in Attacks, 2019

Employing attack graphs for intrusion detection.
[BibTeX]
[DOI]
Frank Capobianco
,
Rahul George
,
Kaiming Huang
,
Trent Jaeger
,
Srikanth V. Krishnamurthy
,
Zhiyun Qian
,
Mathias Payer
,
Paul L. Yu
Proceedings of the NSPW '19: New Security Paradigms Workshop, 2019

Unveiling your keystrokes: A Cache-based Side-channel Attack on Graphics Libraries.
[BibTeX]
[DOI]
Daimeng Wang
,
Ajaya Neupane
,
Zhiyun Qian
,
Nael B. Abu-Ghazaleh
,
Srikanth V. Krishnamurthy
,
Edward J. M. Colbert
,
Paul L. Yu
Proceedings of the 26th Annual Network and Distributed System Security Symposium, 2019

ForeSee: A Cross-Layer Vulnerability Detection Framework for the Internet of Things.
[BibTeX]
[DOI]
Zheng Fang
,
Hao Fu
,
Tianbo Gu
,
Zhiyun Qian
,
Trent Jaeger
,
Prasant Mohapatra
Proceedings of the 16th IEEE International Conference on Mobile Ad Hoc and Sensor Systems, 2019

When the Attacker Knows a Lot: The GAGA Graph Anonymizer.
[BibTeX]
[DOI]
Arash Alavi
,
Rajiv Gupta
,
Zhiyun Qian
Proceedings of the Information Security - 22nd International Conference, 2019

Figment: Fine-grained Permission Management for Mobile Apps.
[BibTeX]
[DOI]
Ioannis Gasparis
,
Zhiyun Qian
,
Chengyu Song
,
Srikanth V. Krishnamurthy
,
Rajiv Gupta
,
Paul L. Yu
Proceedings of the 2019 IEEE Conference on Computer Communications, 2019

Collaborative Client-Side DNS Cache Poisoning Attack.
[BibTeX]
[DOI]
Fatemah Alharbi
,
Jie Chang
,
Yuchen Zhou
,
Feng Qian
,
Zhiyun Qian
,
Nael B. Abu-Ghazaleh
Proceedings of the 2019 IEEE Conference on Computer Communications, 2019

PAPP: Prefetcher-Aware Prime and Probe Side-channel Attack.
[BibTeX]
[DOI]
Daimeng Wang
,
Zhiyun Qian
,
Nael B. Abu-Ghazaleh
,
Srikanth V. Krishnamurthy
Proceedings of the 56th Annual Design Automation Conference 2019, 2019

Principled Unearthing of TCP Side Channel Vulnerabilities.
[BibTeX]
[DOI]
Yue Cao
,
Zhongjie Wang
,
Zhiyun Qian
,
Chengyu Song
,
Srikanth V. Krishnamurthy
,
Paul L. Yu
Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security, 2019

2018
Off-Path TCP Exploits of the Challenge ACK Global Rate Limit.
[BibTeX]
[DOI]
Yue Cao
,
Zhiyun Qian
,
Zhongjie Wang
,
Tuan Dao
,
Srikanth V. Krishnamurthy
,
Lisa M. Marvel
IEEE/ACM Trans. Netw., 2018

AdGraph: A Machine Learning Approach to Automatic and Effective Adblocking.
[BibTeX]
[DOI]
Umar Iqbal
,
Zubair Shafiq
,
Peter Snyder
,
Shitong Zhu
,
Zhiyun Qian
,
Benjamin Livshits
CoRR, 2018

Precise and Accurate Patch Presence Test for Binaries.
[BibTeX]
[DOI]
Hang Zhang
,
Zhiyun Qian
Proceedings of the 27th USENIX Security Symposium, 2018

Charm: Facilitating Dynamic Analysis of Device Drivers of Mobile Systems.
[BibTeX]
[DOI]
Seyed Mohammadjavad Seyed Talebi
,
Hamid Tavakoli
,
Hang Zhang
,
Zheng Zhang
,
Ardalan Amiri Sani
,
Zhiyun Qian
Proceedings of the 27th USENIX Security Symposium, 2018

Off-Path TCP Exploit: How Wireless Routers Can Jeopardize Your Secrets.
[BibTeX]
[DOI]
Weiteng Chen
,
Zhiyun Qian
Proceedings of the 27th USENIX Security Symposium, 2018

Static Evaluation of Noninterference Using Approximate Model Counting.
[BibTeX]
[DOI]
Ziqiao Zhou
,
Zhiyun Qian
,
Michael K. Reiter
,
Yinqian Zhang
Proceedings of the 2018 IEEE Symposium on Security and Privacy, 2018

RARE: A Systematic Augmented Router Emulation for Malware Analysis.
[BibTeX]
[DOI]
Ahmad Darki
,
Chun-Yu Chuang
,
Michalis Faloutsos
,
Zhiyun Qian
,
Heng Yin
Proceedings of the Passive and Active Measurement - 19th International Conference, 2018

Measuring and Disrupting Anti-Adblockers Using Differential Execution Analysis.
[BibTeX]
[DOI]
Shitong Zhu
,
Xunchao Hu
,
Zhiyun Qian
,
Zubair Shafiq
,
Heng Yin
Proceedings of the 25th Annual Network and Distributed System Security Symposium, 2018

Accurate and Efficient Wireless Device Fingerprinting Using Channel State Information.
[BibTeX]
[DOI]
Jingyu Hua
,
Hongyi Sun
,
Zhenyu Shen
,
Zhiyun Qian
,
Sheng Zhong
Proceedings of the 2018 IEEE Conference on Computer Communications, 2018

A Framework for MIMO-based Packet Header Obfuscation.
[BibTeX]
[DOI]
Yue Cao
,
Ahmed Osama Fathy Atya
,
Shailendra Singh
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Thomas La Porta
,
Prashant Krishnamurthy
,
Lisa M. Marvel
Proceedings of the 2018 IEEE Conference on Computer Communications, 2018

IotSan: fortifying the safety of IoT systems.
[BibTeX]
[DOI]
Dang Tu Nguyen
,
Chengyu Song
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Edward J. M. Colbert
,
Patrick D. McDaniel
Proceedings of the 14th International Conference on emerging Networking EXperiments and Technologies, 2018

Resilient decentralized Android application repackaging detection using logic bombs.
[BibTeX]
[DOI]
Qiang Zeng
,
Lannan Luo
,
Zhiyun Qian
,
Xiaojiang Du
,
Zhoujun Li
Proceedings of the 2018 International Symposium on Code Generation and Optimization, 2018

Invetter: Locating Insecure Input Validations in Android Services.
[BibTeX]
[DOI]
Lei Zhang
,
Zhemin Yang
,
Yuyu He
,
Zhenyu Zhang
,
Zhiyun Qian
,
Geng Hong
,
Yuan Zhang
,
Min Yang
Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018

Rendered Insecure: GPU Side Channel Attacks are Practical.
[BibTeX]
[DOI]
Hoda Naghibijouybari
,
Ajaya Neupane
,
Zhiyun Qian
,
Nael B. Abu-Ghazaleh
Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018

How You Get Shot in the Back: A Systematical Study about Cryptojacking in the Real World.
[BibTeX]
[DOI]
Geng Hong
,
Zhemin Yang
,
Sen Yang
,
Lei Zhang
,
Yuhong Nan
,
Zhibo Zhang
,
Min Yang
,
Yuan Zhang
,
Zhiyun Qian
,
Hai-Xin Duan
Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018

Droid M+: Developer Support for Imbibing Android's New Permission Model.
[BibTeX]
[DOI]
Ioannis Gasparis
,
Azeem Aqil
,
Zhiyun Qian
,
Chengyu Song
,
Srikanth V. Krishnamurthy
,
Rajiv Gupta
,
Edward Colbert
Proceedings of the 2018 on Asia Conference on Computer and Communications Security, 2018

2017
Detecting Anti Ad-blockers in the Wild.
[BibTeX]
[DOI]
Muhammad Haris Mughees
,
Zhiyun Qian
,
Zubair Shafiq
Proc. Priv. Enhancing Technol., 2017

Investigation of the 2016 Linux TCP Stack Vulnerability at Scale.
[BibTeX]
[DOI]
Alan Quach
,
Zhongjie Wang
,
Zhiyun Qian
Proc. ACM Meas. Anal. Comput. Syst., 2017

Stalling Live Migrations on the Cloud.
[BibTeX]
[DOI]
Ahmed Atya
,
Azeem Aqil
,
Karim Khalil
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Thomas F. La Porta
Proceedings of the 11th USENIX Workshop on Offensive Technologies, 2017

Detecting Android Root Exploits by Learning from Root Providers.
[BibTeX]
[DOI]
Ioannis Gasparis
,
Zhiyun Qian
,
Chengyu Song
,
Srikanth V. Krishnamurthy
Proceedings of the 26th USENIX Security Symposium, 2017

Where Is the Weakest Link? A Study on Security Discrepancies Between Android Apps and Their Website Counterparts.
[BibTeX]
[DOI]
Arash Alavi
,
Alan Quach
,
Hang Zhang
,
Bryan Marsh
,
Farhan Ul Haq
,
Zhiyun Qian
,
Long Lu
,
Rajiv Gupta
Proceedings of the Passive and Active Measurement - 18th International Conference, 2017

Malicious co-residency on the cloud: Attacks and defense.
[BibTeX]
[DOI]
Ahmed Osama Fathy Atya
,
Zhiyun Qian
,
Srikanth V. Krishnamurthy
,
Thomas La Porta
,
Patrick D. McDaniel
,
Lisa M. Marvel
Proceedings of the 2017 IEEE Conference on Computer Communications, 2017

Your state is not mine: a closer look at evading stateful internet censorship.
[BibTeX]
[DOI]
Zhongjie Wang
,
Yue Cao
,
Zhiyun Qian
,
Chengyu Song
,
Srikanth V. Krishnamurthy
Proceedings of the 2017 Internet Measurement Conference, 2017

The ad wars: retrospective measurement and analysis of anti-adblock filter lists.
[BibTeX]
[DOI]
Umar Iqbal
,
Zubair Shafiq
,
Zhiyun Qian
Proceedings of the 2017 Internet Measurement Conference, 2017

Multipath TCP traffic diversion attacks and countermeasures.
[BibTeX]
[DOI]
Ali Munir
,
Zhiyun Qian
,
Zubair Shafiq
,
Alex X. Liu
,
Franck Le
Proceedings of the 25th IEEE International Conference on Network Protocols, 2017

Selective HTTPS traffic manipulation at middleboxes for BYOD devices.
[BibTeX]
[DOI]
Xing Liu
,
Feng Qian
,
Zhiyun Qian
Proceedings of the 25th IEEE International Conference on Network Protocols, 2017

2016
A First Look at Ad-block Detection: A New Arms Race on the Web.
[BibTeX]
[DOI]
Muhammad Haris Mughees
,
Zhiyun Qian
,
Zubair Shafiq
,
Karishma Dash
,
Pan Hui
CoRR, 2016

Off-Path TCP Exploits: Global Rate Limit Considered Dangerous.
[BibTeX]
[DOI]
Yue Cao
,
Zhiyun Qian
,
Zhongjie Wang
,
Tuan Dao
,
Srikanth V. Krishnamurthy
,
Lisa M. Marvel
Proceedings of the 25th USENIX Security Symposium, 2016

Kratos: Discovering Inconsistent Security Policy Enforcement in the Android Framework.
[BibTeX]
[DOI]
Yuru Shao
,
Qi Alfred Chen
,
Zhuoqing Morley Mao
,
Jason Ott
,
Zhiyun Qian
Proceedings of the 23rd Annual Network and Distributed System Security Symposium, 2016

Optimal Monitor Placement for Detection of Persistent Threats.
[BibTeX]
[DOI]
Karim Khalil
,
Zhiyun Qian
,
Paul L. Yu
,
Srikanth V. Krishnamurthy
,
Ananthram Swami
Proceedings of the 2016 IEEE Global Communications Conference, 2016

Android ION Hazard: the Curse of Customizable Memory Management System.
[BibTeX]
[DOI]
Hang Zhang
,
Dongdong She
,
Zhiyun Qian
Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, 2016

The Misuse of Android Unix Domain Sockets and Security Implications.
[BibTeX]
[DOI]
Yuru Shao
,
Jason Ott
,
Yunhan Jack Jia
,
Zhiyun Qian
,
Zhuoqing Morley Mao
Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, 2016

revDroid: Code Analysis of the Side Effects after Dynamic Permission Revocation of Android Apps.
[BibTeX]
[DOI]
Zheran Fang
,
Weili Han
,
Dong Li
,
Zeqing Guo
,
Danhao Guo
,
Xiaoyang Sean Wang
,
Zhiyun Qian
,
Hao Chen
Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security, 2016

2015
Behavior Query Discovery in System-Generated Temporal Graphs.
[BibTeX]
[DOI]
Bo Zong
,
Xusheng Xiao
,
Zhichun Li
,
Zhenyu Wu
,
Zhiyun Qian
,
Xifeng Yan
,
Ambuj K. Singh
,
Guofei Jiang
Proc. VLDB Endow., 2015

Checking More and Alerting Less: Detecting Privacy Leakages via Enhanced Data-flow Analysis and Peer Voting.
[BibTeX]
[DOI]
Kangjie Lu
,
Zhichun Li
,
Vasileios P. Kemerlis
,
Zhenyu Wu
,
Long Lu
,
Cong Zheng
,
Zhiyun Qian
,
Wenke Lee
,
Guofei Jiang
Proceedings of the 22nd Annual Network and Distributed System Security Symposium, 2015

Proactive restart as cyber maneuver for Android.
[BibTeX]
[DOI]
Zhiyong Shan
,
Iulian Neamtiu
,
Zhiyun Qian
,
Don J. Torrieri
Proceedings of the 34th IEEE Military Communications Conference, 2015

Android Root and its Providers: A Double-Edged Sword.
[BibTeX]
[DOI]
Hang Zhang
,
Dongdong She
,
Zhiyun Qian
Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, 2015

Discover and Tame Long-running Idling Processes in Enterprise Systems.
[BibTeX]
[DOI]
Jun Wang
,
Zhiyun Qian
,
Zhichun Li
,
Zhenyu Wu
,
Junghwan Rhee
,
Xia Ning
,
Peng Liu
,
Guofei Jiang
Proceedings of the 10th ACM Symposium on Information, 2015

Static Detection of Packet Injection Vulnerabilities: A Case for Identifying Attacker-controlled Implicit Information Leaks.
[BibTeX]
[DOI]
Qi Alfred Chen
,
Zhiyun Qian
,
Yunhan Jack Jia
,
Yuru Shao
,
Zhuoqing Morley Mao
Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, 2015

2014
Peeking into Your App without Actually Seeing It: UI State Inference and Novel Android Attacks.
[BibTeX]
[DOI]
Qi Alfred Chen
,
Zhiyun Qian
,
Zhuoqing Morley Mao
Proceedings of the 23rd USENIX Security Symposium, San Diego, CA, USA, August 20-22, 2014., 2014

2013
AppProfiler: a flexible method of exposing privacy-related behavior in android applications to end users.
[BibTeX]
[DOI]
Sanae Rosen
,
Zhiyun Qian
,
Zhuoqing Morley Mao
Proceedings of the Third ACM Conference on Data and Application Security and Privacy, 2013

2012
Discover, Analyze, and Validate Attacks with Introspective Side Channels.
[BibTeX]
[DOI]
Zhiyun Qian
PhD thesis, 2012

Off-path TCP Sequence Number Inference Attack - How Firewall Middleboxes Reduce Security.
[BibTeX]
[DOI]
Zhiyun Qian
,
Zhuoqing Morley Mao
Proceedings of the IEEE Symposium on Security and Privacy, 2012

You Can Run, but You Can't Hide: Exposing Network Location for Targeted DoS Attacks in Cellular Networks.
[BibTeX]
[DOI]
Zhiyun Qian
,
Zhaoguang Wang
,
Qiang Xu
,
Zhuoqing Morley Mao
,
Ming Zhang
,
Yi-Min Wang
Proceedings of the 19th Annual Network and Distributed System Security Symposium, 2012

Collaborative TCP sequence number inference attack: how to crack sequence number under a second.
[BibTeX]
[DOI]
Zhiyun Qian
,
Zhuoqing Morley Mao
,
Yinglian Xie
Proceedings of the ACM Conference on Computer and Communications Security, 2012

2011
An untold story of middleboxes in cellular networks.
[BibTeX]
[DOI]
Zhaoguang Wang
,
Zhiyun Qian
,
Qiang Xu
,
Zhuoqing Morley Mao
,
Ming Zhang
Proceedings of the ACM SIGCOMM 2011 Conference on Applications, 2011

Designing Scalable and Effective Decision Support for Mitigating Attacks in Large Enterprise Networks.
[BibTeX]
[DOI]
Zhiyun Qian
,
Zhuoqing Morley Mao
,
Ammar Rayes
,
David Jaffe
Proceedings of the Security and Privacy in Communication Networks, 2011

2010
Investigation of Triangular Spamming: A Stealthy and Efficient Spamming Technique.
[BibTeX]
[DOI]
Zhiyun Qian
,
Zhuoqing Morley Mao
,
Yinglian Xie
,
Fang Yu
Proceedings of the 31st IEEE Symposium on Security and Privacy, 2010

On Network-level Clusters for Spam Detection.
[BibTeX]
[DOI]
Zhiyun Qian
,
Zhuoqing Morley Mao
,
Yinglian Xie
,
Fang Yu
Proceedings of the Network and Distributed System Security Symposium, 2010

Accurate online power estimation and automatic battery behavior based power model generation for smartphones.
[BibTeX]
[DOI]
Lide Zhang
,
Birjodh Tiwana
,
Zhiyun Qian
,
Zhaoguang Wang
,
Robert P. Dick
,
Zhuoqing Morley Mao
,
Lei Yang
Proceedings of the 8th International Conference on Hardware/Software Codesign and System Synthesis, 2010

2009
Ensemble: Community-Based Anomaly Detection for Popular Applications.
[BibTeX]
[DOI]
Feng Qian
,
Zhiyun Qian
,
Zhuoqing Morley Mao
,
Atul Prakash
Proceedings of the Security and Privacy in Communication Networks, 2009


  Loading...