Baojun Liu (刘保君)

清华大学 网络研究院 助理教授 博士生导师
国家级高层次青年人才,重点研发计划青年科学家项目负责人
清华大学 FIT楼 4-204室
lbj [at] tsinghua -dot- edu -dot- cn

Headline

  • 主要研究领域:网络基础设施安全、互联网测量与安全分析、涉网犯罪与黑灰产业链对抗。
  • 每年大约招收 2~3 名博士研究生/硕士研究生。注意:有意向者务必提前邮件联系,并需经过实习期考察。
  • 欢迎对网络安全感兴趣,对技术充满好奇心,自我驱动力强,编程能力与英语能力优秀的同学与我联系。
  • 长期对外招聘博士后、科研助理、工程师、客座研究生、访问学者以及实习生。欢迎向我投递简历。

About

清华大学,网络科学与网络空间研究院,网络和系统安全研究室(NISL),助理教授(博士生导师)。
2023年,入选国家级高层次青年人才支持计划;2022年获得ACM中国计算机安全分会“新星奖”;2020年入选清华大学“水木学者”计划。
作为项目负责人主持科技部重点研发计划青年科学家项目,十四五装备发展预研项目、国家自然科学基金项目、阿里巴巴创新研究计划AIR项目、CCF-腾讯犀牛鸟基金项目以及清华大学-中国电信联合研究项目。

教育及职业经历

  • 清华大学 网络研究院 助理教授 博士生导师, 2022.12-今
  • 清华大学 网络研究院 博士后 助理研究员(水木学者), 2020.11-2022.11, 合作导师:段海新教授
  • 加州大学伯克利分校 国际计算机科学研究所 高级访问学者, 2018.01-2019,01, 导师: Vern Paxson (ACM Fellow)
  • 清华大学 计算机科学与技术系 博士生, 2015.09-2020.10, 导师: 刘莹研究员, 段海新教授
  • 西安电子科技大学 电子工程学院 本科生, 2011.09-2015.07

研究兴趣

  • 大规模网络流量操控行为检测与分析
  • 互联网域名系统安全分析与测量
  • 公钥基础设施安全分析与测量
  • 涉网犯罪与黑灰产业链检测及对抗

面向国家网络安全与国计民生重大战略需求以及世界科技前沿,开展创新性学术研究工作。(1)在互联网基础设施测量方面,设计了域名、PKI等关键基础设施的大规模安全测量方法,并证实了全球范围内域名解析劫持、根证书植入等基础设施操控行为。(2)在互联网协议安全分析方面,发现了DNS、HTTP等核心基础协议的系列重大安全缺陷并提出解决方案,提升了互联网基础协议的安全性。(3)在互联网地下黑灰产对抗方面,提出了检测涉网新型犯罪黑灰产业链的关键技术方法,应用在实际的网络和产品中,保护了用户的安全。

学术研究成果取得了一定的国际影响力,多次协助国内外互联网厂商修复高危安全漏洞,累计获得国际信息安全漏洞库近160项编号;累计于网络安全领域竞争最为激烈的四大顶级会议发表高水平论文二十余篇,在该领域国内外青年学者之中名列前茅,多次荣获具有重要国际影响力的学术奖项,包括国际互联网协会ISOC颁发的网络研究应用奖、网络安全领域国际顶级会议NDSS会议杰出论文奖、网络可靠系统领域国际顶级会议DSN会议最佳论文奖等。 研究成果得到了学术界广泛关注,被ACM TechNews、NewsBreak及Opera News等几十家国际知名媒体及政府机构宣传报道,著名科技媒体The Register将研究成果置于网站封面宣传长达四天。

发表国际会议论文

  • Mingxuan Liu, Yiming Zhang, Xiang Li, Chaoyi Lu, Baojun Liu, Haixin Duan and Xiaofeng Zheng. Understanding the Implementation and Security Implications of Protective DNS Services, Proceedings of The 31th Annual Network and Distributed Security Symposium (NDSS), San Diego, California, USA, 2024.

  • Xiang Li, Wei Xu, Baojun Liu, Mingming Zhang, Zhou Li, Jia Zhang, Deliang Chang, Xiaofeng Zheng, Chuhan Wang, Jianjun Chen, Haixin Duan and Qi Li. TuDoor Attack: Systematically Exploring and Exploiting Logic Vulnerabilities in DNS Response Pre-processing with Malformed Packets, Proceedings of The 45th IEEE Symposium on Security and Privacy (IEEE S&P), San Francisco, California, May 20–23, 2024.

  • Fenglu Zhang, Yunyi Zhang, Baojun Liu, Eihal Alowaisheq, Lingyun Ying, Xiang Li, Zaifeng Zhang, Ying Liu, Haixin Duan and Min Zhang. Wolf in Sheep’s Clothing: Evaluating the Security Risks of the Undelegated Record on DNS Hosting Services, Proceedings of The 2023 Internet Measurement Conference (IMC), Montréal, Canada, October 24 - 26, 2023.

  • Fenglu Zhang, Baojun Liu, Eihal Alowaisheq, Jianjun Chen, Chaoyi Lu, Linjian Song, Yong Ma, Ying Liu, Haixin Duan and Min Yang. Silence is not Golden: Disrupting the Load Balancing of Authoritative DNS Servers, Proceedings of The 30th ACM Conference on Computer and Communications Security (CCS), Copenhagen, Denmark, November 26-30, 2023.

  • Wei Xu, Xiang Li, Chaoyi Lu, Baojun Liu, Jia Zhang, Jianjun Chen, Tao Wan and Haixin Duan. TsuKing: Coordinating DNS Resolvers and Queries into Potent DoS Amplifiers, Proceedings of The 30th ACM Conference on Computer and Communications Security (CCS), Copenhagen, Denmark, November 26-30, 2023.

  • Zhenrui Zhang, Geng Hong, Xiang Li, Zhuoqun Fu, Jia Zhang, Mingxuan Liu, Chuhan Wang, Jianjun Chen, Baojun Liu, Haixin Duan, Chao Zhang and Min Yang. Under the Dark: A Systematical Study of Stealthy Mining Pools (Ab)use in the Wild, Proceedings of The 30th ACM Conference on Computer and Communications Security (CCS), Copenhagen, Denmark, November 26-30, 2023.

  • Xiang Li, Chaoyi Lu, Baojun Liu, Qifan Zhang, Zhou Li, Haixin Duan and Qi Li. The Maginot Line: Attacking the Boundary of DNS Caching Protection, Proceedings of The 32nd USENIX Security Symposium (USENIX Security), Anaheim, California, USA, August 9-11, 2023.

  • Run Guo, Jianjun Chen, Yihang Wang, Keran Mu, Baojun Liu, Xiang Li, Chao Zhang, Haixin Duan and Jianping Wu. Temporal CDN-Convex Lens: A CDN-Assisted Practical Pulsing DDoS Attack, Proceedings of The 32nd USENIX Security Symposium (USENIX Security), Anaheim, California, USA, August 9-11, 2023.

  • Mingming Zhang, Xiang Li, Baojun Liu, Jianju Lu, Yiming Zhang, Jianjun Chen, Haixin Duan, Shuang Hao and Xiaofeng Zheng. Detecting and Measuring Security Risks of Hosting-Based Dangling Domains, Proceedings of The 2023 ACM SIGMETRICS (ACM SIGMETRICS), Orlando, Florida, USA, June 19-23, 2023.

  • Xiang Li, Baojun Liu, Xuesong Bai, Mingming Zhang, Qifan Zhang, Zhou Li, Haixin Duan and Qi Li. Ghost Domain Reloaded: Vulnerable Links in the Domain Name Delegation and Revocation, Proceedings of The 30th Annual Network and Distributed Security Symposium (NDSS), San Diego, California, USA, 27 February – 3 March, 2023.

  • Mingxuan Liu, Yiming Zhang, Baojun Liu and Haixin Duan. Exploring the Characteristics and Security Risks of Emerging Emoji Domain Names, Proceedings of The 27th European Symposium on Research in Computer Security (ESORICS), Copenhagen, Denmark, September 26-30, 2022.

  • Huikai Xu, Miao Yu, Yanhao Wang, Yue Liu, Qinsheng Hou, Zhenbang Ma, Haixin Duan, Jianwei Zhuge and Baojun Liu. Trampoline Over the Air: Breaking in IoT Devices Through MQTT Brokers, Proceedings of The 7th IEEE European Symposium on Security and Privacy (EuroS&P), Genoa, June 6-10, 2022.

  • Fenglu Zhang, Chaoyi Lu, Baojun Liu, Haixin Duan and Ying Liu. Measuring the Practical Effect of DNS Root Server Instances: A China-Wide Case Study, Proceedings of Passive and Active Measurement Conference (PAM), Virtual event, March 28-30, 2022.

  • Qinge Xie, Shujun Tang, Xiaofeng Zheng, Qingran Lin, Baojun Liu, Haixin Duan and Frank Li. Building an Open, Robust, and Stable Voting-Based Internet Domain Top List, Proceedings of The 31th USENIX Security Symposium (USENIX Security), Boston, MA, USA, August 10-12, 2022.

  • Chuhan Wang, Kaiwen Shen, Minglei Guo, Yuxuan Zhao, Mingming Zhang, Jianjun Chen, Baojun Liu, Xiaofeng Zheng, Haixin Duan, Yanzhong Lin and Qingfeng Pan. A Large-scale and Longitudinal Measurement Study of DKIM Deployment, Proceedings of The 31th USENIX Security Symposium (USENIX Security), Boston, MA, USA, August 10-12, 2022.

  • Xuewei Feng, Qi Li, Kun Sun, Ke Xu, Baojun Liu, Xiaofeng Zheng, Qiushi Yang, Haixin Duan and Zhiyun Qian. PMTUD is not Panacea: Revisiting IP Fragmentation Attacks against TCP, Proceedings of The 29th Annual Network and Distributed Security Symposium (NDSS), San Diego, California, 27 Feruary - 3 March, 2022.

  • Mingxuan Liu, Yiming Zhang, Baojun Liu, Zhou Li, Haixin Duan and Donghong Sun. Detecting and Characterizing SMS Spearphising Attacks, Proceedings of The 37th Annual Computer Security Applications Conference (ACSAC), Austin, Texas, USA, December 6-10, 2021.

  • Yiming Zhang, Baojun Liu, Chaoyi Lu, Zhou Li, Haixin Duan, Jiachen Li and Zaifeng Zhang. Rusted Anchors: A National Client-Side View of Hidden Root CAs in the Web PKI Ecosystem, Proceedings of The 28th ACM Conference on Computer and Communications Security (CCS), Seoul, South Korea, November 15-19, 2021.

  • Xiang Li, Baojun Liu, Xiaofeng Zheng, Haixin Duan, Qi Li and Youjun Huang. Fast IPv6 Network Periphery Discovery and Security Implications, Proceedings of The 51th IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), Virtual, June 21-24, 2021.

  • Chaoyi Lu, Baojun Liu, Yiming Zhang, Zhou Li, Fenglu Zhang, Haixin Duan, Ying Liu, Joann Chen, Jinjin Liang, Zaifeng Zhang, Shuang Hao and Min Yang. From WHOIS to WHOWAS: A Large-Scale Measurement Study of Domain Registration Privacy under the GDPR, Proceedings of The 28th Annual Network and Distributed Security Symposium (NDSS), Virtual, February 21-25, 2021.

  • Kaiwen Shen, Chuhan Wang, Xiaofeng Zheng, Minglei Guo, Chaoyi Lu, Baojun Liu, Yuxuan Zhao, Shuang Hao, Haixin Duan, Qinfeng Pan and Min Yang. Weak Links in Authentication Chains: A Large-scale Analysis of Email Sender Spoofing Attacks, Proceedings of The 30th USENIX Security Symposium (USENIX Security), Vancouver, BC, Canada, August 11-13, 2021.

  • Mingming Zhang, Xiaofeng Zheng, Kaiwen Shen, Ziqiao Kong, Chaoyi Lu, Yu Wang, Haixin Duan, Shuang Hao, Baojun Liu and Min Yang. Talking with Familiar Strangers: An Empirical Study on HTTPS Context Confusion Attacks, Proceedings of The 27th ACM Conference on Computer and Communications Security (CCS), Orlando, USA, November 9-13, 2020.

  • Yiming Zhang, Baojun Liu, Chaoyi Lu, Zhou Li, Haixin Duan, Shuang Hao, Mingxuan Liu, Ying Liu, Dong Wang and Qiang Li. Lies in the Air: Characterizing Fake-base-station Spam Ecosystem in China, Proceedings of The 27th ACM Conference on Computer and Communications Security (CCS), Orlando, USA, November 9-13, 2020.

  • Xiaofeng Zheng, Chaoyi Lu, Jian Peng, Qiushi Yang, Dongjie Zhou, Baojun Liu, Keyu Man, Shuang Hao, Haixin Duan and Zhiyun Qian. Poison over Troubled Forwarders: A Cache Poisoning Attack Targeting DNS Forwarding Devices, Proceedings of The 29th USENIX Security Symposium (USENIX Security), Boston, MA, USA, August 12-14, 2020.

  • Weizhong Li, Kaiwen Shen, Run Guo, Baojun Liu, Jia Zhang, Haixin Duan, Shuang Hao, Xiarun Chen and Yao Wang. CDN Backfired: Amplification Attacks Based on HTTP Range Requests, Proceedings of The 50th IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), Valencia, Spain, June 29 - July 02, 2020.

  • Ruo Guo, Weizhong Li, Baojun Liu, Shuang Hao, Haixin Duan, Jia Zhang, Kaiwen Shen, Jianjun Chen and Ying Liu. CDN Judo: Breaking the CDN DoS Protection with Itself, Proceedings of The 27th ISOC Network and Distributed System Security Symposium (NDSS), Valencia, Spain, June 29 - July 02, 2020.

  • Chaoyi Lu, Baojun Liu, Zhou Li, Shuang Hao, Haixin Duan, Mingming Zhang, Chunying Leng, Ying Liu, Zaifeng Zhang and Jianping Wu. An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come? Proceedings of The 2019 Internet Measurement Conference (IMC), Amsterdam, Netherlands, October 21-23, 2019.

  • Kun Du, Hao Yang, Zhou Li, Haixin Duan, Shuang Hao, Baojun Liu, Yuxiao Ye, Mingxuan Liu, Xiaodong Su, Guang Liu, Zhifeng Geng, Zaifeng Zhang and Jinjin Liang. TL;DR Hazard: A Comprehensive Study of Levelsquatting Scams, Proceedings of The 15th International Conference on Security and Privacy On Communication Networks (SecureComm), Orlando, USA, October 23-25, 2019.

  • Baojun Liu, Zhou Li, Peiyuan Zong, Chaoyi Lu, Haixin Duan, Ying Liu, Sumayah Alrwais, XiaoFeng Wang, Shuang Hao, Yaoqi Jia, Yiming Zhang, Kai Chen and Zaifeng Zhang. TraffickStop: Detecting and Measuring Illicit Traffic Monetization Through Large-scale DNS Analysis, Proceedings of The 4th IEEE European Symposium on Security and Privacy (IEEE EuroS&P), Stockholm, Sweden, June 17-19, 2019.

  • Eihal Alowaisheq, Peng Wang, Sumayah Alrwais, Xiaojing Liao, XaioFeng Wang, Tasneem Alowaisheq, XiangHang Mi, Siyuan Tang and Baojun Liu. Cracking Wall of Confinement: Understanding and Analyzing Malicious Domain Takedowns, Proceedings of The 26th ISOC Network and Distributed System Security Symposium (NDSS), San Diego, CA, USA, February 24-27, 2020.

  • Xianghang Mi, Xuan Feng, Xiaojing Liao, Baojun Liu, Xiaofeng Wang, Feng Qian, Zhou Li, Sumayah Alrwais, Limin Sun and Ying Liu. Resident Evil: Understanding Residential IP Proxy as a Dark Service, Proceedings of The 40th IEEE Symposium on Security and Privacy (IEEE S&P), San Francisco, USA, May 20-22, 2019.

  • Run Guo, Jianjun Chen, Baojun Liu, Jia Zhang, Chao Zhang, Haixin Duan, Tao Wan, Jian Jiang, Shuang Hao and Yaoqi Jia. Abusing CDNs for Fun and Profit: Security Issues in CDNs’ Origin Validation, Proceedings of The 37th IEEE International Symposium on Reliable Distributed Systems (SRDS), Bahia, Brazil, October 2-5, 2018.

  • Mingming Zhang, Baojun Liu, Chaoyi Lu, Jia Zhang, Shuang Hao and Haixin Duan. Measuring Privacy Threats in China-Wide Mobile Networks, Proceedings of The 8th USENIX Workshop on Free and Open Communications on the Internet (FOCI), Baltimore, USA, August 14, 2018.

  • Baojun Liu, Chaoyi Lu, Haixin Duan, Ying Liu, Zhou Li, Shuang Hao and Min Yang. Who Is Answering My Queries: Understanding and Characterizing Interception of the DNS Resolution Path, Proceedings of The 27th USENIX Security Symposium (USENIX Security), Baltimore, USA, August 14, 2018.

  • Baojun Liu, Chaoyi Lu, Zhou Li, Ying Liu, Haixin Duan, Shuang Hao and Zaifeng Zhang. A Reexamination of Internationalized Domain Names: the Good, the Bad and the Ugly, Proceedings of The 48th IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), Luxembourg City, Luxembourg, June 25-28, 2018.

  • Daiping Liu, Zhou Li, Kun Du, Haining Wang, Baojun Liu and Haixin Duan. Don’t Let One Rotten Apple Spoil the Whole Barrel: Towards Automated Detection of Shadowed Domains, Proceedings of The 24th ACM Conference on Computer and Communications Security (CCS), Dallas, TX, October 30 - November 3, 2017.

教学工作

  • 清华大学,2023年秋季学期,《互联网体系结构及其安全基础》,研究生,选课人数约25人(合讲教师)
  • 清华大学,2023年夏季学期,《网络安全攻防实践》,本科生,选课人数约15人(合讲教师)

  • 清华大学,2022年秋季学期,《下一代互联网》网络安全专题,研究生,选课人数约10人(客座讲师)
  • 清华大学,2021年秋季学期,《网络测量技术》网络测量前沿,研究生,选课人数约15人(客座讲师)
  • 清华大学,2020年秋季学期,《网络测量技术》网络测量前沿,研究生,选课人数约15人(客座讲师)
  • 清华大学,2020年秋季学期,《下一代互联网》网络安全专题,研究生,选课人数约20人(客座讲师)
  • 清华大学,2019年秋季学期,《网络测量技术》网络测量前沿,研究生,选课人数约15人(客座讲师)
  • 清华大学,2019年秋季学期,《计算机网络安全技术》域名系统安全专题,研究生,选课人数约30人(客座讲师)
  • 清华大学,2019年秋季学期,《下一代互联网》网络安全专题,研究生,选课人数约15人(客座讲师)

奖励与荣誉

  • 2023, 某国家级高层次青年人才支持计划
  • 2023, 首届“互联网基础技术贡献奖”
  • 2022, ACM中国计算机安全分会“新星奖”
  • 2022, 清华大学“优秀博士后”提名奖
  • 2020, 清华大学“水木学者”
  • 2020, 国际互联网协会与互联网研究任务组 网络研究应用奖(ANRP)
  • 2020, 国际网络可靠系统领域顶级会议 IEEE/IFIP DSN 会议最佳论文奖
  • 2019, 国际网络安全领域顶级会议 NDSS 会议杰出论文奖
  • 2019, 国际网络测量领域顶级会议 ACM IMC 会议最佳论文奖提名、社区贡献奖提名