News

2021

publications
ROLoad: Securing Sensitive Operations with Pointee Integrity

DAC 2021

Wende Tan , Yuan Li , Chao Zhang , Xingman Chen , Songtao Yang , Ying Liu , Jianping Wu .

Protect sensitive operations with hardware support.

publications
ZKCPlus: Optimized Fair-exchange Protocol Supporting Practical and Flexible Data Exchange

CCS 2021 , download

Yun Li , Cun Ye , Yuguang Hu , Ivring Morpheus , Yu Guo , Chao Zhang , Yupeng Zhang , Zhipeng Sun , Yiwen Lu , Haodi Wang .

An optimized fair-exchange protocol

publications
Igor: Crash Deduplication Through Root-Cause Clustering

CCS 2021

Zhiyuan Jiang , Xiyue Jiang , Ahmad Hazimeh , Chaojing Tang , Chao Zhang , Mathias Payer .

deduplicate crash samples

hacking
祥云杯 2021 线上赛

August 21, 2021

Team: Redbud
Rank: 1
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Chuhan Wang , Kaitao Xie , Kaixiang Lei .

publications
VScape: Assessing and Escaping Virtual Call Protections

USENIX Security 2021

Kaixiang Chen , Chao Zhang , Tingting Yin , Xingman Chen , Lei Zhao .

Bypass virtual protections towards AEG.

publications
Sharing More and Checking Less: Leveraging Common Input Keywords to Detect Bugs in Embedded Systems

USENIX Security 2021

Libo Chen , Yanhao Wang , Quanpu Cai , Yunfan Zhan , Hong Hu , Jiaqi Linghu , Qinsheng Hou , Chao Zhang , Haixin Duan , Zhi Xue .

Finding vulnerabilities in embedded systems

publications
MAZE: Towards Automated Heap Feng Shui

USENIX Security 2021

Yan Wang , Chao Zhang , Zixuan Zhao , Bolun Zhang , Xiaorui Gong , Wei Zou .

Manipulate heap layouts automatically.

hacking
DEFCON CTF 29 Final

August 07, 2021

Team: Tea-Deliverers
Rank: 3
Core Players from NISL: Siqi Wang , Hao Wang , Ming Yuan , Minglei Guo , Kaixiang Chen , Yixiong Wu , Zhongyu Pei , Baozheng Liu , Bodong Zhao , Xingman Chen , Linkai Zheng , Fenglu Zhang .

hacking
AutoDriving CTF 2021 @ DEFCON 29

August 06, 2021

Team: Redbud
Rank: 4
Core Players from NISL: Li Yue , Hao Wang , Zihan Zhang , Shisong Qin , Wenjie Qu , Tingting Yin .

AutoDriving Scoreboard

hacking
强网杯 2021 决赛

July 10, 2021

Team: Redbud
Rank: 二等奖
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Yuxuan Wang , Miao Yu , Kaitao Xie , Huikai Xu , Kaixiang Lei .

hacking
津门杯 2021 决赛

July 10, 2021

Team: Redbud
Rank: 二等奖
Core Players from NISL: Siqi Wang , Linkai Zheng , Minglei Guo , Kaitao Xie , Yuxuan Wang .

publications
RAProducer: Efficiently Diagnose and Reproduce Data Race Bugs for Binaries via Trace Analysis

ISSTA 2021

Ming Yuan , Yeseop Lee , Chao Zhang , Yun Li , Yan Cai , Bodong Zhao .

diagnosing data race bugs

publications
iDEV: Exploring and Exploiting Semantic Deviations in ARM Instruction Processing

ISSTA 2021

Shisong Qin , Chao Zhang , Kaixiang Chen , Zheming Li .

discovering inconsistencies in ARM instruction processing

hacking
XCTF Final 2021

May 29, 2021

Team: Redbud
Rank: 5
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Yuxuan Wang , Miao Yu , Fenglu Zhang , Kaitao Xie , Kaixiang Lei .

seminars
New Security Threats Caused by IMS-based SMS Service in 4G LTE Networks

14:00-15:10pm May 27, 2021

seminar @ Tencent Meeting, Tsinghua University, Beijing

Presenters: Hui Gao .

Abstract:

SIP Protocol security & Uncover its security vulnerabilities and exploit them to devise four SMS attacks: silent SMS abuse, SMS spoofing, SMS client DoS, and SMS spamming