新闻动态

2021

publications
ROLoad: Securing Sensitive Operations with Pointee Integrity

DAC 2021

Wende Tan , Yuan Li , Chao Zhang , Xingman Chen , Songtao Yang , Ying Liu , Jianping Wu .

Protect sensitive operations with hardware support.

hacking
祥云杯 2021 线上赛

August 21, 2021

Team: Redbud
Rank: 1
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Chuhan Wang , Kaitao Xie , Kaixiang Lei .

publications
VScape: Assessing and Escaping Virtual Call Protections

USENIX Security 2021

Kaixiang Chen , Chao Zhang , Tingting Yin , Xingman Chen , Lei Zhao .

Bypass virtual protections towards AEG.

publications
Sharing More and Checking Less: Leveraging Common Input Keywords to Detect Bugs in Embedded Systems

USENIX Security 2021

Libo Chen , Yanhao Wang , Quanpu Cai , Yunfan Zhan , Hong Hu , Jiaqi Linghu , Qinsheng Hou , Chao Zhang , Haixin Duan , Zhi Xue .

Finding vulnerabilities in embedded systems

publications
MAZE: Towards Automated Heap Feng Shui

USENIX Security 2021

Yan Wang , Chao Zhang , Zixuan Zhao , Bolun Zhang , Xiaorui Gong , Wei Zou .

Manipulate heap layouts automatically.

hacking
DEFCON CTF 29 Final

August 07, 2021

Team: Tea-Deliverers
Rank: 3
Core Players from NISL: Siqi Wang , Hao Wang , Ming Yuan , Minglei Guo , Kaixiang Chen , Yixiong Wu , Zhongyu Pei , Baozheng Liu , Bodong Zhao , Xingman Chen , Linkai Zheng , Fenglu Zhang .

hacking
自动驾驶 CTF 2021 @ DEFCON 29

August 06, 2021

Team: Redbud
Rank: 4
Core Players from NISL: Li Yue , Hao Wang , Zihan Zhang , Shisong Qin , Wenjie Qu , Tingting Yin .

AutoDriving Scoreboard

hacking
强网杯 2021 决赛

July 10, 2021

Team: Redbud
Rank: 二等奖
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Yuxuan Wang , Miao Yu , Kaitao Xie , Huikai Xu , Kaixiang Lei .

talks
实用型可搜索加密被动式攻击方法

14:00-15:30pm June 10, 2021

academic talk @ tencent, Tsinghua University, Beijing

Speaker: 宁建廷（福建师范大学）

Abstract:

实用型可搜索加密在允许一定信息泄露的前提下实现了对存储在云端密态数据的高效搜索。当前实用型密态数据搜索应用系统（如ShadowCrypt等）的构建主要基于一种名为“efficiently deployable, efficiently searchable encryption”(EDESE)的可搜索加密方案。针对EDESE方案所泄露的信息，本报告将介绍一种针对此类信息泄露的新型被动式攻击方法，进一步揭露了实用型可搜索加密信息泄露的危害。

hacking
2021 XCTF决赛

May 29, 2021

Team: Redbud
Rank: 5
Core Players from NISL: Siqi Wang , Linkai Zheng , Hao Wang , Minglei Guo , Yuxuan Wang , Miao Yu , Fenglu Zhang , Kaitao Xie , Kaixiang Lei .

seminars
New Security Threats Caused by IMS-based SMS Service in 4G LTE Networks

14:00-15:10pm May 27, 2021

seminar @ Tencent Meeting, Tsinghua University, Beijing

Presenters: Hui Gao .

Abstract:

SIP协议部署安全性分析，提出了几种攻击并给出缓解措施。（值得一提的是，虽然文章是16年的，【RCS】或者叫【5G消息】仍是基于SIP的）

seminars
Abusing Hidden Properties to Attack the Node.js Ecosystem

15:10-16:10pm May 27, 2021

seminar @ Tencent Meeting, Tsinghua University, Beijing

Presenters: Kaixiang Chen .

Abstract:

talks
软硬协同的系统隔离机制

14:00-15:30pm May 20, 2021

academic talk @ 腾讯会议, Tsinghua University, Beijing

Speaker: 夏虞斌（上海交通大学）

Abstract:

CPU厂商不断推出新的硬件安全与隔离的特性，Intel在最近6年发布的相关特性数量已经超过了之前的总和，利用好这些特性需要软硬件协同的设计。本次报告首先介绍了系统隔离机制作为信息产业基础设施，在云端、移动端等场景下对故障隔离和数据保护的基础性作用，然后介绍底层相关软硬件的发展现状、面临的挑战与机遇，最后介绍我们应对这些挑战所作的一些研究工作，包括已开源的RISC-V平台Enclave系统——“蓬莱”等。

seminars
Your Phone is My Proxy: Detecting and Understanding Mobile Proxy Networks

15:10-16:10pm May 20, 2021

seminar @ Tencent Meeting, Tsinghua University, Beijing

Presenters: Zhuoqun fu .

Abstract:

本文对移动代理网络进行了测量分析

hacking
津门杯 2021 决赛

May 20, 2021

Team: Redbud
Rank: 二等奖
Core Players from NISL: Siqi Wang , Linkai Zheng , Minglei Guo , Kaitao Xie , Yuxuan Wang .

talks
软件供应链视角下的漏洞攻防

14:00-15:30pm May 13, 2021

academic talk @ 腾讯会议, Tsinghua University, Beijing

Speaker: 张源（复旦大学）

Abstract:

漏洞攻防是软件安全领域的经典研究主题。然而，随着软件行业的飞速发展，软件的研发过程已经演进为上下游紧密依赖的软件供应链模式。在软件供应链生态中，下游软件系统的漏洞管理和防护非常重要，但是却存在诸多挑战。本次报告将从漏洞的修复评估方法出发，系统性的介绍软件供应链视角下漏洞攻防研究面临的若干困难并分享目前已取得的一些初步进展。