Network and Information Security Lab @ Tsinghua University

A research team focusing on cyber security at Tsinghua University.
A playground for fun hacking and fundamental research.
Base of the CTF teams Blue-Lotus and RedBud.

News

May 2023 - Our paper Efficient 3PC for Binary Circuits with Application to Maliciously-Secure DNN Inference* was accepted by USENIX Security 2023.

May 2023 - Our paper AlphaEXP: An Expert System for Identifying Security-Sensitive Kernel Objects was accepted by USENIX Security 2023.

May 2023 - Our paper 1dFuzz: Reproduce 1-day Vulnerabilities with Directed Differential Fuzzing was accepted by ISSTA 2023.

April 2023 - Our paper RaceBench: A Triggerable and Observable Concurrency Bug Benchmark was accepted by ASIACCS 2023.

Mar 2023 - Our paper Under the Dark: A Systematical Study of Stealthy Mining Pools (Ab)use in the Wild was accepted by ACM CCS 2023.

Mar 2023 - Our paper ODDFUZZ: Discovering Java Deserialization Vulnerabilities via Structure-Aware Directed Greybox Fuzzing was accepted by IEEE S&P 2023.

Feb 2023 - Our paper PTStore: Lightweight Architectural Support for Page Table Isolation was accepted by DAC 2023.

Feb 2023 - Our paper MPass: Bypassing Learning-based Static Malware Detectors was accepted by DAC 2023.

Feb 2023 - Our paper Temporal CDN-Convex Lens: A CDN-Assisted Practical Pulsing DDoS Attack was accepted by USENIX Security 2023.

Feb 2023 - Our paper DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing was accepted by USENIX Security 2023.

Feb 2023 - Our paper MTSan: A Feasible and Practical Memory Sanitizer for Fuzzing COTS Binaries was accepted by USENIX Security 2023.

Jan 2023 - Our paper KextFuzz: Fuzzing macOS Kernel EXTensions on Apple Silicon via Exploiting Mitigations was accepted by USENIX Security 2023.

Jan 2023 - Our paper Aegis: Mitigating Targeted Bit-flip Attacks against Deep Neural Networks was accepted by USENIX Security 2023.

Dec 2022 - Our paper Callee: Recovering Call Graphs for Binaries with Transfer and Contrastive Learning was accepted by IEEE S&P 2023.

Sep 2022 - Our paper AIFORE: Smart Fuzzing Based on Automatic Input Format Reverse Engineering was accepted by USENIX Security 2023.

More......

Web Security

Cookie Integrity...

Network Security

Protocol security analysis and design, HTTPS, SDN, 5G, IPv6.
Link...

System Security

BlockChain Security, IoT Security, ICS Security

Software Security

Vulnerability analysis, discovery, exploit and mitigation. Malware analysis.

Data-driven Security

Intrusion detection, underground economy analysis.

AI Security

AI for security, and Secure AI.

Announcement

Looking for highly motivated students, postdoc, and research assistants.

Faculty positions are available as well.

Read more ...