研究所围绕当前社会网络空间的广义内生安全问题,开展内生安全理论研究以及新型漏洞挖掘方法的工程实践。主要开展智能网联系统安全、共模漏洞理论和评估、拟态防御异构性度量和认知安全等方向的研究,并结合产业界需求,进行科研成果转化和落地。
一、主要研究方向
1. 智能网联系统安全方向:针对当前智能网联系统面临多种未知风险等问题,利用软硬件模拟,模糊测试等技术,开展智能网联系统漏洞挖掘和漏洞防御相关研究,包括智能网联系统协议、固件、操作系统、接口等共性脆弱性研究。
2. 共模漏洞理论和评估方向:针对拟态防御中软件及其供应链的共性问题,利用动静态程序分析,软件相似性分析等技术,开展共模漏洞系统性研究,包括共模漏洞理论完善,共模漏洞评估以及验证等相关研究。
3. 拟态防御异构性度量方向:面向拟态防御中动态异构冗余实践规范,开展拟态防御方法的异构度评估方法研究,为拟态防御系统部署提供规范和指导。
4. 认知安全方向:针对当前认知领域存在重大未知风险等问题,开展认知域、信息域和物理域三域融合下的安全问题研究,包括网络空间抗测绘,XAI,Web3安全,反欺诈等。
二、代表性研究成果
论文:HARM: Hardware-assisted Continous Re-randomization for Microcontrollers. EuroS&P, 2022
论文:Semantics-preserving Reinforcement Learning Attack Against Graph Neural Networks for Malware Detection. TDSC, 2022. CCF-A
论文:A co-design adaptive defense scheme with bounded security damages against Heartbleed-like attacks. TIFS. 2021. CCF-A
论文:DEEPRETURN: A Deep Neural Network Can Learn How to Detect Previously-Unseen ROP Payloads without Using Any Heuristics. Journal of Computer Security, 2020. EI CCF-B.
论文:On convergence rates of game theoretic reinforcement learning algorithms. Automatica. 2019. EI CCF-A.
论文:POMP: Postmortem Program Analysis with Hardware-Enhanced Post-Crash Artifacts. In Proceedings of the 26th USENIX Security Symposium (USENIX Security), Vancouver, Canada, August 2017. EI CCF-A.
论文:What You See is Not What You Get! Thwarting Just-in-Time ROP with Chameleon. In Proceedings of the 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks. (DSN 2017), Denver, CO, USA, June 2017. EI CCF-B.
论文:Dancing with Wolves: Towards Practical Event-driven VMM Monitoring. In Proceedings of 13th ACM SIGPLAN/SIGOPS International Conference on Conference on Virtual Execution Environments (VEE 2017), 2017. EI CCF-B.
论文:CREDAL: Towards Locating a Memory Corruption Vulnerability with Your Core Dump. In Proceedings of 23rd ACM Conference on Computer and Communications Security (CCS 2016), Vienna, Austria, October, 2016. EI CCF-A.
论文:A Practical Approach for Adaptive Data Structure Layout Randomization. In Proceedings of the 20th European Symposium on Research in Computer Security. (ESORICS 2015), Vienna, Austria, September 2015. EI CCF-B.
论文:System Call Redirection: A Practical Approach to Meeting Real-world VMI needs. In Proceedings of the 44th Annual IEEE/IFIP International Conference on Dependable Systems and Networks. (DSN 2014), Atlanta, Georgia USA, June 2014. EI CCF-B.
