Our research interests span across network, mobile, software, hardware, and human, emphasizing security and privacy issues of the targets. Details will be posted when they become publicly available.

• Offensive Security
  • RouteDetector — A novel PoC side-channel attack for mobile devices
  • Trojan of Things
  • Analysis of RF retroreflector
  • Social Accounts De-anonymization
  • De-anonymizing online purchase history

• Mobile Security
  • ACODE — Analysing mobile apps with static software analysis and natural language processing
  • AppRaiser — A system that automatically detects “cloned” Android apps
  • PADetector — A system that can detect promotional attackers on the Android app marketplaces.
  • Analytics of mobile app market
• IoT
  • Trojan of Things
  • RF retroreflectors
  • AI Speakers
  • Robot Security
• Human-factors in security
  • Accessible Security — Authentication mechanisms for visually impaired person [paper][poster]
  • Passwords analytics
  • Usable and secure pattern rock system
  • User security perception on the Android marketplace
• Privacy
  • Understanding web tracking in the wild
  • Android app privacy
  • Auction privacy
• Network Security
  • AutoBLG — Automated blacklist generation framework.
  • SFMap — Inferring hostnames of encrypted HTTP traffic
  • Detecting malicious traffic
  • Darknet analysis — Extracting useful information from darknet traffic
  • Detecting potentially unwanted program (PUP)
• Software Security
  • Malware analytics — Applying machine learning techniques to analyzing malware samples
  • Scalable vulnerability detection