个人简介
主要研究方向为操作系统安全、安全容器、可信执行环境技术、二进制程序分析。以第一作者和通信作者在系统和网络安全领域国际顶级会议和期刊上发表学术论文多篇,包括IEEE S&P, ASPLOS, CCS, FAST, ESORICS, DSN, TIFS, TDSC等;总计发表中英文论文50余篇,专利多项,具有丰富的机密计算和隐私计算实践与落地经验。发现多个Intel、RedHat、阿里云等产品中的漏洞,取得多个CVE/CNVD漏洞编号。
本人长期与国内外知名高校的信息安全领域顶级教授合作,同时与大厂有密切学术交流;可推荐优秀同学出国深造/大厂实习。欢迎有意研究 系统安全、虚拟化、TEE、隐私保护 等方向的同学与我联系^^
个人主页
https://stanplatinum.github.io/
代表论文
AtomicDisk: A Secure Virtual Disk for TEEs against Eviction Attacks. USENIX Conference on File and Storage Technologies (FAST), 2025
Lost along the Way: Understanding and Mitigating Path-Misresolution Threats to Container Isolation. ACM SIGSAC Conference on Computer and Communications Security (CCS), 2023
Robbery on DevOps: Understanding and Mitigating Illicit Cryptomining on Continuous Integration Service Platforms. IEEE Symposium on Security and Privacy (Oakland), 2022
Retrofitting LBR Profiling to Enhance Virtual Machine Introspection. IEEE Transactions on Information Forensics and Security (TIFS), 2022
Trust Beyond Border: Lightweight, Verifiable User Isolation for Protecting In-Enclave Services. IEEE Transactions on Dependable and Secure Computing (TDSC), 2021
Incremental CFG Patching for Binary Rewriting. ACM International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), 2021
Practical and Efficient in-Enclave Verification of Privacy Compliance. IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), 2021
On-Demand Time Blurring to Support Side-Channel Defense. European Symposium on Research in Computer Security (ESORICS), 2017
学术服务
担任网络安全领域国际期刊 ACM Transactions on Architecture and Code Optimization (TACO), ACM Transactions on Privacy and Security (TOPS) 、Security and Communication Networks (SCN)、Wireless Communications and Mobile Computing (WCMC)的审稿人;
担任网络安全领域顶级会议IEEE S&P、CCS、Usenix Security 和 NDSS的审稿人;
作为出题人和Committee成员组织美国国立卫生研究院(NIH)主办的iDash安全基因计算竞赛;应邀在伊利诺伊大学香槟分校(UIUC)、Intel Labs举办的学术沙龙上作主题报告。