@inproceedings {285399, author = {Kong Huang and YuTong Zhou and Ke Zhang and Jiacen Xu and Jiongyi Chen and Di Tang and Kehuan Zhang}, title = {{HOMESPY}: The Invisible Sniffer of Infrared Remote Control of Smart {TVs}}, booktitle = {32nd USENIX Security Symposium (USENIX Security 23)}, year = {2023}, isbn = {978-1-939133-37-3}, address = {Anaheim, CA}, pages = {4553--4570}, url = {https://www.usenix.org/conference/usenixsecurity23/presentation/huang}, publisher = {USENIX Association}, month = aug } @inproceedings {291243, author = {Rui Li and Wenrui Diao and Shishuai Yang and Xiangyu Liu and Shanqing Guo and Kehuan Zhang}, title = {Lost in Conversion: Exploit Data Structure Conversion with Attribute Loss to Break Android Systems}, booktitle = {32nd USENIX Security Symposium (USENIX Security 23)}, year = {2023}, isbn = {978-1-939133-37-3}, address = {Anaheim, CA}, pages = {5503--5520}, url = {https://www.usenix.org/conference/usenixsecurity23/presentation/li-rui}, publisher = {USENIX Association}, month = aug } @inproceedings {287131, author = {Fan Yang and Jiacen Xu and Chunlin Xiong and Zhou Li and Kehuan Zhang}, title = {{PROGRAPHER}: An Anomaly Detection System based on Provenance Graph Embedding}, booktitle = {32nd USENIX Security Symposium (USENIX Security 23)}, year = {2023}, isbn = {978-1-939133-37-3}, address = {Anaheim, CA}, pages = {4355--4372}, url = {https://www.usenix.org/conference/usenixsecurity23/presentation/yang-fan}, publisher = {USENIX Association}, month = aug } @inproceedings {263780, author = {Di Tang and XiaoFeng Wang and Haixu Tang and Kehuan Zhang}, title = {Demon in the Variant: Statistical Analysis of {DNNs} for Robust Backdoor Contamination Detection}, booktitle = {30th USENIX Security Symposium (USENIX Security 21)}, year = {2021}, isbn = {978-1-939133-24-3}, pages = {1541--1558}, url = {https://www.usenix.org/conference/usenixsecurity21/presentation/tang-di}, publisher = {USENIX Association}, month = aug } @inproceedings {242030, author = {Li Zhang and Jiongyi Chen and Wenrui Diao and Shanqing Guo and Jian Weng and Kehuan Zhang}, title = {{CryptoREX}: Large-scale Analysis of Cryptographic Misuse in {IoT} Devices}, booktitle = {22nd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2019)}, year = {2019}, isbn = {978-1-939133-07-6}, address = {Chaoyang District, Beijing}, pages = {151--164}, url = {https://www.usenix.org/conference/raid2019/presentation/zhang-li}, publisher = {USENIX Association}, month = sep } @inproceedings {242044, author = {Wenrui Diao and Yue Zhang and Li Zhang and Zhou Li and Fenghao Xu and Xiaorui Pan and Xiangyu Liu and Jian Weng and Kehuan Zhang and XiaoFeng Wang}, title = {Kindness is a Risky Business: On the Usage of the Accessibility {APIs} in Android }, booktitle = {22nd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2019)}, year = {2019}, isbn = {978-1-939133-07-6}, address = {Chaoyang District, Beijing}, pages = {261--275}, url = {https://www.usenix.org/conference/raid2019/presentation/diao}, publisher = {USENIX Association}, month = sep } @inproceedings {217601, author = {Ronghai Yang and Wing Cheong Lau and Jiongyi Chen and Kehuan Zhang}, title = {Vetting Single {Sign-On} {SDK} Implementations via Symbolic Reasoning}, booktitle = {27th USENIX Security Symposium (USENIX Security 18)}, year = {2018}, isbn = {978-1-939133-04-5}, address = {Baltimore, MD}, pages = {1459--1474}, url = {https://www.usenix.org/conference/usenixsecurity18/presentation/yang}, publisher = {USENIX Association}, month = aug } @inproceedings {203632, author = {Xiaolong Bai and Zhe Zhou and XiaoFeng Wang and Zhou Li and Xianghang Mi and Nan Zhang and Tongxin Li and Shi-Min Hu and Kehuan Zhang}, title = {Picking Up My Tab: Understanding and Mitigating Synchronized Token Lifting and Spending in Mobile Payment}, booktitle = {26th USENIX Security Symposium (USENIX Security 17)}, year = {2017}, isbn = {978-1-931971-40-9}, address = {Vancouver, BC}, pages = {593--608}, url = {https://www.usenix.org/conference/usenixsecurity17/technical-sessions/presentation/bai}, publisher = {USENIX Association}, month = aug } @inproceedings {197233, author = {Kun Du and Hao Yang and Zhou Li and Haixin Duan and Kehuan Zhang}, title = {The {Ever-Changing} Labyrinth: A {Large-Scale} Analysis of Wildcard {DNS} Powered Blackhat {SEO}}, booktitle = {25th USENIX Security Symposium (USENIX Security 16)}, year = {2016}, isbn = {978-1-931971-32-4}, address = {Austin, TX}, pages = {245--262}, url = {https://www.usenix.org/conference/usenixsecurity16/technical-sessions/presentation/du}, publisher = {USENIX Association}, month = aug }