@inproceedings {291325, author = {Shuai Li and Zhemin Yang and Guangliang Yang and Hange Zhang and Nan Hua and Yurui Huang and Min Yang}, title = {Notice the Imposter! A Study on User Tag Spoofing Attack in Mobile Apps}, booktitle = {32nd USENIX Security Symposium (USENIX Security 23)}, year = {2023}, isbn = {978-1-939133-37-3}, address = {Anaheim, CA}, pages = {5485--5501}, url = {https://www.usenix.org/conference/usenixsecurity23/presentation/li-shuai}, publisher = {USENIX Association}, month = aug } @inproceedings {280044, author = {Lei Zhang and Zhibo Zhang and Ancong Liu and Yinzhi Cao and Xiaohan Zhang and Yanjun Chen and Yuan Zhang and Guangliang Yang and Min Yang}, title = {Identity Confusion in {WebView-based} Mobile App-in-app Ecosystems}, booktitle = {31st USENIX Security Symposium (USENIX Security 22)}, year = {2022}, isbn = {978-1-939133-31-1}, address = {Boston, MA}, pages = {1597--1613}, url = {https://www.usenix.org/conference/usenixsecurity22/presentation/zhang-lei}, publisher = {USENIX Association}, month = aug } @inproceedings {272100, author = {Feng Xiao and Jianwei Huang and Yichang Xiong and Guangliang Yang and Hong Hu and Guofei Gu and Wenke Lee}, title = {Abusing Hidden Properties to Attack the Node.js Ecosystem}, booktitle = {30th USENIX Security Symposium (USENIX Security 21)}, year = {2021}, isbn = {978-1-939133-24-3}, pages = {2951--2968}, url = {https://www.usenix.org/conference/usenixsecurity21/presentation/xiao}, publisher = {USENIX Association}, month = aug } @inproceedings {236356, author = {Guangliang Yang and Jeff Huang and Guofei Gu}, title = {{Iframes/Popups} Are Dangerous in Mobile {WebView}: Studying and Mitigating Differential Context Vulnerabilities}, booktitle = {28th USENIX Security Symposium (USENIX Security 19)}, year = {2019}, isbn = {978-1-939133-06-9}, address = {Santa Clara, CA}, pages = {977--994}, url = {https://www.usenix.org/conference/usenixsecurity19/presentation/yang-guangliang}, publisher = {USENIX Association}, month = aug }