Publications

Mohannad Ismail, Andrew Quach, Christopher Jelesnianski, Yeongjin Jang, Changwoo Min (2022). Tightly Seal Your Sensitive Pointers with PACTIGHT (to appear). In Proceedings of the 31th USENIX Security Symposium (Security).

Lawrence Roy, Stan Lyakhov, Yeongjin Jang, Mike Rosulek (2022). Practical Privacy-Preserving Authentication for SSH (to appear). In Proceedings of the 31th USENIX Security Symposium (Security).

Jinhong Choi, Yeongjin Jang (2022). A Survey on Sensor False Data Injection Attacks and Countermeasures in Cyber-physical and Embedded Systems (to appear). In Proceedings of the 23rd World Conference on Information Security Applications (WISA).

Lawrence Roy, Stanislav Lyakhov, Yeongjin Jang, Mike Rosulek (2022). Practical Privacy-Preserving Authentication for SSH. Cryptology ePrint Archive, Paper 2022/740.

PDF

Mohannad Ismail, Andrew Quach, Christopher Jelesnianski, Yeongjin Jang, Changwoo Min (2022). Tightly Seal Your Sensitive Pointers with PACTight. arXiv:2203.15121 [cs.CR].

PDF

Christopher Jelesnianski, Jinwoo Yom, Changwoo Min, Yeongjin Jang (2022). Securely Sharing Randomized Code that Flies. In ACM Journal Digital Threats: Research and Practice (DTRAP).

PDF

Mohannad Ismail, Jinwoo Yom, Christopher Jelesnianski, Yeongjin Jang, Changwoo Min (2021). VIP: Safeguard Value Invariant Property for Thwarting Critical Memory Corruption Attacks. In Proceedings of the 28th ACM Conference on Computer and Communications Security (CCS).

PDF Slides Source Document

Dongkwan Kim, Eunsoo Kim, Mingeun Kim, Yeongjin Jang, Yongdae Kim (2021). Enabling the Large-Scale Emulation of Internet of Things Firmware With Heuristic Workarounds. In IEEE Security & Privacy.

PDF Source Document

Mingeun Kim, Dongkwan Kim, Eunsoo Kim, Suryeon Kim, Yeongjin Jang, Yongdae Kim (2020). FirmAE: Towards Large-Scale Emulation of IoT Firmware for Dynamic Analysis. In Proceedings of the 2020 Annual Computer Security Applications Conference (ACSAC).

PDF Slides Source Document

Suhwan Song, Chengyu Song, Yeongjin Jang, Byoungyoung Lee (2020). CrFuzz: Fuzzing Multi-purpose Programs through Input Validation. In Proceedings of the 2020 ACM Joint European Software Engineering Conference and Symposium (ESEC/FSE).

PDF Video

Christopher Jelesnianski, Jinwoo Yom, Changwoo Min, Yeongjin Jang (2020). MARDU : Efficient and Scalable Code Re-randomization. In Proceedings of the 13th ACM International Systems and Storage Conference (SYSTOR).

PDF Slides Video

Thang Hoang, Rouzbeh Behnia, Yeongjin Jang, Attila Yavuz (2020). MOSE: Practical Multi-User Oblivious Storage via Secure Enclaves. In Proceedings of the 10th ACM Conference on Data and Application Security and Privacy (CODASPY).

PDF Video

Kyungtae Kim, Dae R. Jeong, Chung Hwan Kim, Yeongjin Jang, Insik Shin, Byoungyoung Lee (2020). HFL: Hybrid Fuzzing on the Linux Kernel. In Proceedings of the 2020 Annual Network and Distributed Systems Security (NDSS).

PDF Slides Video

Chun Sung Park, Yeongjin Jang, Seungjoo Kim, Ki Taek Lee (2019). Fuzzing and Exploiting Virtual Channels in Microsoft Remote Desktop Protocol for Fun and Profit. In Black Hat Europe 2019 Briefings.

Slides Video

Youngman Jung, Junbum Shin, Yeongjin Jang (2019). BlueMaster: Bypassing and Fixing Bluetooth-based Proximity Authentication. In Black Hat Europe 2019 Briefings.

PDF Slides Video

Christopher Jelesnianski, Jinwoo Yom, Changwoo Min, Yeongjin Jang (2019). Making Code Re-randomization Practical with MARDU. arXiv:1909.09294 [cs.CR].

PDF

Hyunjun Park, Soyeon Kim, Seungjoo Kim, Yeongjin Jang (2019). soFrida - Dynamic Analysis Tool for Mobile Apps with Cloud Backend. In DEF CON 27 Demo Labs.

Source Document

Thang Hoang, Muslum Ozgur Ozmen, Yeongjin Jang, Attila A. Yavuz (2019). Hardware-Supported ORAM in Effect: Practical Oblivious Search and Update on Very Large Dataset. In Proceedings on Privacy Enhancing Technologies Symposium (PoPETs).

PDF Slides

Hsuan-Chi Kuo, Akshith Gunasekaran, Yeongjin Jang, Sibin Mohan, Rakesh B. Bobba, David Lie, Jesse Walker (2019). MultiK: A Framework for Orchestrating Multiple Specialized Kernels. arXiv:1903.06889 [cs.OS].

PDF Source Document

Insu Yun, Sangho Lee, Meng Xu, Yeongjin Jang, Taesoo Kim (2018). QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing. In Proceedings of the 27th USENIX Security Symposium (Security).

PDF Slides Video Source Document

Thang Hoang, Muslum Ozgur Ozmen, Yeongjin Jang, Attila A. Yavuz (2018). Hardware-Supported ORAM in Effect: Practical Oblivious Search and Update on Very Large Dataset. Cryptology ePrint Archive, Report 2018/247.

PDF

Yeongjin Jang, Jaehyuk Lee, Sangho Lee, Taesoo Kim (2017). SGX-Bomb: Locking Down the Processor via Rowhammer Attack. In Proceedings of the 2nd Workshop on System Software for Trusted Execution (SysTEX).

PDF Slides Source Document

Simon Pak~Ho Chung, Wenke Lee, Yeongjin Jang (2017). Systems and Methods for Using Video for User and Message Authentication. U.S. Patent US20170279815A1.

PDF

Jaehyuk Lee, Jinsoo Jang, Yeongjin Jang, Nohyun Kwak, Yeseul Choi, Changho Choi, Taesoo Kim, Marcus Peinado, Brent B. Kang (2017). Hacking in Darkness: Return-oriented Programming against Secure Enclaves. In Proceedings of the 26th USENIX Security Symposium (Security).

PDF Slides Video

Yeongjin Jang (2017). Building Trust in the User I/O in Computer Systems. Ph.D. Thesis, Georgia Institute of Technology.

PDF Slides

Yeongjin Jang, Sangho Lee, Taesoo Kim (2016). Breaking Kernel Address Space Layout Randomization with Intel TSX. In Proceedings of the 23rd ACM Conference on Computer and Communications Security (CCS).

PDF Slides Source Document

Meng Xu, Chengyu Song, Yang Ji, Ming-Wei Shih an (2016). Towards Engineering a Secure Android Ecosystem: A Survey of Existing Techniques. In ACM Computing Surveys.

PDF

Yeongjin Jang, Sangho Lee, Taesoo Kim (2016). Breaking Kernel Address Space Layout Randomization with Intel TSX. In Black Hat USA 2016 Briefings.

PDF Slides Video Source Document

Insu Yun, Changwoo Min, Xujie Si, Yeongjin Jang, Taesoo Kim, Mayur Naik (2016). APISAN: Sanitizing API Usages through Semantic Cross-checking. In Proceedings of the 25th USENIX Security Symposium (Security).

PDF Slides Video Source Document

Meng Xu, Yeongjin Jang, Xinyu Xing, Taesoo Kim, Wenke Lee (2015). UCognito: Private Browsing without Tears. In Proceedings of the 22nd ACM Conference on Computer and Communications Security (CCS).

PDF Slides Source Document

Hongil Kim, Dongkwan Kim, Minhee Kwon, Hyungseok Han, Yeongjin Jang, Dongsu Han, Taesoo Kim, Yongdae Kim (2015). Breaking and Fixing VoLTE: Exploiting Hidden Data Channels and Mis-implementations. In Proceedings of the 22nd ACM Conference on Computer and Communications Security (CCS).

PDF Slides

Byoungyoung Lee, Chengyu Song, Yeongjin Jang, Tielei Wang, Taesoo Kim, Long Lu, Wenke Lee (2015). Preventing Use-after-free with Dangling Pointers Nullification. In Proceedings of the 2015 Annual Network and Distributed Systems Security (NDSS).

PDF Slides

Yeongjin Jang, Chengyu Song, Simon P. Chung, Tielei Wang, Wenke Lee (2014). A11y Attacks: Exploiting Accessibility in Operating Systems. In Proceedings of the 21st ACM Conference on Computer and Communications Security (CCS).

PDF Slides

Tielei Wang, Yeongjin Jang, Yizheng Chen, Pak Ho Chung, Billy Lau, Wenke Lee (2014). On the Feasibility of Large-Scale Infections of iOS Devices. In Proceedings of the 23rd USENIX Security Symposium (Security).

PDF Slides Video

Billy Lau, Pak Ho Chung, Chengyu Song, Yeongjin Jang, Wenke Lee, Alexandra Boldyreva (2014). Mimesis Aegis: A Mimicry Privacy Shield. In Proceedings of the 23rd USENIX Security Symposium (Security).

PDF Slides Video

Yeongjin Jang, Tielei Wang, Byoungyoung Lee, Billy Lau (2014). Exploiting Unpatched iOS Vulnerabilities for Fun and Profit. In Black Hat USA 2014 Briefings.

Slides Video

Byoungyoung Lee, Yeongjin Jang, Tielei Wang, Chengyu Song, Long Lu, Taesoo Kim, Wenke Lee (2014). Abusing Performance Optimization Weaknesses to Bypass ASLR. In Black Hat USA 2014 Briefings.

Slides Video

Yeongjin Jang, Simon P. Chung, Bryan D. Payne, Wenke Lee (2014). Gyrus: A Framework for User-Intent Monitoring of Text-based Networked Applications. In Proceedings of the 2014 Annual Network and Distributed Systems Security (NDSS).

PDF Slides

Billy Lau, Yeongjin Jang, Chengyu Song, Tielei Wang, Pak Ho Chung, Pau (2013). Mactans: Injecting Malware Into iOS Devices via Malicious Chargers. In Black Hat USA 2013 Briefings.

PDF Slides Video