段海新教授

段海新 Haixin Duan

教授 · 博士生导师

清华大学 · 网络科学与网络空间研究院(INSC)
网络与信息安全实验室(NISL) FIT 楼 3-211

网络协议安全分析 网络测量 入侵检测与网络地下经济检测 AI 系统安全
✉ duanhx@tsinghua.edu.cn ☎ +86-10-6260-3220 📖 Google Scholar 📋 DBLP 🔬 NISL Lab

👤关于我

段海新,清华大学网络科学与网络空间研究院(INSC)教授、博士生导师, 2000 年于清华大学获计算机科学博士学位,2011–2013 年赴 UC Berkeley 及 ICSI 担任访问学者/资深科学家。

研究方向聚焦于互联网基础设施安全,涵盖 DNS 安全与漏洞分析、Web 安全与 Web PKI、 HTTP/HTTPS 及 CDN 安全、网络测量与入侵检测等领域。 在 IEEE S&P、USENIX Security、ACM CCS、NDSS 等国际顶级安全会议发表论文逾 100 篇。

曾获 ACM CCS 最佳论文奖(2020)、IEEE/IFIP DSN 最佳论文奖(2020)、 NDSS 杰出论文奖(2016)及"中国网络空间安全杰出人才"称号。 担任国务院学位委员会第八届学科评议组成员(2020 至今), InForSec、XCTF、DataCon 联合创始人。


研究方向

DNS 安全与漏洞分析 Web 安全 & Web PKI HTTP/HTTPS & CDN 安全 网络测量 入侵检测与地下经济检测 电子邮件安全 物联网安全 协议安全分析 AI 系统安全

💼工作 & 教育经历

工作经历

2009 — 至今 教授 · 博士生导师 · NISL 主任
清华大学 · 网络科学与网络空间研究院(INSC)
主持 NISL 实验室,负责本科及研究生教学工作, 主持多项国家级科研项目,在顶级安全会议持续发表研究成果。
2012 — 2013 资深科学家(Senior Scientist)
ICSI(国际计算机科学研究所),Berkeley, USA
2011 — 2012 访问学者(Visiting Scholar)
加州大学伯克利分校(UC Berkeley),USA
2003 — 2009 副教授
清华大学 · 网络工程研究中心
2001 — 2003 助理教授(讲师)
清华大学 · 网络工程研究中心

教育背景

1996 — 2000 工学博士
清华大学 · 计算机科学与技术系
专业方向:计算机系统结构
1994 — 1996 工学硕士
哈尔滨工业大学 · 计算机科学与技术系
专业方向:计算机系统结构
1990 — 1994 工学学士
哈尔滨工业大学 · 计算机科学与技术系

荣誉与获奖

2025 USENIX Security 杰出论文奖
"My ZIP isn't your ZIP: Identifying and Exploiting Semantic Gaps Between ZIP Parsers" 官方链接
2023 ACM CCS 杰出论文奖
"Silence is not Golden: Disrupting the Load Balancing of Authoritative DNS Servers" 官方链接
2022 IEEE/IFIP DSN 最佳论文亚军(Best Paper Runner-Up)
"HDiff: Hiding Differences to Identify Semantic Gaps in Vulnerability Signatures" 官方链接
2020 ACM CCS 最佳论文奖
"DNS cache poisoning attack reloaded: Revolutions with side channels" 官方链接
2020 IEEE/IFIP DSN 最佳论文奖
"CDN Backfired: Amplification Attacks Based on HTTP Range Requests" 官方链接
2020 Applied Networking Research Award(IRTF)
"An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come?" 官方链接
2016 NDSS 杰出论文奖(中国学者首次获此奖项)
"Forwarding-Loop Attacks in Content Delivery Networks" 官方链接
2016 中央网信办网络安全优秀人才
由国家互联网信息办公室颁发,首届获奖者 官方链接

📚主讲课程

本科
网络安全工程与实践
面向计算机系本科生的网络安全入门课程,覆盖密码学基础、 网络协议安全、Web 安全、入侵检测等核心主题,含实验环节。 2003 年开课至今,为清华主干课程。
📅 每学期开设 🕐 2003 — 至今
研究生
网络协议安全分析
面向研究生的前沿课程,系统讲授 DNS、HTTP、TLS、BGP 等 互联网基础协议的安全设计与实际漏洞,结合课题组最新研究成果。
📅 每学期开设 🕐 2019 — 至今
研究生
网络与系统安全
研究生专业课,涵盖操作系统安全、网络攻防技术、 漏洞挖掘与利用、安全测量方法论等内容。
📅 已结束 🕐 2005 — 2019

📄发表论文

共 192 篇(含会议论文、期刊论文)。数据来源: DBLP · Google Scholar

LLMThief: Evaluating Configuration Leaking Risks in Commercial LLM App Stores
Pinji Chen, Jinlong Jiang, Jianjun Chen 0005, Feiran Qin, Minghao Zhang, Jiahe Zhang, Haixin Duan, Kaiwen Shen, Hui Jiang
IEEE Symposium on Security and Privacy (S&P) 2026
PDF Link
Identifying Logical Vulnerabilities in QUIC Implementations
Kaihua Wang, Jianjun Chen 0005, Pinji Chen, Jianwei Zhuge, Jiaju Bai, Haixin Duan
Network and Distributed System Security Symposium (NDSS) 2026
PDF Link
SIPConfusion: Exploiting SIP Semantic Ambiguities for Caller ID and SMS Spoofing
Qi Wang 0094, Jianjun Chen 0005, Jingcheng Yang, Jiahe Zhang, Yaru Yang, Haixin Duan
Network and Distributed System Security Symposium (NDSS) 2026
PDF Link
Token Time Bomb: Evaluating JWT Implementations for Vulnerability Discovery
Jingcheng Yang, Enze Wang, Jianjun Chen 0005, Qi Wang 0094, Yuheng Zhang, Haixin Duan, Wei Xie 0007, Baosheng Wang
Network and Distributed System Security Symposium (NDSS) 2026
PDF Link
Small Cell, Big Risk: A Security Assessment of 4G LTE Femtocells in the Wild
Yaru Yang, Yiming Zhang 0009, Tao Wan 0004, Haixin Duan, Deliang Chang, Yishen Li, Shujun Tang
Network and Distributed System Security Symposium (NDSS) 2026
PDF Link
Understanding the Status and Strategies of the Code Signing Abuse Ecosystem
Hanqing Zhao, Yiming Zhang 0009, Lingyun Ying, Mingming Zhang 0010, Baojun Liu 0002, Haixin Duan, Zi-Quan You, Shuhao Zhang
Network and Distributed System Security Symposium (NDSS) 2026
PDF Link
Characterizing Iran's Phased National Internet Shutdown in 2025: A Progressive and Distributed Action
Shibo Cui, Mingxuan Liu 0006, Baojun Liu 0002, Haixin Duan, Ruixuan Li 0008, Chaoyi Lu, Jin Zhang, Zhicheng Wang, Jinghua Bai
The Web Conference (WWW) 2026
PDF DOI
Explore-on-Graph: Incentivizing Autonomous Exploration of Large Language Models on Knowledge Graphs with Path-refined Reward Modeling
Shiqi Yan, Yubo Chen 0002, Ruiqi Zhou, Zhengxi Yao, Shuai Chen, Tianyi Zhang, Shijie Zhang, Wei Qiang Zhang, Yongfeng Huang 0001, Haixin Duan, Yunqi Zhang
arXiv preprint (CoRR) 2026
DOI
RebirthDay Attack: Reviving DNS Cache Poisoning with the Birthday Paradox
Xiang Li 0108, Mingming Zhang 0010, Zuyao Xu, Fasheng Miao, Yuqi Qiu, Baojun Liu 0002, Jia Zhang 0004, Xiaofeng Zheng, Haixin Duan, Zheli Liu, Yunhai Zhang, Dunqiu Fan
ACM Conference on Computer and Communications Security (CCS) 2025
PDF DOI
Exploring and Analyzing Cross Layer DoS Attack Against UDP-based Services on Linux
Dashuai Wu, Yunyi Zhang, Baojun Liu 0002, Xiang Li 0108, Eihal Alowaisheq, Haixin Duan
ACM Conference on Computer and Communications Security (CCS) 2025
PDF DOI
Decoding DNS Centralization: Measuring and Identifying NS Domains Across Hosting Providers
Qihang Peng, Mingming Zhang 0010, Deliang Chang, Jia Zhang 0004, Baojun Liu 0002, Haixin Duan
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2025
PDF DOI
Email Cloaking: Deceiving Users and Spam Email Detectors with Invisible HTML Settings
Bingyang Guo, Mingxuan Liu 0006, Yihui Ma, Ruixuan Li 0008, Fan Shi 0003, Min Zhang 0054, Baojun Liu 0002, Chengxi Xu, Haixin Duan, Geng Hong, Min Yang 0002, Qingfeng Pan
European Symposium on Research in Computer Security (ESORICS) 2025
PDF DOI
The Danger of Packet Length Leakage: Off-path TCP/IP Hijacking Attacks Against Wireless and Mobile Networks
Guancheng Li, Minghao Zhang, Jianjun Chen 0005, Ge Dai, Pinji Chen, Huiming Liu, Yang Yu, Haixin Duan, Zhiyun Qian
IEEE European Symposium on Security and Privacy (EuroS&P) 2025
PDF DOI
Exposing the Hidden Layer: Software Repositories in the Service of Seo Manipulation
Mengying Wu, Geng Hong, Wuyuao Mai, Xinyi Wu, Lei Zhang 0096, Yingyuan Pu, Huajun Chai, Lingyun Ying, Haixin Duan, Min Yang 0002
IEEE/ACM International Conference on Software Engineering (ICSE) 2025
PDF DOI
Dive into the Cloud: Unveiling the (Ab)Usage of Serverless Cloud Function in the Wild
Yijing Liu, Mingxuan Liu 0006, Yiming Zhang 0009, Baojun Liu 0002, Jia Zhang 0004, Geng Hong, Haixin Duan, Min Yang 0002
ACM Internet Measurement Conference (IMC) 2025
PDF DOI
Chaos in the Chain: Evaluate Deployment and Construction Compliance of Web PKI Certificate Chain
Jia Yao, Yiming Zhang 0009, Baojun Liu 0002, Zhan Liu, Mingming Zhang 0010, Haixin Duan
ACM Internet Measurement Conference (IMC) 2025
PDF DOI
Understanding and Characterizing Intermediate Paths of Email Delivery: The Hidden Dependencies
Ruixuan Li 0008, Chaoyi Lu, Baojun Liu 0002, Yanzhong Lin, Haixin Duan, Qingfeng Pan, Jun Shao 0001
ACM Internet Measurement Conference (IMC) 2025
PDF DOI
Analyzing Compliance and Complications of Integrating Internationalized X.509 Certificates
Mingming Zhang 0010, Jinfeng Guo, Yiming Zhang 0009, Shenglin Zhang, Baojun Liu 0002, Hanqing Zhao, Xiang Li 0108, Haixin Duan
ACM Internet Measurement Conference (IMC) 2025
PDF DOI
HADES Attack: Understanding and Evaluating Manipulation Risks of Email Blocklists
Ruixuan Li 0008, Chaoyi Lu, Baojun Liu 0002, Yunyi Zhang, Geng Hong, Haixin Duan, Yanzhong Lin, Qingfeng Pan, Min Yang 0002, Jun Shao 0001
Network and Distributed System Security Symposium (NDSS) 2025
PDF Link
Cross-Origin Web Attacks via HTTP/2 Server Push and Signed HTTP Exchange
Pinji Chen, Jianjun Chen 0005, Mingming Zhang 0010, Qi Wang 0094, Yiming Zhang 0009, Mingwei Xu, Haixin Duan
Network and Distributed System Security Symposium (NDSS) 2025
PDF Link
Automatic Insecurity: Exploring Email Auto-configuration in the Wild
Shushang Wen, Yiming Zhang 0009, Yuxiang Shen, Bingyu Li, Haixin Duan, Jingqiang Lin 0001
Network and Distributed System Security Symposium (NDSS) 2025
PDF Link
Revealing the Black Box of Device Search Engine: Scanning Assets, Strategies, and Ethical Consideration
Mengying Wu, Geng Hong, Jinsong Chen, Qi Liu, Shujun Tang, Youhao Li, Baojun Liu 0002, Haixin Duan, Min Yang 0002
Network and Distributed System Security Symposium (NDSS) 2025
PDF Link
Hey, Your Secrets Leaked! Detecting and Characterizing Secret Leakage in the Wild
Jiawei Zhou, Zidong Zhang, Lingyun Ying, Huajun Chai, Jiuxin Cao, Haixin Duan
IEEE Symposium on Security and Privacy (S&P) 2025
PDF DOI
Invade the Walled Garden: Evaluating GTP Security in Cellular Networks
Yiming Zhang 0009, Tao Wan 0004, Yaru Yang, Haixin Duan, Yichen Wang, Jianjun Chen 0005, Zixiang Wei, Xiang Li 0108
IEEE Symposium on Security and Privacy (S&P) 2025
PDF DOI
Detection and Mitigation of Unknown Threats in IPv6 Networks via Layered Data Adaptation
Youjun Huang, Xiang Li 0108, Jia Zhang 0004, Haixin Duan
IEEE International Conference on Trust, Security and Privacy in Computing (TrustCom) 2025
DOI
My ZIP isn't your ZIP: Identifying and Exploiting Semantic Gaps Between ZIP Parsers
Yufan You, Jianjun Chen 0005, Qi Wang 0094, Haixin Duan
USENIX Security Symposium 2025
PDF Link
Email Spoofing with SMTP Smuggling: How the Shared Email Infrastructures Magnify this Vulnerability
Chuhan Wang 0001, Chenkai Wang 0001, Songyi Yang, Sophia Liu, Jianjun Chen 0005, Haixin Duan, Gang Wang 0011
USENIX Security Symposium 2025
PDF Link
The Silent Danger in HTTP: Identifying HTTP Desync Vulnerabilities with Gray-box Testing
Keran Mu, Jianjun Chen 0005, Jianwei Zhuge, Qi Li 0002, Haixin Duan, Nick Feamster
USENIX Security Symposium 2025
PDF Link
Beyond Exploit Scanning: A Functional Change-Driven Approach to Remote Software Version Identification
Jinsong Chen, Mengying Wu, Geng Hong, Baichao An, Mingxuan Liu 0006, Lei Zhang 0096, Baojun Liu 0002, Haixin Duan, Min Yang 0002
USENIX Security Symposium 2025
PDF Link
NOKEScam: Understanding and Rectifying Non-Sense Keywords Spear Scam in Search Engines
Mingxuan Liu 0006, Yunyi Zhang, Lijie Wu, Baojun Liu 0002, Geng Hong, Yiming Zhang 0009, Hui Jiang, Jia Zhang 0004, Haixin Duan, Min Zhang 0054, Wei Guan, Fan Shi 0003, Min Yang 0002
USENIX Security Symposium 2025
PDF Link
Misty Registry: An Empirical Study of Flawed Domain Registry Operation
Mingming Zhang 0010, Yunyi Zhang, Baojun Liu 0002, Haixin Duan, Min Zhang 0054, Fan Shi 0003, Chengxi Xu
USENIX Security Symposium 2025
PDF Link
You Can't Eat Your Cake and Have It Too: The Performance Degradation of LLMs with Jailbreak Defense
Wuyuao Mai, Geng Hong, Pei Chen, Xudong Pan, Baojun Liu 0002, Yuan Zhang 0009, Haixin Duan, Min Yang 0002
The Web Conference (WWW) 2025
PDF DOI
Dr. Docker: A Large-Scale Security Measurement of Docker Image Ecosystem
Hequan Shi, Lingyun Ying, Libo Chen 0001, Haixin Duan, Ming Liu, Zhi Xue
The Web Conference (WWW) 2025
PDF DOI
You Can't Eat Your Cake and Have It Too: The Performance Degradation of LLMs with Jailbreak Defense
Wuyuao Mai, Geng Hong, Pei Chen, Xudong Pan, Baojun Liu 0002, Yuan Zhang 0009, Haixin Duan, Min Yang 0002
arXiv preprint (CoRR) 2025
PDF DOI
Underground Application Collection Method Based on Spiking Traffic Analysis
Pei Chen, Geng Hong, Mengying Wu, Jinsong Chen, Haixin Duan, Min Yang 0002
International Journal of Software and Informatics 2024
DOI
Investigating Deployment Issues of DNS Root Server Instances From a China-Wide View
Fenglu Zhang, Baojun Liu 0002, Chaoyi Lu, Yunpeng Xing, Haixin Duan, Ying Liu 0024, Liyuan Chang
IEEE Transactions on Dependable and Secure Computing 2024
PDF DOI
Dissecting Open Edge Computing Platforms: Ecosystem, Usage, and Security Risks
Yu Bi, Mingshuo Yang, Yong Fang, Xianghang Mi, Shanqing Guo, Shujun Tang, Haixin Duan
Annual Computer Security Applications Conference (ACSAC) 2024
PDF DOI
Internet's Invisible Enemy: Detecting and Measuring Web Cache Poisoning in the Wild
Yuejia Liang, Jianjun Chen 0005, Run Guo, Kaiwen Shen, Hui Jiang, Man Hou, Yue Yu, Haixin Duan
ACM Conference on Computer and Communications Security (CCS) 2024
PDF DOI
Inbox Invasion: Exploiting MIME Ambiguities to Evade Email Attachment Detectors
Jiahe Zhang, Jianjun Chen 0005, Qi Wang 0094, Hangyu Zhang, Chuhan Wang 0001, Jianwei Zhuge, Haixin Duan
ACM Conference on Computer and Communications Security (CCS) 2024
PDF DOI
Toward Understanding the Security of Plugins in Continuous Integration Services
Xiaofan Li 0009, Yacong Gu, Chu Qiao, Zhenkai Zhang 0002, Daiping Liu, Lingyun Ying, Haixin Duan, Xing Gao 0001
ACM Conference on Computer and Communications Security (CCS) 2024
PDF DOI
MiniCAT: Understanding and Detecting Cross-Page Request Forgery Vulnerabilities in Mini-Programs
Zidong Zhang, Qinsheng Hou, Lingyun Ying, Wenrui Diao, Yacong Gu, Rui Li 0102, Shanqing Guo, Haixin Duan
ACM Conference on Computer and Communications Security (CCS) 2024
PDF DOI
PowerPeeler: A Precise and General Dynamic Deobfuscation Method for PowerShell Scripts
Ruijie Li, Chenyang Zhang, Huajun Chai, Lingyun Ying, Haixin Duan, Jun Tao 0003
ACM Conference on Computer and Communications Security (CCS) 2024
PDF DOI
ChatScam: Unveiling the Rising Impact of ChatGPT on Domain Name Abuse
Mingxuan Liu 0006, Zhenglong Jin, Jiahai Yang 0001, Baoiun Liu, Haixin Duan, Ying Liu 0024, Ximeng Liu, Shujun Tang
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2024
PDF DOI
Yesterday Once More: Global Measurement of Internet Traffic Shadowing Behaviors
Yunpeng Xing, Chaoyi Lu, Baojun Liu 0002, Haixin Duan, Junzhe Sun, Zhou Li 0001
ACM Internet Measurement Conference (IMC) 2024
PDF DOI
Bounce in the Wild: A Deep Dive into Email Delivery Failures from a Large Email Service Provider
Ruixuan Li 0008, Shaodong Xiao, Baojun Liu 0002, Yanzhong Lin, Haixin Duan, Qingfeng Pan, Jianjun Chen 0005, Jia Zhang 0004, Ximeng Liu, Xiuqi Lu, Jun Shao 0001
ACM Internet Measurement Conference (IMC) 2024
PDF DOI
Understanding the Implementation and Security Implications of Protective DNS Services
Mingxuan Liu 0006, Yiming Zhang 0009, Xiang Li 0108, Chaoyi Lu, Baojun Liu 0002, Haixin Duan, Xiaofeng Zheng
Network and Distributed System Security Symposium (NDSS) 2024
PDF Link
BreakSPF: How Shared Infrastructures Magnify SPF Vulnerabilities Across the Internet
Chuhan Wang 0001, Yasuhiro Kuranaga, Yihang Wang, Mingming Zhang 0010, Linkai Zheng, Xiang Li 0108, Jianjun Chen 0005, Haixin Duan, Yanzhong Lin, Qingfeng Pan
Network and Distributed System Security Symposium (NDSS) 2024
PDF Link
ReqsMiner: Automated Discovery of CDN Forwarding Request Inconsistencies and DoS Attacks with Grammar-based Fuzzing
Linkai Zheng, Xiang Li 0108, Chuhan Wang 0001, Run Guo, Haixin Duan, Jianjun Chen 0005, Chao Zhang 0008, Kaiwen Shen
Network and Distributed System Security Symposium (NDSS) 2024
PDF Link
CrypTody: Cryptographic Misuse Analysis of IoT Firmware via Data-flow Reasoning
Jianing Wang, Shanqing Guo, Wenrui Diao, Yue Liu, Haixin Duan, Yichen Liu, Zhenkai Liang
International Symposium on Research in Attacks, Intrusions and Defenses (RAID) 2024
PDF DOI
Break the Wall from Bottom: Automated Discovery of Protocol-Level Evasion Vulnerabilities in Web Application Firewalls
Qi Wang 0094, Jianjun Chen 0005, Zheyu Jiang, Run Guo, Ximeng Liu, Chao Zhang 0008, Haixin Duan
IEEE Symposium on Security and Privacy (S&P) 2024
PDF DOI
Where URLs Become Weapons: Automated Discovery of SSRF Vulnerabilities in Web Applications
Enze Wang, Jianjun Chen 0005, Wei Xie 0007, Chuhan Wang 0001, Yifei Gao, Zhenhua Wang, Haixin Duan, Yang Liu 0003, Baosheng Wang
IEEE Symposium on Security and Privacy (S&P) 2024
PDF DOI
More Haste, Less Speed: Cache Related Security Threats in Continuous Integration Services
Yacong Gu, Lingyun Ying, Huajun Chai, Yingyuan Pu, Haixin Duan, Xing Gao 0001
IEEE Symposium on Security and Privacy (S&P) 2024
PDF DOI
TuDoor Attack: Systematically Exploring and Exploiting Logic Vulnerabilities in DNS Response Pre-processing with Malformed Packets
Xiang Li 0108, Wei Xu, Baojun Liu 0002, Mingming Zhang 0010, Zhou Li 0001, Jia Zhang 0004, Deliang Chang, Xiaofeng Zheng, Chuhan Wang 0001, Jianjun Chen 0005, Haixin Duan, Qi Li 0002
IEEE Symposium on Security and Privacy (S&P) 2024
PDF DOI
DNSBomb: A New Practical-and-Powerful Pulsing DoS Attack Exploiting DNS Queries-and-Responses
Xiang Li 0108, Dashuai Wu, Haixin Duan, Qi Li 0002
IEEE Symposium on Security and Privacy (S&P) 2024
PDF DOI
Tickets or Privacy? Understand the Ecosystem of Chinese Ticket Grabbing Apps
Yijing Liu, Yiming Zhang 0009, Baojun Liu 0002, Haixin Duan, Qiang Li, Mingxuan Liu 0006, Ruixuan Li 0008, Jia Yao
USENIX Security Symposium 2024
PDF Link
ResolverFuzz: Automated Discovery of DNS Resolver Vulnerabilities with Query-Response Fuzzing
Qifan Zhang 0002, Xuesong Bai, Xiang Li 0108, Haixin Duan, Qi Li 0002, Zhou Li 0001
USENIX Security Symposium 2024
PDF Link
Rethinking the Security Threats of Stale DNS Glue Records
Yunyi Zhang, Baojun Liu 0002, Haixin Duan, Min Zhang 0054, Xiang Li 0108, Fan Shi 0003, Chengxi Xu, Eihal Alowaisheq
USENIX Security Symposium 2024
PDF Link
Into the Dark: Unveiling Internal Site Search Abused for Black Hat SEO
Yunyi Zhang, Mingxuan Liu 0006, Baojun Liu 0002, Yiming Zhang 0009, Haixin Duan, Min Zhang 0054, Hui Jiang, Yanzhe Li, Fan Shi 0003
USENIX Security Symposium 2024
PDF Link
Cross the Zone: Toward a Covert Domain Hijacking via Shared DNS Infrastructure
Yunyi Zhang, Mingming Zhang 0010, Baojun Liu 0002, Zhan Liu, Jia Zhang 0004, Haixin Duan, Min Zhang 0054, Fan Shi 0003, Chengxi Xu
USENIX Security Symposium 2024
PDF Link
Uncovering Security Vulnerabilities in Real-world Implementation and Deployment of 5G Messaging Services
Yaru Yang, Yiming Zhang 0009, Tao Wan 0004, Chuhan Wang 0001, Haixin Duan, Jianjun Chen 0005, Yishen Li
ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec) 2024
PDF DOI
A Worldwide View on the Reachability of Encrypted DNS Services
Ruixuan Li 0008, Baojun Liu 0002, Chaoyi Lu, Haixin Duan, Jun Shao 0001
The Web Conference (WWW) 2024
PDF DOI
From Promises to Practice: Evaluating the Private Browsing Modes of Android Browser Apps
Xiaoyin Liu, Wenzhi Li, Qinsheng Hou, Shishuai Yang, Lingyun Ying, Wenrui Diao, Yanan Li, Shanqing Guo, Haixin Duan
The Web Conference (WWW) 2024
PDF DOI
An Empirical Study of Open Edge Computing Platforms: Ecosystem, Usage, and Security Risks
Yu Bi, Mingshuo Yang, Yong Fang, Xianghang Mi, Shanqing Guo, Shujun Tang, Haixin Duan
arXiv preprint (CoRR) 2024
DOI
PowerPeeler: A Precise and General Dynamic Deobfuscation Method for PowerShell Scripts
Ruijie Li, Chenyang Zhang, Huajun Chai, Lingyun Ying, Haixin Duan, Jun Tao 0003
arXiv preprint (CoRR) 2024
PDF DOI
Revealing the Black Box of Device Search Engine: Scanning Assets, Strategies, and Ethical Consideration
Mengying Wu, Geng Hong, Jinsong Chen, Qi Liu, Shujun Tang, Youhao Li, Baojun Liu 0002, Haixin Duan, Min Yang 0002
arXiv preprint (CoRR) 2024
DOI
Detecting and Measuring Security Risks of Hosting-Based Dangling Domains
Mingming Zhang 0010, Xiang Li 0108, Baojun Liu 0002, Jianyu Lu, Yiming Zhang 0009, Jianjun Chen 0005, Haixin Duan, Shuang Hao 0001, Xiaofeng Zheng
Proceedings of the ACM on Measurement and Analysis of Computing Systems (SIGMETRICS/IMC) 2023
PDF DOI
Automatic Generation of Adversarial Readable Chinese Texts
Mingxuan Liu 0006, Zihan Zhang, Yiming Zhang 0009, Chao Zhang 0008, Zhou Li 0001, Qi Li 0002, Haixin Duan, Donghong Sun
IEEE Transactions on Dependable and Secure Computing 2023
DOI
TAICHI: Transform Your Secret Exploits Into Mine From a Victim's Perspective
Zhongyu Pei, Xingman Chen, Songtao Yang, Haixin Duan, Chao Zhang 0008
IEEE Transactions on Dependable and Secure Computing 2023
DOI
Can We Trust the Phone Vendors? Comprehensive Security Measurements on the Android Firmware Ecosystem
Qinsheng Hou, Wenrui Diao, Yanhao Wang, Chenglin Mao, Lingyun Ying, Song Liu, Xiaofeng Liu 0013, Yuanzhi Li, Shanqing Guo, Meining Nie, Haixin Duan
IEEE Transactions on Software Engineering 2023
PDF DOI
Silence is not Golden: Disrupting the Load Balancing of Authoritative DNS Servers
Fenglu Zhang, Baojun Liu 0002, Eihal Alowaisheq, Jianjun Chen 0005, Chaoyi Lu, Linjian Song, Yong Ma, Ying Liu 0024, Haixin Duan, Min Yang 0002
ACM Turing Celebration Conference - China (ACM TUR-C) 2023
PDF DOI
Silence is not Golden: Disrupting the Load Balancing of Authoritative DNS Servers
Fenglu Zhang, Baojun Liu 0002, Eihal Alowaisheq, Jianjun Chen 0005, Chaoyi Lu, Linjian Song, Yong Ma, Ying Liu 0024, Haixin Duan, Min Yang 0002
ACM Conference on Computer and Communications Security (CCS) 2023
PDF DOI
TsuKing: Coordinating DNS Resolvers and Queries into Potent DoS Amplifiers
Wei Xu, Xiang Li 0108, Chaoyi Lu, Baojun Liu 0002, Haixin Duan, Jia Zhang 0004, Jianjun Chen 0005, Tao Wan 0004
ACM Conference on Computer and Communications Security (CCS) 2023
PDF DOI
Under the Dark: A Systematical Study of Stealthy Mining Pools (Ab)use in the Wild
Zhenrui Zhang, Geng Hong, Xiang Li 0108, Zhuoqun Fu, Jia Zhang 0004, Mingxuan Liu 0006, Chuhan Wang 0001, Jianjun Chen 0005, Baojun Liu 0002, Haixin Duan, Chao Zhang 0008, Min Yang 0002
ACM Conference on Computer and Communications Security (CCS) 2023
PDF DOI
Stolen Risks of Models with Security Properties
Yue Qin, Zhuoqun Fu, Chuyun Deng, Xiaojing Liao, Jia Zhang 0004, Haixin Duan
ACM Conference on Computer and Communications Security (CCS) 2023
PDF DOI
Wolf in Sheep's Clothing: Evaluating Security Risks of the Undelegated Record on DNS Hosting Services
Fenglu Zhang, Yunyi Zhang, Baojun Liu 0002, Eihal Alowaisheq, Lingyun Ying, Xiang Li 0108, Zaifeng Zhang, Ying Liu 0024, Haixin Duan, Min Zhang 0054
ACM Internet Measurement Conference (IMC) 2023
PDF DOI
A Security Study about Electron Applications and a Programming Methodology to Tame DOM Functionalities
Zihao Jin, Shuo Chen 0001, Yang Chen, Haixin Duan, Jianjun Chen 0005, Jianping Wu
Network and Distributed System Security Symposium (NDSS) 2023
PDF Link
Ghost Domain Reloaded: Vulnerable Links in Domain Name Delegation and Revocation
Xiang Li 0108, Baojun Liu 0002, Xuesong Bai, Mingming Zhang 0010, Qifan Zhang 0002, Zhou Li 0001, Haixin Duan, Qi Li 0002
Network and Distributed System Security Symposium (NDSS) 2023
PDF Link
Detecting and Measuring Security Risks of Hosting-Based Dangling Domains
Mingming Zhang 0010, Xiang Li 0108, Baojun Liu 0002, Jianyu Lu, Yiming Zhang 0009, Jianjun Chen 0005, Haixin Duan, Shuang Hao 0001, Xiaofeng Zheng
ACM SIGMETRICS Conference 2023
PDF DOI
Continuous Intrusion: Characterizing the Security of Continuous Integration Services
Yacong Gu, Lingyun Ying, Huajun Chai, Chu Qiao, Haixin Duan, Xing Gao 0001
IEEE Symposium on Security and Privacy (S&P) 2023
PDF DOI
Investigating Package Related Security Threats in Software Registries
Yacong Gu, Lingyun Ying, Yingyuan Pu, Xiao Hu, Huajun Chai, Ruimin Wang, Xing Gao 0001, Haixin Duan
IEEE Symposium on Security and Privacy (S&P) 2023
PDF DOI
MTSan: A Feasible and Practical Memory Sanitizer for Fuzzing COTS Binaries
Xingman Chen, Yinghao Shi, Zheyu Jiang, Yuan Li 0061, Ruoyu Wang 0001, Haixin Duan, Haoyu Wang 0001, Chao Zhang 0008
USENIX Security Symposium 2023
PDF Link
The Maginot Line: Attacking the Boundary of DNS Caching Protection
Xiang Li 0108, Chaoyi Lu, Baojun Liu 0002, Qifan Zhang 0002, Zhou Li 0001, Haixin Duan, Qi Li 0002
USENIX Security Symposium 2023
PDF Link
Temporal CDN-Convex Lens: A CDN-Assisted Practical Pulsing DDoS Attack
Run Guo, Jianjun Chen 0005, Yihang Wang, Keran Mu, Baojun Liu 0002, Xiang Li 0108, Chao Zhang 0008, Haixin Duan, Jianping Wu
USENIX Security Symposium 2023
PDF Link
ResolverFuzz: Automated Discovery of DNS Resolver Vulnerabilities with Query-Response Fuzzing
Qifan Zhang 0002, Xuesong Bai, Xiang Li 0108, Haixin Duan, Qi Li 0002, Zhou Li 0001
arXiv preprint (CoRR) 2023
DOI
SFuzz: Slice-based Fuzzing for Real-Time Operating Systems
Libo Chen 0001, Quanpu Cai, Zhenbang Ma, Yanhao Wang, Hong Hu 0004, Minghang Shen, Yue Liu, Shanqing Guo, Haixin Duan, Kaida Jiang, Zhi Xue
ACM Conference on Computer and Communications Security (CCS) 2022
PDF DOI
An Extensive Study of Residential Proxies in China
Mingshuo Yang, Yunnan Yu, Xianghang Mi, Shujun Tang, Shanqing Guo, Yilin Li, Xiaofeng Zheng, Haixin Duan
ACM Conference on Computer and Communications Security (CCS) 2022
PDF DOI
HDiff: A Semi-automatic Framework for Discovering Semantic Gap Attack in HTTP Implementations
Kaiwen Shen, Jianyu Lu, Yaru Yang, Jianjun Chen 0005, Mingming Zhang 0010, Haixin Duan, Jia Zhang 0004, Xiaofeng Zheng
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2022
PDF DOI
Invoke-Deobfuscation: AST-Based and Semantics-Preserving Deobfuscation for PowerShell Scripts
Huajun Chai, Lingyun Ying, Haixin Duan, Daren Zha
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2022
PDF DOI
Exploring the Characteristics and Security Risks of Emerging Emoji Domain Names
Mingxuan Liu 0006, Yiming Zhang 0009, Baojun Liu 0002, Haixin Duan
European Symposium on Research in Computer Security (ESORICS) 2022
PDF DOI
Trampoline Over the Air: Breaking in IoT Devices Through MQTT Brokers
Huikai Xu, Miao Yu, Yanhao Wang, Yue Liu, Qinsheng Hou, Zhenbang Ma, Haixin Duan, Jianwei Zhuge, Baojun Liu 0002
IEEE European Symposium on Security and Privacy (EuroS&P) 2022
PDF DOI
Ethics in Security Research: Visions, Reality, and Paths Forward
Yiming Zhang 0009, Mingxuan Liu 0006, Mingming Zhang 0010, Chaoyi Lu, Haixin Duan
IEEE European Symposium on Security and Privacy Workshops 2022
PDF DOI
Large-scale Security Measurements on the Android Firmware Ecosystem
Qinsheng Hou, Wenrui Diao, Yanhao Wang, Xiaofeng Liu 0013, Song Liu, Lingyun Ying, Shanqing Guo, Yuanzhi Li, Meining Nie, Haixin Duan
IEEE/ACM International Conference on Software Engineering (ICSE) 2022
PDF DOI
ValCAT: Variable-Length Contextualized Adversarial Transformations Using Encoder-Decoder Language Model
Chuyun Deng, Mingxuan Liu 0006, Yue Qin, Jia Zhang 0004, Hai-Xin Duan, Donghong Sun
Annual Conference of the North American Chapter of the ACL (NAACL-HLT) 2022
DOI
PMTUD is not Panacea: Revisiting IP Fragmentation Attacks against TCP
Xuewei Feng, Qi Li 0002, Kun Sun 0001, Ke Xu 0002, Baojun Liu 0002, Xiaofeng Zheng, Qiushi Yang, Haixin Duan, Zhiyun Qian
Network and Distributed System Security Symposium (NDSS) 2022
PDF Link
Measuring the Practical Effect of DNS Root Server Instances: A China-Wide Case Study
Fenglu Zhang, Chaoyi Lu, Baojun Liu 0002, Haixin Duan, Ying Liu 0024
Passive and Active Measurement Conference (PAM) 2022
PDF DOI
Encrypted Malware Traffic Detection via Graph-based Network Analysis
Zhuoqun Fu, Mingxuan Liu 0006, Yue Qin, Jia Zhang 0004, Yuan Zou, Qilei Yin, Qi Li 0002, Haixin Duan
International Symposium on Research in Attacks, Intrusions and Defenses (RAID) 2022
PDF DOI
Timing-Based Browsing Privacy Vulnerabilities Via Site Isolation
Zihao Jin, Ziqiao Kong, Shuo Chen 0001, Haixin Duan
IEEE Symposium on Security and Privacy (S&P) 2022
PDF DOI
Analyzing Ground-Truth Data of Mobile Gambling Scams
Geng Hong, Zhemin Yang, Sen Yang 0011, Xiaojing Liao, Xiaolin Du, Min Yang 0002, Haixin Duan
IEEE Symposium on Security and Privacy (S&P) 2022
PDF DOI
Exploit the Last Straw That Breaks Android Systems
Lei Zhang 0096, Keke Lian, Haoyu Xiao, Zhibo Zhang 0006, Peng Liu 0005, Yuan Zhang 0009, Min Yang 0002, Haixin Duan
IEEE Symposium on Security and Privacy (S&P) 2022
PDF DOI
Building an Open, Robust, and Stable Voting-Based Domain Top List
Qinge Xie, Shujun Tang, Xiaofeng Zheng, Qingran Lin, Baojun Liu 0002, Haixin Duan, Frank Li 0001
USENIX Security Symposium 2022
PDF Link
A Large-scale and Longitudinal Measurement Study of DKIM Deployment
Chuhan Wang 0001, Kaiwen Shen, Minglei Guo, Yuxuan Zhao, Mingming Zhang 0010, Jianjun Chen 0005, Baojun Liu 0002, Xiaofeng Zheng, Haixin Duan, Yanzhong Lin, Qingfeng Pan
USENIX Security Symposium 2022
PDF Link
Measuring the Deployment of 5G Security Enhancement
Shiyue Nie, Yiming Zhang 0009, Tao Wan 0004, Haixin Duan, Song Li
ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec) 2022
PDF DOI
An Extensive Study of Residential Proxies in China
Mingshuo Yang, Yunnan Yu, Xianghang Mi, Shujun Tang, Shanqing Guo, Yilin Li, Xiaofeng Zheng, Haixin Duan
arXiv preprint (CoRR) 2022
PDF DOI
Detecting and Characterizing SMS Spearphishing Attacks
Mingxuan Liu 0006, Yiming Zhang 0009, Baojun Liu 0002, Zhou Li 0001, Haixin Duan, Donghong Sun
Annual Computer Security Applications Conference (ACSAC) 2021
PDF DOI
Rusted Anchors: A National Client-Side View of Hidden Root CAs in the Web PKI Ecosystem
Yiming Zhang 0009, Baojun Liu 0002, Chaoyi Lu, Zhou Li 0001, Haixin Duan, Jiachen Li, Zaifeng Zhang
ACM Conference on Computer and Communications Security (CCS) 2021
PDF DOI
Fast IPv6 Network Periphery Discovery and Security Implications
Xiang Li 0108, Baojun Liu 0002, Xiaofeng Zheng, Haixin Duan, Qi Li 0002, Youjun Huang
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2021
PDF DOI
Mingling of Clear and Muddy Water: Understanding and Detecting Semantic Confusion in Blackhat SEO
Hao Yang, Kun Du, Yubao Zhang, Shuai Hao 0001, Haining Wang 0001, Jia Zhang 0004, Haixin Duan
European Symposium on Research in Computer Security (ESORICS) 2021
PDF DOI
On Evaluating Delegated Digital Signing of Broadcasting Messages in 5G
Hui Gao, Yiming Zhang 0009, Tao Wan 0004, Jia Zhang 0004, Haixin Duan
IEEE Global Communications Conference (GLOBECOM) 2021
PDF DOI
From WHOIS to WHOWAS: A Large-Scale Measurement Study of Domain Registration Privacy under the GDPR
Chaoyi Lu, Baojun Liu 0002, Yiming Zhang 0009, Zhou Li 0001, Fenglu Zhang, Haixin Duan, Ying Liu 0024, Joann Qiongna Chen, Jinjin Liang, Zaifeng Zhang, Shuang Hao 0001, Min Yang 0002
Network and Distributed System Security Symposium (NDSS) 2021
PDF Link
Sharing More and Checking Less: Leveraging Common Input Keywords to Detect Bugs in Embedded Systems
Libo Chen 0001, Yanhao Wang, Quanpu Cai, Yunfan Zhan, Hong Hu 0004, Jiaqi Linghu, Qinsheng Hou, Chao Zhang 0008, Haixin Duan, Zhi Xue
USENIX Security Symposium 2021
PDF Link
Weak Links in Authentication Chains: A Large-scale Analysis of Email Sender Spoofing Attacks
Kaiwen Shen, Chuhan Wang 0001, Minglei Guo, Xiaofeng Zheng, Chaoyi Lu, Baojun Liu 0002, Yuxuan Zhao, Shuang Hao 0001, Haixin Duan, Qingfeng Pan, Min Yang 0002
USENIX Security Symposium 2021
PDF Link
Characterizing Transnational Internet Performance and the Great Bottleneck of China
Pengxiong Zhu, Keyu Man, Zhongjie Wang 0002, Zhiyun Qian, Roya Ensafi, J. Alex Halderman, Hai-Xin Duan
Proceedings of the ACM on Measurement and Analysis of Computing Systems (SIGMETRICS/IMC) 2020
DOI
Understanding Promotion-as-a-Service on GitHub
Kun Du, Hao Yang, Yubao Zhang, Haixin Duan, Haining Wang 0001, Shuang Hao 0001, Zhou Li 0001, Min Yang 0002
Annual Computer Security Applications Conference (ACSAC) 2020
PDF DOI
Lies in the Air: Characterizing Fake-base-station Spam Ecosystem in China
Yiming Zhang 0009, Baojun Liu 0002, Chaoyi Lu, Zhou Li 0001, Haixin Duan, Shuang Hao 0001, Mingxuan Liu 0006, Ying Liu 0024, Dong Wang, Qiang Li
ACM Conference on Computer and Communications Security (CCS) 2020
PDF DOI
DNS Cache Poisoning Attack Reloaded: Revolutions with Side Channels
Keyu Man, Zhiyun Qian, Zhongjie Wang 0002, Xiaofeng Zheng, Youjun Huang, Haixin Duan
ACM Conference on Computer and Communications Security (CCS) 2020
PDF DOI
Talking with Familiar Strangers: An Empirical Study on HTTPS Context Confusion Attacks
Mingming Zhang 0010, Xiaofeng Zheng, Kaiwen Shen, Ziqiao Kong, Chaoyi Lu, Yu Wang 0288, Haixin Duan, Shuang Hao 0001, Baojun Liu 0002, Min Yang 0002
ACM Conference on Computer and Communications Security (CCS) 2020
PDF DOI
CDN Backfired: Amplification Attacks Based on HTTP Range Requests
Weizhong Li, Kaiwen Shen, Run Guo, Baojun Liu 0002, Jia Zhang 0004, Haixin Duan, Shuang Hao 0001, Xiarun Chen, Yao Wang
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2020
PDF DOI
Argot: Generating Adversarial Readable Chinese Texts
Zihan Zhang, Mingxuan Liu 0006, Chao Zhang 0008, Yiming Zhang 0009, Zhou Li 0001, Qi Li 0002, Haixin Duan, Donghong Sun
International Joint Conference on Artificial Intelligence (IJCAI) 2020
DOI
CDN Judo: Breaking the CDN DoS Protection with Itself
Run Guo, Weizhong Li, Baojun Liu 0002, Shuang Hao 0001, Jia Zhang 0004, Haixin Duan, Kaiwen Shen, Jianjun Chen 0005, Ying Liu 0024
Network and Distributed System Security Symposium (NDSS) 2020
PDF Link
Characterizing Transnational Internet Performance and the Great Bottleneck of China
Pengxiong Zhu, Keyu Man, Zhongjie Wang 0002, Zhiyun Qian, Roya Ensafi, J. Alex Halderman, Hai-Xin Duan
ACM SIGMETRICS Conference 2020
DOI
TextExerciser: Feedback-driven Text Input Exercising for Android Applications
Yuyu He, Lei Zhang 0096, Zhemin Yang, Yinzhi Cao, Keke Lian, Shuai Li 0006, Wei Yang 0013, Zhibo Zhang 0006, Min Yang 0002, Yuan Zhang 0009, Haixin Duan
IEEE Symposium on Security and Privacy (S&P) 2020
PDF DOI
Poison Over Troubled Forwarders: A Cache Poisoning Attack Targeting DNS Forwarding Devices
Xiaofeng Zheng, Chaoyi Lu, Jian Peng, Qiushi Yang, Dongjie Zhou, Baojun Liu 0002, Keyu Man, Shuang Hao 0001, Haixin Duan, Zhiyun Qian
USENIX Security Symposium 2020
PDF Link
Weak Links in Authentication Chains: A Large-scale Analysis of Email Sender Spoofing Attacks
Kaiwen Shen, Chuhan Wang 0001, Minglei Guo, Xiaofeng Zheng, Chaoyi Lu, Baojun Liu 0002, Yuxuan Zhao, Shuang Hao 0001, Haixin Duan, Qingfeng Pan, Min Yang 0002
arXiv preprint (CoRR) 2020
PDF Link
Finding the best answer: measuring the optimization of public and authoritative DNS
Jia Zhang 0004, Hai-Xin Duan, Jian Jiang 0002, Jinjin Liang, Jianping Wu
Science China Information Sciences 2019
DOI
Casino royale: a deep exploration of illegal online gambling
Hao Yang, Kun Du, Yubao Zhang, Shuang Hao 0001, Zhou Li 0001, Mingxuan Liu 0006, Haining Wang 0001, Hai-Xin Duan, Yazhou Shi, XiaoDong Su, Guang Liu, Zhifeng Geng, Jianping Wu
Annual Computer Security Applications Conference (ACSAC) 2019
PDF DOI
Who is answering my queries: understanding and characterizing interception of the DNS resolution path
Baojun Liu 0002, Chaoyi Lu, Hai-Xin Duan, Ying Liu 0024, Zhou Li 0001, Shuang Hao 0001, Min Yang 0002
ACM/IRTF Applied Networking Research Workshop (ANRW) 2019
DOI
TraffickStop: Detecting and Measuring Illicit Traffic Monetization Through Large-Scale DNS Analysis
Baojun Liu 0002, Zhou Li 0001, Peiyuan Zong, Chaoyi Lu, Hai-Xin Duan, Ying Liu 0024, Sumayah A. Alrwais, XiaoFeng Wang 0001, Shuang Hao 0001, Yaoqi Jia, Yiming Zhang 0009, Kai Chen 0012, Zaifeng Zhang
IEEE European Symposium on Security and Privacy (EuroS&P) 2019
PDF DOI
NETHCF: Enabling Line-rate and Adaptive Spoofed IP Traffic Filtering
Guanyu Li, Menghao Zhang 0001, Chang Liu 0021, Xiao Kong, Ang Chen 0001, Guofei Gu, Haixin Duan
IEEE International Conference on Network Protocols (ICNP) 2019
DOI
An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come?
Chaoyi Lu, Baojun Liu 0002, Zhou Li 0001, Shuang Hao 0001, Hai-Xin Duan, Mingming Zhang 0010, Chunying Leng, Ying Liu 0024, Zaifeng Zhang, Jianping Wu
ACM Internet Measurement Conference (IMC) 2019
PDF DOI
TL;DR Hazard: A Comprehensive Study of Levelsquatting Scams
Kun Du, Hao Yang, Zhou Li 0001, Hai-Xin Duan, Shuang Hao 0001, Baojun Liu 0002, Yuxiao Ye, Mingxuan Liu 0006, XiaoDong Su, Guang Liu, Zhifeng Geng, Zaifeng Zhang, Jinjin Liang
International Conference on Security and Privacy in Communication Networks (SecureComm) 2019
DOI
Fuzzing IPC with Knowledge Inference
Kun Yang, Hanqing Zhao, Chao Zhang 0008, Jianwei Zhuge, Haixin Duan
IEEE International Symposium on Reliable Distributed Systems (SRDS) 2019
DOI
How You Get Shot in the Back: A Systematical Study about Cryptojacking in the Real World
Geng Hong, Zhemin Yang, Sen Yang 0011, Lei Zhang 0096, Yuhong Nan, Zhibo Zhang 0006, Min Yang 0002, Yuan Zhang 0009, Zhiyun Qian, Hai-Xin Duan
ACM Conference on Computer and Communications Security (CCS) 2018
PDF DOI
Path Leaks of HTTPS Side-Channel by Cookie Injection
Fuqing Chen, Hai-Xin Duan, Xiaofeng Zheng, Jian Jiang 0002, Jianjun Chen 0005
Constructive Side-Channel Analysis and Secure Design (COSADE) 2018
DOI
A Reexamination of Internationalized Domain Names: The Good, the Bad and the Ugly
Baojun Liu 0002, Chaoyi Lu, Zhou Li 0001, Ying Liu 0024, Hai-Xin Duan, Shuang Hao 0001, Zaifeng Zhang
IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2018
PDF DOI
Analysis and Measurement of Zone Dependency in the Domain Name System
Jian Jiang 0002, Jia Zhang 0004, Hai-Xin Duan, Kang Li 0001, Wu Liu
IEEE International Conference on Communications (ICC) 2018
PDF DOI
ICUFuzzer: Fuzzing ICU Library for Exploitable Bugs in Multiple Software
Kun Yang, Yuan Deng, Chao Zhang 0008, Jianwei Zhuge, Hai-Xin Duan
Information Security Conference (ISC) 2018
DOI
Abusing CDNs for Fun and Profit: Security Issues in CDNs' Origin Validation
Run Guo, Jianjun Chen 0005, Baojun Liu 0002, Jia Zhang 0004, Chao Zhang 0008, Hai-Xin Duan, Tao Wan 0004, Jian Jiang 0002, Shuang Hao 0001, Yaoqi Jia
IEEE International Symposium on Reliable Distributed Systems (SRDS) 2018
DOI
We Still Don't Have Secure Cross-Domain Requests: an Empirical Study of CORS
Jianjun Chen 0005, Jian Jiang 0002, Hai-Xin Duan, Tao Wan 0004, Shuo Chen 0001, Vern Paxson, Min Yang 0002
USENIX Security Symposium 2018
PDF Link
Who Is Answering My Queries: Understanding and Characterizing Interception of the DNS Resolution Path
Baojun Liu 0002, Chaoyi Lu, Hai-Xin Duan, Ying Liu 0024, Zhou Li 0001, Shuang Hao 0001, Min Yang 0002
USENIX Security Symposium 2018
PDF Link
Measuring Privacy Threats in China-Wide Mobile Networks
Mingming Zhang 0010, Baojun Liu 0002, Chaoyi Lu, Jia Zhang 0004, Shuang Hao 0001, Hai-Xin Duan
USENIX Free and Open Communications on the Internet Workshop (FOCI) 2018
PDF Link
An Empirical Study of Web Resource Manipulation in Real-world Mobile Applications
Xiaohan Zhang 0001, Yuan Zhang 0009, Qianqian Mo, Hao Xia, Zhemin Yang, Min Yang 0002, Xiaofeng Wang 0006, Long Lu, Hai-Xin Duan
USENIX Security Symposium 2018
PDF Link
Don't Let One Rotten Apple Spoil the Whole Barrel: Towards Automated Detection of Shadowed Domains
Daiping Liu, Zhou Li 0001, Kun Du, Haining Wang 0001, Baojun Liu 0002, Hai-Xin Duan
ACM Conference on Computer and Communications Security (CCS) 2017
PDF DOI
How to Notify a Vulnerability to the Right Person? Case Study: In an ISP Scope
Jia Zhang 0004, Hai-Xin Duan, Wu Liu, Xingkun Yao
IEEE Global Communications Conference (GLOBECOM) 2017
DOI
How to Learn Klingon without a Dictionary: Detection and Measurement of Black Keywords Used by the Underground Economy
Hao Yang, Xiulin Ma, Kun Du, Zhou Li 0001, Hai-Xin Duan, XiaoDong Su, Guang Liu, Zhifeng Geng, Jianping Wu
IEEE Symposium on Security and Privacy (S&P) 2017
PDF DOI
An accurate distributed scheme for detection of prefix interception
Song Li, Hai-Xin Duan, Zhiliang Wang, Jinjin Liang, Xing Li 0001
Science China Information Sciences 2016
DOI
MAF-SAM: An effective method to perceive data plane threats of inter domain routing system
Yi Guo, Hai-Xin Duan, Jikun Chen, Fu Miao
Computer Networks 2016
DOI
Reexamining DNS From a Global Recursive Resolver Perspective
Hongyu Gao, Vinod Yegneswaran, Jian Jiang 0002, Yan Chen 0004, Phillip A. Porras, Shalini Ghosh, Hai-Xin Duan
IEEE/ACM Transactions on Networking 2016
DOI
What You See Isn't Always What You Get: A Measurement Study of Usage Fraud on Android Apps
Wei Liu, Yueqian Zhang, Zhou Li 0001, Hai-Xin Duan
Workshop on Security and Privacy in Smartphones and Mobile Devices (SPSM@CCS) 2016
Link
Host of Troubles: Multiple Host Ambiguities in HTTP Implementations
Jianjun Chen 0005, Jian Jiang 0002, Hai-Xin Duan, Nicholas Weaver, Tao Wan 0004, Vern Paxson
ACM Conference on Computer and Communications Security (CCS) 2016
PDF DOI
Forwarding-Loop Attacks in Content Delivery Networks
Jianjun Chen 0005, Xiaofeng Zheng, Hai-Xin Duan, Jinjin Liang, Jian Jiang 0002, Kang Li 0001, Tao Wan 0004, Vern Paxson
Network and Distributed System Security Symposium (NDSS) 2016
PDF Link
Seeking Nonsense, Looking for Trouble: Efficient Promotional-Infection Detection through Semantic Inconsistency Search
Xiaojing Liao, Kan Yuan, XiaoFeng Wang 0001, Zhongyu Pei, Hao Yang, Jianjun Chen 0005, Hai-Xin Duan, Kun Du, Eihal Alowaisheq, Sumayah A. Alrwais, Luyi Xing, Raheem A. Beyah
IEEE Symposium on Security and Privacy (S&P) 2016
PDF DOI
The Ever-Changing Labyrinth: A Large-Scale Analysis of Wildcard DNS Powered Blackhat SEO
Kun Du, Hao Yang, Zhou Li 0001, Hai-Xin Duan, Kehuan Zhang
USENIX Security Symposium 2016
PDF Link
Route Leaks Identification by Detecting Routing Loops
Song Li, Hai-Xin Duan, Zhiliang Wang, Xing Li 0001
International Conference on Security and Privacy in Communication Networks (SecureComm) 2015
DOI
Cookies Lack Integrity: Real-World Implications
Xiaofeng Zheng, Jian Jiang 0002, Jinjin Liang, Hai-Xin Duan, Shuo Chen 0001, Tao Wan 0004, Nicholas Weaver
USENIX Security Symposium 2015
PDF Link
IntentFuzzer: detecting capability leaks of android applications
Kun Yang, Jianwei Zhuge, Yongke Wang, Lujue Zhou, Hai-Xin Duan
ACM Asia Conference on Computer and Communications Security (AsiaCCS) 2014
PDF DOI
When HTTPS Meets CDN: A Case of Authentication in Delegated Service
Jinjin Liang, Jian Jiang 0002, Hai-Xin Duan, Kang Li 0001, Tao Wan 0004, Jianping Wu
IEEE Symposium on Security and Privacy (S&P) 2014
PDF DOI
Measuring Query Latency of Top Level DNS Servers
Jinjin Liang, Jian Jiang 0002, Hai-Xin Duan, Kang Li 0001, Jianping Wu
Passive and Active Measurement Conference (PAM) 2013
PDF DOI
An empirical reexamination of global DNS behavior
Hongyu Gao, Vinod Yegneswaran, Yan Chen 0004, Phillip A. Porras, Shalini Ghosh, Jian Jiang 0002, Hai-Xin Duan
ACM SIGCOMM Conference 2013
PDF DOI
Research on the Anti-attack Design Principles of Low-Latency Anonymous Communication
Ming Zheng, Jianping Wu, Hai-Xin Duan
IEEE International Conference on Trust, Security and Privacy in Computing (TrustCom) 2013
DOI
Ghost Domain Names: Revoked Yet Still Resolvable
Jian Jiang 0002, Jinjin Liang, Kang Li 0001, Jun Li 0001, Hai-Xin Duan, Jianping Wu
Network and Distributed System Security Symposium (NDSS) 2012
PDF Link
Anonymity analysis of P2P anonymous communication systems
Jia Zhang 0004, Hai-Xin Duan, Wu Liu, Jianping Wu
Computer Communications 2011
DOI
A federated identity management system with centralized trust and unified Single Sign-On
Jian Jiang 0002, Hai-Xin Duan, Tao Lin, Fenglin Qin, Hong Zhang
International Conference on Communications and Networking in China (ChinaCom) 2011
DOI
User cooperation trust model and its application in network security management
Wu Liu, Ping Ren, Ke Liu, Hai-Xin Duan
International Conference on Fuzzy Systems and Knowledge Discovery (FSKD) 2011
DOI
Anonymous Communication over Invisible Mix Rings
Ming Zheng, Hai-Xin Duan, Jianping Wu
International Conference on Algorithms and Architectures for Parallel Processing (ICA3PP) 2011
DOI
Cooperation-Based Trust Model and Its Application in Network Security Management
Wu Liu, Hai-Xin Duan, Ping Ren
International Conference on Algorithms and Architectures for Parallel Processing (ICA3PP) 2011
DOI
Distinguishing the Master to Defend DDoS Attack in Peer-to-Peer Networks
Lei Hou, Hai-Xin Duan, Jianping Wu
CIT 2010
DOI
Analysis of Anonymity in P2P Anonymous Communication Systems
Jia Zhang 0004, Hai-Xin Duan, Wu Liu, Jianping Wu
IEEE International Conference on Advanced Information Networking and Applications Workshops 2010
DOI
IABA: An improved PNN Algorithm for anomaly detection in network security management
Wu Liu, Hai-Xin Duan, Ping Ren, Jianping Wu
International Conference on Computing, Networking and Communications (ICNC) 2010
DOI
WindTalker: A P2P-Based Low-Latency Anonymous Communication Network
Jia Zhang 0004, Hai-Xin Duan, Wu Liu, Jianping Wu
IEICE Transactions on Communications 2009
DOI
Selecting Trust Peers Based on Updated Credit Value in Peer-to-Peer Networks
Lei Hou, Hai-Xin Duan, Jianping Wu
International Conference on Security and Management 2009
RRM: An incentive reputation model for promoting good behaviors in distributed systems
Hong Zhang, Hai-Xin Duan, Wu Liu
Science China Information Sciences 2008
DOI
Dynamic emulation based modeling and detection of polymorphic shellcode at the network level
Lanjia Wang, Hai-Xin Duan, Xing Li 0001
Science China Information Sciences 2008
DOI
Scheduling Peers Based on Credit Construction Period in Peer-to-Peer Networks
Lei Hou, Hai-Xin Duan, Jianping Wu
IEEE International Conference on Parallel and Distributed Systems (ICPADS) 2008
DOI
Attacking Test and Online Forensics in IPv6 Networks
Wu Liu, Hai-Xin Duan, Tao Lin, Xing Li 0001, Jian-Ping Wu
International Conference on IT Security Incident Management and IT Forensics (IMF) 2008
Link
An Admission Control Policy Based on Social Networks for P2P Systems
Yuan Liang, Hai-Xin Duan
International Conference on Web-Age Information Management (WAIM) 2008
DOI
AMCAS: An Automatic Malicious Code Analysis System
Jia Zhang 0004, Yuntao Guan, Xiaoxin Jiang, Hai-Xin Duan, Jianping Wu
International Conference on Web-Age Information Management (WAIM) 2008
DOI
Modeling and analyzing of the interaction between worms and antiworms during network worm propagation
Feng Yang, Hai-Xin Duan, Xing Li 0001
Science China Information Sciences 2005
DOI
Efficient performance estimate for one-class support vector machine
Quang-Anh Tran, Xing Li 0001, Hai-Xin Duan
Pattern Recognition Letters 2005
DOI
An Extensible AAA Infrastructure for IPv6
Hong Zhang, Hai-Xin Duan, Wu Liu, Jianping Wu
International Conference on Computational Intelligence and Security (CIS) 2005
DOI
PDTM: A Policy-Driven Trust Management Framework in Distributed Systems
Wu Liu, Hai-Xin Duan, Jianping Wu, Xing Li 0001
International Conference on Computational Intelligence and Security (CIS) 2005
DOI
New Algorithm Mining Intrusion Patterns
Wu Liu, Jianping Wu, Hai-Xin Duan, Xing Li 0001
International Conference on Fuzzy Systems and Knowledge Discovery (FSKD) 2005
DOI
New Method for Intrusion Features Mining in IDS
Wu Liu, Jianping Wu, Hai-Xin Duan, Xing Li 0001
International Conference on Intelligent Computing (ICIC) 2005
DOI
Port Scan Behavior Diagnosis by Clustering
Lanjia Wang, Hai-Xin Duan, Xing Li 0001
International Conference on Information and Communications Security (ICICS) 2005
DOI
The Authorization Service in Dynamic Trust Domains
Wu Liu, Jianping Wu, Hai-Xin Duan, Xing Li 0001
International Conference on Information Technology and Applications (ICITA) 2005
DOI
Improved Marking Model ERPPM Tracing Back to DDoS Attacker
Wu Liu, Hai-Xin Duan, Jianping Wu, Xing Li 0001
International Conference on Information Technology and Applications (ICITA) 2005
DOI
Anomaly Internet Network Traffic Detection by Kernel Principle Component Classifier
Hanghang Tong, Chongrong Li, Jingrui He, Jiajian Chen, Quang-Anh Tran, Hai-Xin Duan, Xing Li 0001
International Symposium on Neural Networks (ISNN) 2005
DOI
Workflow Oriented Network Management - A Web/Java Approach
Jiahai Yang 0001, Hai-Xin Duan, Jianping Wu, Xing Li 0001
Journal of Network and Systems Management 2004
DOI
XML Based X.509 Authorization in CERNET Grid
Wu Liu, Jianping Wu, Hai-Xin Duan, Xing Li 0001, Ping Ren
International Conference on Grid and Cooperative Computing (GCC) 2004
DOI
Algorithms for Congestion Detection and Control
Wu Liu, Hai-Xin Duan, Jianping Wu, Xing Li 0001, Ping Ren
International Conference on Grid and Cooperative Computing Workshops 2004
DOI
Improved algorithms tracing back to attacking sources
Wu Liu, Hai-Xin Duan, Yong Feng, Yong-Bin Li, Ping Ren
IASTED International Conference on Parallel and Distributed Computing and Networks 2004
Distributed IDS Tracing Back to Attacking Sources
Wu Liu, Hai-Xin Duan, Jianping Wu, Ping Ren, Li-Hua Lu
International Conference on Grid and Cooperative Computing (GCC) 2003
DOI
Policy based access control framework for large networks
Hai-Xin Duan, Jianping Wu, Xing Li 0001
IEEE International Conference on Networks (ICON) 2000
DOI

🏛学术兼职 & 社会服务

学术与政府机构

  • 国务院学位委员会第八届学科评议组成员(2020—)
  • 中国计算机学会 网络与系统安全专委会 秘书长
  • 中国网络空间安全协会 常务理事
  • 中国网络安全产业联盟 理事会成员(2016—)
  • 哈尔滨工业大学(威海)客座教授

期刊编委

  • ACM Transactions on Privacy and Security
    副主编(2020—)

期刊审稿

  • IEEE Transactions on Networking
  • IEEE/ACM Transactions on Networking
  • Journal of Network and Computer Applications

会议程序委员会

  • SecureComm 2023 PC 主席
  • NDSS PC Member(多届)
  • ACM CCS PC Member(多届)
  • USENIX Security PC Member(多届)
  • IEEE S&P PC Member(多届)

学术社区创建

  • InForSec 联合创始人 & 主席(2015—)
    国际网络安全研究论坛
  • XCTF 联合创始人(2016—)
    中国 CTF 赛事体系
  • DataCon 联合创始人(2019—)
    数据安全竞赛与大会