Research
Mobile Secuirty
4G/5G/6G Security
Identifying security threats and vulnerabilities in 5G network slices based on SDN and NFV and develping Security Reasoning framework to support automatic analysis and conformance testing. As a complted project, LTE privacy attacks based on machine learning solutions to identify patterns in the communication of commercial LTE networks and revealing the security hole in Wi-Fi calling.
- Inferring Satellite Network Architectures and Orbital Regimes from End-to-End Traffic, IEEE SPACE 2026
- Harnessing Software-Defined Network for Cyber Deception Modeling and Analysis, NFV-SDN 2025
- Unveiling SDN Controller Identity through Timing Side Channel, NoF2024
- Targeted Privacy Attacks by Fingerprinting Mobile Apps in LTE Radio Layer, DSN2023
- Wi Not Calling: Practical Privacy and Availability Attacks in Wi-Fi Calling, ACSAC2018
Android Secuirty
Developing security-enhanced authorization framework aimed to detect and protect against emerging PendingIntent-based attacks abusing excess privileges for the escalation and unauthorized invoke
- PendingMutent: An Authorization Framework for Preventing PendingIntent Attacks in Android-based Mobile Cyber-Physical Systems, SaT-CPS 2025
- DyPolDroid: Protecting against permission-abuse attacks in Android, Information Systems Frontiers 2022
- MuTent: Dynamic Android Intent Protection with Ownership-Based Key Distribution and Security Contract, HICSS -54, 2021.
Access Management
Zero Trust and Agentic AI
This project funded by NSF (#2613459) and aims to develop "ZT-Agents," which leverage Agentic Artificial Intelligence to automate and simplify the management of Zero Trust-based authorization policies, ultimately enhancing the security and usability of Research Cyberinfrastructure (RCI).
- Towards Agentic AI for Access Control in Cyber-infrastructures: Exploring the Security and Human Factors, SACMAT 2026
Science Access
This project funded by NSF (#2232911) and aims to develop ScienceAccess, a federated framework supporting the storage, retrieval, evaluation, and enforcement of AM-Policies that allows scientists and administrators to manage their resource-sharing needs with a high degree of autonomy.
- It's almost like Frankenstein: Investigating the Complexities of Scientific Collaboration and Privilege Management within Research Computing Infrastructures, , IEEE S&P 2025
- Towards Collaboration-Aware Resource Sharing in Research Computing Infrastructures,, IEEE CIC 2025
Mobile Augmented Rreality
Digital Forensics
Blockchain
Investigating current trends in blockchain and digital CoC, emphasizing the need for a dedicated solution tailored to the unique needs of digital forensics. It elucidates how blockchain can ensure a tamper-proof CoC, fostering trustworthiness and security of digital evidence.
- A Secure Distributed Ledger for Transactive Energy: The Electron Volt Exchange (EVE) Blockchain, Applied Energy Journal, Elsevier, 2021
- Digital Evidence Chain of Custody: Navigating New Realities of Digital Forensics, the 6th IEEE TPS, 2024