Publications | Long Lu

Reza Mirzazade farkhani, Mansour Ahmadi, Long Lu. PTAuth: Temporal Memory Safety via Robust Points-to Authentication. Proceedings of the 30th USENIX Security Symposium, USENIX Security, 2021.

PDF

Mansour Ahmadi, Reza Mirzazade farkhani, Ryan Williams, Long Lu. Finding Bugs Using Your Own Code: Detecting Functionally-similar yet Inconsistent Code. Proceedings of the 30th USENIX Security Symposium, USENIX Security, 2021.

PDF Code

Alejandro Mera, Bo Feng, Long Lu, Engin Kirda, William Robertson. DICE: Automatic Emulation of DMA Input Channels for Dynamic Firmware Analysis. Proceedings of the 42nd IEEE Symposium on Security and Privacy, S&P/Oakland, 2021.

PDF

Yaohui Chen, Mansour Ahmadi, Reza Mirzazade farkhani, Boyu Wang, Long Lu. MEUZZ: Smart Seed Scheduling for Hybrid Fuzzing. Proceedings of the 23rd International Symposium on Research in Attacks, Intrusions and Defenses, RAID, 2020.

PDF Code

Bo Feng, Alejandro Mera, Long Lu. P2IM: Scalable and Hardware-independent Firmware Testing via Automatic Peripheral Interface Modeling. Proceedings of the 29th USENIX Security Symposium, USENIX Security, 2020.

PDF Code

Yaohui Chen, Peng Li, Jun Xu, Shengjian Guo, Rundong Zhou, Yulong Zhang, Tao Wei, Long Lu. SAVIOR: Towards Bug-Driven Hybrid Testing. Proceedings of the 41st IEEE Symposium on Security and Privacy, S&P/Oakland, 2020.

PDF Code

Zhichuang Sun, Bo Feng, Long Lu, Somesh Jha. OAT: Attesting Operation Integrity of Embedded Devices. Proceedings of the 41st IEEE Symposium on Security and Privacy, S&P/Oakland, 2020.

PDF Code

Stefano Cristalli, Long Lu, Danilo Bruschi, Andrea Lanzi. Detecting (Absent) App-to-app Authentication on Cross-device Short-distance Channels. Proceedings of the 35th Annual Computer Security Applications Conference, ACSAC, 2019.

PDF

Abbas Acar, Long Lu, Uluagac Selcuk, Engin Kirda. An Analysis of Malware Trends in Enterprise Networks. Proceedings of the 22nd Information Security Conference, ISC, 2019.

Heejin Park, Shuang Zhai, Long Lu, Felix Lin. StreamBox-TZ: Secure Stream Analytics at the Edge with TrustZone. Proceedings of the 2019 USENIX Annual Technical Conference, USENIX ATC, 2019.

PDF

Yaohui Chen, Dongliang Mu, Jun Xu, Wenguo Shen, Xinyu Xing, Long Lu. PTrix: Efficient Hardware-Assisted Fuzzing for COTS Binary. Proceedings of the 14th ACM on Asia Conference on Computer and Communications Security, AsiaCCS, 2019.

PDF Code

Wenhao Li, Yubin Xia, Long Lu, Haibo Chen, Binyu Zang. TEEv: Virtualizing Trusted Execution Environments on Mobile Platforms. Proceedings of the 15th ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments, VEE, 2019.

PDF

Xiaohan Zhang, Yuan Zhang, Qianqian Mo, Hao Xia, Min Yang, Xiaofeng Wang, Long Lu, Haixin Duan. An Empirical Study of Web Resource Manipulation in Real-world Mobile Applications. Proceedings of the 27th USENIX Security Symposium, USENIX Security, 2018.

PDF

Wenhao Li, Shiyu Luo, Zhichuang Sun, Yubin Xia, Long Lu, Haibo Chen, Binyu Zang, Haibing Guan. VButton: Practical Attestation of User-driven Operations in Mobile Apps. Proceedings of the 16th ACM International Conference on Mobile Systems, Applications, and Services, MobiSys, 2018.

PDF

Hyungjoon Koo, Yaohui Chen, Long Lu, Vasileios Kemerlis, Michalis Polychronakis. Compiler-assisted Code Randomization and Hardening. Proceedings of the 39th IEEE Symposium on Security and Privacy, S&P/Oakland, 2018.

PDF

Yaohui Chen, Yuping Li, Long Lu, Yueh-Hsun Lin, Hayawardh Vijayakumar, Zhi Wang, Xinming Ou. InstaGuard: Instantly Deployable Hot-patches for Vulnerable System Programs on Android. Proceedings of the 2018 Network and Distributed System Security Symposium, NDSS, 2018.

PDF

Yaohui Chen, Dongli Zhang, Ruowen Wang, Rui Qiao, Ahmed Azab, Long Lu, Hayawardh Vijayakumar, Wenbo Shen. Norax: Enabling Execute-Only Memory for COTS Binaries on AArch64. Proceedings of the 38th IEEE Symposium on Security and Privacy, S&P/Oakland, 2017.

PDF

Drew Davidson, Yaohui Chen, Franklin George, Long Lu, Somesh Jha. Secure Integration of Web Content and Applications on Commodity Mobile Operating Systems. Proceedings of the 12th ACM on Asia Conference on Computer and Communications Security, AsiaCCS, 2017.

PDF

Arash Alavi, Alan Quach, Hang Zhang, Bryan Marsh, Farhan Ul Haq, Zhiyun Qian, Long Lu, Rajiv Gupta. Where is the Weakest Link? A Study on Security Discrepancies between Android Apps and Their Website Counterparts. International Conference on Passive and Active Network Measurement, PAM, 2017.

PDF

Suwen Zhu, Long Lu, Kapil Singh. CASE: Comprehensive Application Security Enforcement on COTS Mobile Devices. Proceedings of the 14th International Conference on Mobile Systems, Applications, and Services, MobiSys, 2016.

PDF DOI

Yaohui Chen, Sebassujeen Reymondjohnson, Zhichuang Sun, Long Lu. Shreds: Fine-grained Execution Units with Private Memory. Proceedings of the 37th IEEE Symposium on Security and Privacy, S&P/Oakland, 2016.

PDF DOI

Yue Chen, Zhi Wang, David Whalley, Long Lu. Remix: On-demand Live Randomization. Proceedings of the 6th ACM Conference on Data and Application Security and Privacy, CODASPY, 2016.

PDF DOI

Christopher Neasbitt, Bo Li, Roberto Perdisci, Long Lu, Kapil Singh, Kang Li. WebCapsule: Towards a Lightweight Forensic Engine for Web Browsers. Proceedings of the 2015 ACM Conference on Computer and Communications Security, CCS, 2015.

PDF DOI

Byoungyoung Lee, Chengyu Song, Yeongjin Jang, Tielei Wang, Taesoo Kim, Long Lu, Wenke Lee. Preventing Use-after-free with Dangling Pointers Nullification. Proceedings of the 2015 Network and Distributed System Security Symposium, NDSS, 2015.

PDF

Kangjie Lu, Zhichun Li, Vasileios Kemerlis, Zhenyu Wu, Long Lu, Cong Zheng, Zhiyun Qian, Wenke Lee, Guofei Jiang. Checking More and Alerting Less: Detecting Privacy Leakages via Enhanced Data-flow Analysis and Peer Voting. Proceedings of the 2015 Network and Distributed System Security Symposium, NDSS, 2015.

PDF

Byoungyoung Lee, Long Lu, Tielei Wang, Taesoo Kim, Wenke Lee. From Zygote to Morula: Fortifying Weakened ASLR on Android. Proceedings of the 35th IEEE Symposium on Security and Privacy, S&P/Oakland, 2014.

PDF DOI

Tielei Wang, Kangjie Lu, Long Lu, Simon Chong, Wenke Lee. Jekyll on iOS: When Benign Apps Become Evil. Proceedings of the 22nd USENIX Security Symposium, USENIX Security, 2013.

PDF

Christian Seifert, Jack W Stokes, Christina Colcernian, John C Platt, Long Lu. Robust Scareware Image Detection. Proceedings of the 38th International Conference on Acoustics, Speech, and Signal Processing, ICASSP, 2012.

Long Lu, Zhichun Li, Zhenyu Wu, Wenke Lee, Guofei Jiang. CHEX: statically vetting Android apps for component hijacking vulnerabilities. Proceedings of the 2012 ACM Conference on Computer and Communications Security, CCS, 2012.

PDF DOI

Long Lu, Roberto Perdisci, Wenke Lee. SURF: detecting and measuring search poisoning. Proceedings of the 18th ACM Conference on Computer and Communications Security, CCS, 2011.

PDF DOI

Long Lu, Vinod Yegneswaran, Phillip Porras, Wenke Lee. BLADE: an attack-agnostic approach for preventing drive-by malware infections. Proceedings of the 17th ACM Conference on Computer and Communications Security, CCS, 2010.

PDF DOI

Martim Carbone, Weidong Cui, Long Lu, Wenke Lee, Marcus Peinado, Xuxian Jiang. Mapping kernel objects to enable systematic integrity checking. Proceedings of the 16th ACM Conference on Computer and Communications Security, CCS, 2009.

PDF DOI