||2018 年 12 月 17 日（周一）下午 13:30-15:00
||复旦大学张江校区软件楼 102 室第二会议室
For too long, researchers have often tackled security in an attack-driven, ad hoc, and reactionary manner with large manual efforts devoted by security analysts. In order to make substantial progress in security, I advocate to shift such manner to be systematic, intelligent, and adversarial resilient. I have developed software engineering techniques to automate decision makings in security systems, and built defenses and testing methodologies to guard against emerging attacks specifically adversarial to these newly-proposed techniques. In this talk, I will first highlight one of these systems for mobile security: AppContext, a malware detection system extracting execution contexts of an app’s security-sensitive behaviors through program analysis. Then I will show how an adaptive adversary can attack these systems and how we can generate adversarial inputs ahead of time for testing and further strengthening these systems. I will conclude by discussing how future research efforts can leverage the interplay among software engineering, security, and AI techniques toward a defense-driven security ecosystem.
Wei Yang is an assistant professor in the Department of Computer Science at the University of Texas at Dallas. He received his Ph.D. in Computer Science from the University of Illinois at Urbana-Champaign in 2018, advised by Prof. Carl A. Gunter and Prof. Tao Xie. He received an M.S. in Computer Science from North Carolina State University in 2013, advised by Prof. Tao Xie, and a B.E. in Software Engineering from Shanghai Jiao Tong University in 2011, advised by Prof. Jianjun Zhao. He was a visiting researcher in University of California, Berkeley in 2017, invited by Prof. Dawn Song.