Mu Zhang
        
    Postdoctoral Associate, CS, Cornell

    mz496 [at] cornell [dot] edu

    440 Gates Hall, Cornell,
    Ithaca, NY 14853



Portrait of Mu Zhang, 
oil painting by Qing Song


About Me

I am a Postdoctoral Associate in the Department of Computer Science at Cornell University, working with Prof. Elaine Shi. I received my Ph.D. in Computer & Information Science & Engineering from Syracuse University, advised by Prof. Heng YinMy research interests lie in several aspects of Computer Security and I am particularly interested in System Security, Program Analysis, Mobile Security and IoT Security.

Publications

Books and Book Chapters

  1. Mu Zhang and Heng Yin, "Android Application Security: A Semantics and Context-Aware Approach", SpringerBriefs in Computer Science, September 2016.

Conference and Workshop Papers

  1. [NDSS'18] Yushan Liu*, Mu Zhang*, Ding Li, Kangkook Jee, Zhichun Li, Zhenyu Wu, Junghwan Rhee, Prateek Mittal. "Towards a Timely Causality Analysis for Enterprise Security", to appear in Proceedings of Network and Distributed System Security SymposiumSan Diego, CA, February 2018. *This work was conducted when the first author was an intern at NEC Labs, mentored by me, who was a researcher at NEC. [PDF]
  2. [NDSS'18] Yue Duan, Mu Zhang, Abhishek Vasisht Bhaskar, Heng Yin, Xiaorui Pan, Tongxin Li, Xueqiang Wang, XiaoFeng Wang. "Things You May Not Know About Android (Un)Packers: A Systematic Study based on Whole-System Emulation", to appear in Proceedings of Network and Distributed System Security SymposiumSan Diego, CA, February 2018. [PDF]
  3. [ASIACCS'17] Qian Feng, Minghua Wang, Mu Zhang, Rundong Zhou, Andrew Henderson and Heng Yin. "Extracting Conditional Formulas for Cross-Platform Bug Search", appeared in ACM Asia Conference on Computer and Communications Security, April 2017.
  4. [NDSS'16] Curtis Carmony, Mu Zhang, Xunchao Hu, Abhishek Vasisht Bhaskar and Heng Yin, "Extract Me If You Can: Abusing PDF Parsers in Malware Detectors", appeared in Proceedings of Network and Distributed System Security SymposiumSan Diego, CA, February 2016. (Acceptance Ratio: 15.4%) [PDF]
  5. [CCS'15] Mu ZhangYue Duan, Qian Feng and Heng Yin, "Towards Automatic Generation of Security-Centric Descriptions for Android Apps", appeared in Proceedings of the 22nd ACM Conference on Computer and Communications SecurityDenver, Colorado, October 2015. (Acceptance Ratio: 19.3%) [PDF][Slides]
  6. [HotCloud'15] Yue Duan, Mu Zhang, Heng Yin and Yuzhe Tang, "Privacy-Preserving Offloading of Mobile App to the Public Cloud", appeared in The 7th USENIX Workshop on Hot Topics in Cloud Computing, Santa Clara, CA, July 2015.
  7. [CCS'14] Mu ZhangYue Duan, Heng Yin and Zhiruo Zhao, "Semantics-Aware Android Malware Classification Using Weighted Contextual API Dependency Graphs", appeared in the 21th ACM Conference on Computer and Communications Security, Scottsdale, Arizona, USA, November 2014. (Acceptance Ratio: 19.5%) [PDF][Bibtex]
  8. [ASIACCS'14] Mu Zhang and Heng Yin, "Efficient, Context-Aware Privacy Leakage Confinement for Android Applications without Firmware Modding", appeared in the 9th ACM Symposium on Information, Computer and Communications Security, Kyoto, Japan, June 2014. (Acceptance Ratio: 19.6%) [PDF][Bibtex]
  9. [NDSS'14] Mu Zhang and Heng Yin, "AppSealer: Automatic Generation of Vulnerability-Specific Patches for Preventing Component Hijacking Attacks in Android Applications", appeared in the 21st Annual Network & Distributed System Security Symposium, San Diego, CA, February 2014. (Acceptance Ratio: 18.6%) [PDF][Slides][Bibtex]
  10. [VEE'12] Lok-Kwong Yan, Manjukumar Jayachandra, Mu Zhang, and Heng Yin, "V2E: Combining Hardware Virtualization and Software Emulation for Transparent and Extensible Malware Analysis", appeared in the Eighth Annual International Conference on Virtual Execution Environments, March 2012. [PDF]

Posters and Short Papers

  1. [Oakland'15] Yue Duan, Mu Zhang, Heng Yin and Yuzhe Tang, "Poster: Privacy-Preserving Offloading of Mobile App to the Public Cloud", appeared in the 36th IEEE Symposium on Security and Privacy, Poster, May 2015.
  2. [NDSS'13] Mu Zhang and Heng Yin, "Transforming and Taming Privacy-Breaching Android Application", appeared in the 20th Annual Network and Distributed System Security Symposium, Invited Paper, February 2013. 
  3. [NDSS'12] Lok-Kwong Yan, Manjukumar Jayachandra, Mu Zhang, and Heng Yin, "Transparent and extensible malware analysis by combining hardware virtualization and software emulation",appeared in the 19th Annual Network and Distributed System Security Symposium, Invited Paper, February 2012. 

Selected Awards

All University Doctoral Prize, Syracuse University, 2016

Professional Service

Program Committee:
ACM Conference on Computer and Communications Security (CCS) 2017 (Poster Session) 
International Workshop on Security and Privacy for the Internet-of-Things (IoTSec, co-located with IoTDI) 2018

Journal Reviewer: 
Transactions on Information Forensics and Security
Transactions on Dependable and Secure Computing
Computing and Informatics
Pervasive and Mobile Computing
Security and Communication Networks

External Reviewer: 
SecureComm'11, DIMVA'12, SecureComm'12, NDSS'13, IPCCC'13, SecureComm'14, CCS'14, ACSAC'14, SPSM'14, NDSS'15, CSET'15, ACSAC'15, SecureComm'15