Mu Zhang
        
    Postdoctoral Associate, CS, Cornell

    mz496 [at] cornell [dot] edu

    440 Gates Hall, Cornell,
    Ithaca, NY 14853



Portrait of Mu Zhang, 
oil painting by Qing Song


About Me

I am a Postdoctoral Associate in the Department of Computer Science at Cornell University, working with Prof. Elaine Shi. I received my Ph.D. in Computer & Information Science & Engineering from Syracuse University, advised by Prof. Heng YinMy research interests lie in several aspects of Computer Security and I am particularly interested in System Security, Program Analysis, Mobile Security and IoT Security.

Publications 

Books and Book Chapters

  1. Mu Zhang and Heng Yin, "Android Application Security: A Semantics and Context-Aware Approach", SpringerBriefs in Computer Science, September 2016.

Conference and Workshop Papers

  1. Qian Feng, Minghua Wang, Mu Zhang, Rundong Zhou, Andrew Henderson and Heng Yin. "Extracting Conditional Formulas for Cross-Platform Bug Search", to appear in ACM Asia Conference on Computer and Communications Security (ASIACCS'17), April 2017.
  2. Curtis Carmony, Mu Zhang, Xunchao Hu, Abhishek Vasisht Bhaskar and Heng Yin, "Extract Me If You Can: Abusing PDF Parsers in Malware Detectors", appeared in Proceedings of Network and Distributed System Security Symposium (NDSS'16), San Diego, CA, February 2016. (Acceptance Ratio: 15.4%) [PDF]
  3. Mu ZhangYue Duan, Qian Feng and Heng Yin, "Towards Automatic Generation of Security-Centric Descriptions for Android Apps", appeared in Proceedings of the 22nd ACM Conference on Computer and Communications Security (CCS'15), Denver, Colorado, October 2015. (Acceptance Ratio: 19.3%) [PDF][Slides]
  4. Yue Duan, Mu Zhang, Heng Yin and Yuzhe Tang, "Privacy-Preserving Offloading of Mobile App to the Public Cloud", appeared in The 7th USENIX Workshop on Hot Topics in Cloud Computing (HotCloud'15), Santa Clara, CA, July 2015.
  5. Yue Duan, Mu Zhang, Heng Yin and Yuzhe Tang, "Privacy-Preserving Offloading of Mobile App to the Public Cloud", Poster, appeared in 36th IEEE Symposium on Security and Privacy (Oakland'15), San Jose, CA, May 2015.
  6. Mu ZhangYue Duan, Heng Yin and Zhiruo Zhao, "Semantics-Aware Android Malware Classification Using Weighted Contextual API Dependency Graphs", appeared in the 21th ACM Conference on Computer and Communications Security (CCS'14), Scottsdale, Arizona, USA, November 2014. (Acceptance Ratio: 19.5%) [PDF][Slides][Bibtex]
  7. Mu Zhang and Heng Yin, "Efficient, Context-Aware Privacy Leakage Confinement for Android Applications without Firmware Modding", appeared in the 9th ACM Symposium on Information, Computer and Communications Security (ASIACCS'14), Kyoto, Japan, June 2014. (Acceptance Ratio: 19.6%) [PDF][Slides][Bibtex]
  8. Mu Zhang and Heng Yin, "AppSealer: Automatic Generation of Vulnerability-Specific Patches for Preventing Component Hijacking Attacks in Android Applications", appeared in the 21st Annual Network & Distributed System Security Symposium (NDSS'14), San Diego, CA, February 2014. (Acceptance Ratio: 18.6%) [PDF][Slides][Bibtex]
  9. Mu Zhang and Heng Yin, "Transforming and Taming Privacy-Breaching Android Application", appeared in the 20th Annual Network and Distributed System Security Symposium (NDSS'13), Invited Paper, February 2013. [PDF]
  10. Lok-Kwong Yan, Manjukumar Jayachandra, Mu Zhang, and Heng Yin, "V2E: Combining Hardware Virtualization and Software Emulation for Transparent and Extensible Malware Analysis", appeared in the Eighth Annual International Conference on Virtual Execution Environments (VEE'12), March 2012. [PDF]
  11. Lok-Kwong Yan, Manjukumar Jayachandra, Mu Zhang, and Heng Yin, "Transparent and extensible malware analysis by combining hardware virtualization and software emulation",appeared in the 19th Annual Network and Distributed System Security Symposium (NDSS'12), Invited Paper, February 2012. [PDF]

Selected Awards

All University Doctoral Prize, Syracuse University, 2016

Professional Service

Program Committee:
ACM Conference on Computer and Communications Security (CCS) 2017 (Poster Session) 

Journal Reviewer: 
Transactions on Information Forensics and Security
Transactions on Dependable and Secure Computing
Computing and Informatics
Pervasive and Mobile Computing

External Reviewer: 
SecureComm'11, DIMVA'12, SecureComm'12, NDSS'13, IPCCC'13, SecureComm'14, CCS'14, ACSAC'14, SPSM'14, NDSS'15, CSET'15, ACSAC'15, SecureComm'15