Publications
Publications
ConfigWiz: Automating Privilege Configuration for Containerized Applications [paper]
Mohammad Kavousi, Hui Xue, Yan Chen, Xin Chen, Yunlong Xing, Kun Sun, Therese Schachner, and Zhiheng Tao.
In 22nd EAI International Conference on Security and Privacy in Communication Networks (SecureComm), Lancaster, UK, 2026.
DISPATCH: Unraveling Security Patches from Entangled Code Changes [paper]
Shiyu Sun*, Yunlong Xing*, Xinda Wang, Shu Wang, Qi Li, and Kun Sun.
In 34th USENIX Security Symposium (USENIX Security), Seattle, WA, 2025.
(* indicates equal contribution)
An Empirical Study of Multi-Language Security Patches in Open Source Software [paper]
Shiyu Sun, Yunlong Xing, Grant Zou, Xinda Wang, and Kun Sun.
In 22nd Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA), Austria, 2025.
(Acceptance Rate: 25/114 = 21.9%)
What IF Is Not Enough? Fixing Null Pointer Dereference With Contextual Check [paper]
Yunlong Xing, Shu Wang, Shiyu Sun, Xu He, Kun Sun, and Qi Li.
In 33rd USENIX Security Symposium (USENIX Security), Philadelphia, PA, 2024.
(Acceptance Rate - Summer Review Cycle: 98/515 = 19.0%)
🎖 Top 15 Finalists (among 194 submissions) of CSAW 2024 Applied Research Competition
Poster: Repairing Bugs with the Introduction of New Variables: A Multi-Agent Large Language Model [paper]
Elisa Zhang, Shiyu Sun, Yunlong Xing, and Kun Sun.
ACM Conference on Computer and Communications Security (CCS), Salt Lake City, UT, 2024.
DISPATCH: Entangled Security Patch Unravelment in Open-Source Software
Shiyu Sun, Yunlong Xing, Xinda Wang, and Kun Sun.
CMD-IT/ACM Richard Tapia Conference, San Diego, CA, 2024.
Cross Container Attacks: The Bewildered eBPF on Clouds [paper]
Yi He*, Roland Guo*, Yunlong Xing, Xijia Che, Kun Sun, Zhuotao Liu, Ke Xu, and Qi Li.
In 32nd USENIX Security Symposium (USENIX Security), Anaheim, CA, 2023.
(Acceptance Rate - Fall Review Cycle: 155/531 = 29.2%)
Exploring Security Commits in Python [paper]
Shiyu Sun, Shu Wang, Xinda Wang, Yunlong Xing, Elisa Zhang, and Kun Sun.
IEEE International Conference on Software Maintenance and Evolution (ICSME), Bogotá, Colombia, 2023.
(Acceptance Rate: 27/119 = 22.7%)
A Hybrid System Call Profiling Approach for Container Protection [paper]
Yunlong Xing*, Xinda Wang*, Sadegh Torabi, Zeyu Zhang, Lingguang Lei, and Kun Sun.
IEEE Transactions on Dependable and Secure Computing (TDSC), 2023.
(* indicates equal contribution) (Impact Factor: 7 as 2023)
SysCap: Profiling and Crosschecking Syscall and Capability Configurations for Docker Images [paper]
Yunlong Xing, Jiahao Cao, Xinda Wang, Sadegh Torabi, Kun Sun, Fei Yan, and Qi Li.
IEEE Conference on Communications and Network Security (CNS), Austin, TX, 2022.
BinProv: Binary Code Provenance Identification without Disassembly [paper]
Xu He, Shu Wang, Yunlong Xing, Pengbin Feng, Haining Wang, Qi Li, Songqing Chen, and Kun Sun.
International Symposium on Research in Attacks, Intrusions and Defenses (RAID), Limassol, Cyprus, 2022.
(Acceptance Rate: 35/139 = 25.2%)
The Devil is in the Detail: Generating System Call Whitelist for Linux Seccomp [paper]
Yunlong Xing, Jiahao Cao, Kun Sun, Fei Yan, and Shengye Wan.
Future Generation Computer Systems (FGCS), 2022.
(Impact Factor: 7.3 as 2022)
Container Security Protection Scheme Based on System Call Restriction [paper]
Yunlong Xing, Fei Yan, Yanxiao Liu, and Liqiang Zhang.
Journal of Wuhan University (Natural Science Edition), 2021 (in Chinese).
Research on Cryptographic Algorithm Recognition Based on Behavior Analysis [paper]
Fei Yan, Yunlong Xing, Shiwei Zhang, Zhihan Yue, and Yamin Zheng.
Chinese Conference on Trusted Computing and Information Security (CTCIS), Wuhan, China, 2017.