Fengwei Zhang |
|
As of September 2019, I am a tenure-track Associate Professor at Department of Computer Science and Engineering at Southern University of Science and Technology (SUSTech). My primary research interests are in the areas of systems security, with a focus on trustworthy execution, hardware-assisted security, debugging transparency, transportation security, and plausible deniability encryption.
Before joining SUSTech, I spent four wonderful years as an Assistant Professor at Department of Computer Science at Wayne State University (WSU). I earned my Ph.D. in Computer Science from George Mason University in April 2015.
My research group: [COMPASS@SUSTech] [COMPASS@WSU].
I am looking for graduate students, postdocs, undergraduate students to work with me on exciting projects in systems security. If you are interested, please send me your CV. Multiple fully funded positions are available [Hire Link, 招聘启示] [2020 SUSTech PhD Scholarship For International Students].
Teaching
- Spring 2020: CS 102A Introduction to Computer Programming
- Fall 2019: CS 315, Computer Security
- Previous Semesters: [full list]
Selected Recent Publications [full list]
Authors with an underline "_" is student mentored by me in my lab; * indicates the corresponding author.-
Nailgun: Breaking Privilege Isolation on ARM, 钉枪:突破ARM特权隔离
Fengwei Zhang and Zhenyu Ning, 张锋巍,宁振宇
InCommunications of China Computer Federation ,《中国计算机学会通讯》Vol.16, No.1, pp.51-54, 2020. -
SecDATAVIEW: A Secure Big Data Workflow Management System for Heterogeneous Computing Environments [slides]
[Artifacts Evaluated – Functional]
[Source Code]
Saeid Mofrad, Ishtiaq Ahmed, Shiyong Lu, Ping Yang, Heming Cui, and Fengwei Zhang*
To Appear In Proceedings of The35th Annual Computer Security Applications Conference ( , San Juan, Puerto Rico, December, 2019.ACSAC'19 )
-
Defeating Speculative-Execution Attacks on SGX with HyperRace
Guoxing Chen, Mengyuan Li, Fengwei Zhang , and Yinqian Zhang
To Appear In Proceedings of The2019 IEEE Conference on Dependable and Secure Computing ( , Hangzhou, China, November, 2019.IDSC'19 )
-
SecLabel: Enhancing RISC-V Platform Security with Labelled Architecture [slides]
Zhenyu Ning, Yinqian Zhang, and Fengwei Zhang*
In The1st China RISC-V Forum ( , Shenzhen, China, November, 2019.CRVF'19 )
-
A Study of the Multiple Sign-in Feature in Web Applications
Marwan Albahar, Xing Gao, Gaby G. Dagher, Daiping Liu, Fengwei Zhang , and Jidong Xiao
In Proceedings of The15th EAI International Conference on Security and Privacy in Communication Networks ( , Short paper, Orlando, Florida, October, 2019.SecureComm'19 )
-
Nighthawk: Transparent System Introspection from Ring -3 [slides]
Lei Zhou, Jidong Xiao, Kevin Leach, Westley Weimer, Fengwei Zhang* , and Guojun Wang
In Proceedings of The24th European Symposium on Research in Computer Security ( , Luxembourg, September, 2019.ESORICS'19 )
-
Understanding the Security of Traffic Signal Infrastructure [slides]
Zhenyu Ning, Fengwei Zhang* , and Stephen Remias
In Proceedings of The16th Conference on Detection of Intrusions and Malware & Vulnerability Assessment ( , Gothenburg, Sweden, June, 2019.DIMVA'19 )
-
Understanding the Security of ARM Debugging Features [slides]
Zhenyu Ning and Fengwei Zhang
In Proceedings of The40th IEEE Symposium on Security & Privacy ( , San Francisco, California, May, 2019.S&P'19 )
Nailgun project is online! [Web] [PoC] [Video1] [Video2] CVE-2018-18068. -
Hardware-assisted Transparent Tracing and Debugging on ARM [bib]
Zhenyu Ning and Fengwei Zhang
InIEEE Transactions on Information Forensics & Security ( , Vol.14, No.6, pp.1595-1609, 2019. Impact Factor: 5.824 (11/2018).TIFS'19 ) -
Methods and Systems for Increased Debugging Transparency [bib]
Fengwei Zhang , Kevin Leach, Angelos Stavrou, and Haining Wang
U.S. Patent Number 10,127,137. Issued on November 13, 2018.
Recent Professional Services
Program Organization
- [IWCSS]: Program Co-Chair, International Workshop on Cyberspace Security, 2019.
- [CCSW]: Publicity Chair, ACM Cloud Computing Security Workshop, 2017.
Program Committee Membership
- [S&P]: IEEE Symposium on Security and Privacy (“Oakland”), 2021.
- [DSN]: IEEE/IFIP International Conference on Dependable Systems and Networks, 2020.
- [ESORICS]: European Symposium on Research in Computer Security, 2020.
- [HPBD&IS]: International Conference on High Performance Big Data and Intelligent Systems, 2020.
- [SecureComm]: EAI International Conference on Security and Privacy in Communication Networks, 2018.
- [ICICS]: International Conference on Information and Communications Security, 2018.
- [IoTSSP]: ACM MobiHoc Workshop on Mobile IoT Sensing, Security, and Privacy, 2018.
- [ICC]: IEEE International Conference on Communications, 2018.
- [CCSW]: ACM Cloud Computing Security Workshop, 2017.
- [HASP]: Hardware and Architectural Support for Security and Privacy, 2017.
- [ICPADS]: IEEE International Conference on Parallel and Distributed Systems, 2016.
- [DependSys]: Symposium on Dependability in Sensor, Cloud, and Big Data Systems and Applications, 2016.
Artifact Evaluation Committee
- [USENIX-Security]: USENIX Security Symposium, 2020.
- [ACSAC]: Annual Computer Security Applications Conference, 2019.
- [WOOT]: USENIX Workshop on Offensive Technologies, 2019.