Heng Yin

Degree(s):

  • Ph. D. Computer Science, College of William and Mary, 2009

Research Interests:

  • Malware Defense
  • Smartphone Security
  • Virtualization
  • Digital Forensics

Current Research:

My research interests lie in computer security. In particular, I’m interested in applying binary or bytecode code analysis (also called binary analysis) and virtualization techniques to tackle computer security problems, such as malware analysis and detection, smartphone security, digital forensics, etc.

Courses Taught:

  • Mobile System Security
  • Program Analysis for Computer Security
  • Computer Organization and Programming Systems

Honors:

  • 2011 NSF Career Award

Selected Publications:

Mu Zhang, Yue Duan, Qian Feng, and Heng Yin, “Towards Automatic Generation of Security-Centric Descriptions for Android Apps”, in Proceedings of the 22nd ACM Conference on Computer and Communications Security (CCS’15), November 2015

Aravind Prakash, Xunchao Hu, and Heng Yin, “vfGuard: Strict Protection for Virtual Function Calls in COTS C++ Binaries”, In Proceedings of ISOC Network and Distributed System Security Symposium (NDSS’15), February 2015.

Mu Zhang, Yue Duan, Heng Yin, and Zhiruo Zhao. “Semantics-Aware Android Malware Classification using Weighted Contextual API Dependency Graphs”, In Proceedings of the 21st ACM Conference on Computer and Communications Security (CCS’14), November 2014.

Andrew Henderson, Aravind Prakash, Lok Kwong Yan, Xunchao Hu, Xujiewen Wang, Rundong Zhou, and Heng Yin, “Make It Work, Make it Right, Make It Fast: Building a Platform-Neutral Whole-System Dynamic Binary Analysis Platform,” In Proceedings of International Symposium on Software Testing and Analysis (ISSTA’14), San Jose, CA, July 2014.

Mu Zhang and Heng Yin, “AppSealer: Automatic generation of vulnerability-specific patches for preventing component hijacking attacks in Android applications”, In Proceedings of the 21st Annual Network and Distributed System Security Symposium (NDSS’14), February 2014.

Aravind Prakash, Eknath Venkataramani, Heng Yin, and Zhiqiang Lin, “Manipulating semantic values in kernel data structures: Attack assessments and implications”, In Proceedings of the 43rd IEEE/IFIP International Conference on Dependable Systems and Networks (DSN’13), June 2013.

Lok-Kwong Yan and Heng Yin. DroidScope: Seamlessly reconstructing OS and Dalvik semantic views for dynamic android malware analysis. In Proceedings of the 21st USENIX Security Symposium, August 2012.

Heng Yin, Zhenkai Liang, and Dawn Song. “HookFinder: Identifying and understanding malware hooking behaviors”, In Proceedings of the 15th Annual Network and Distributed System Security Symposium (NDSS’08), February 2008.

Heng Yin, Dawn Song, Egele Manuel, Christopher Kruegel, and Engin Kirda, “Panorama: capturing system-wide information flow for malware detection and analysis”, In Proceedings of the 14th ACM Conference on Computer and Communications Security (CCS’07), October 2007.