周亚金，是北卡罗莱纳州立大学研究人员。他的研究方向包括智能手机应用安全漏洞挖掘， 安卓恶意软件检测， 以及开发相应的解决方案去保护智能手机用户的安全。

• 中文名 周亚金
• 国籍 中国
• 职业 研究人员
• 毕业院校 北卡罗莱纳州立大学
• 性别 男

研究成果

　　研究成果发表在国际知名安全会议包括Oakland，NDSS，CCS，MobiSys并且连续两次获得ACM CODASPY最佳论文奖。他的研究具有较大的现实影响。其中他和蒋旭宪博士创建的Android Malware Genome Project发现了超过25个zero-day的安卓恶意软件家族并且向全世界大约300所知名大学和公司共享了该项目的研究成果。目前他正致力于给智能手机用户提供更好的安全解决方案的研究。

发表论文

　　2019

　　Different is Good: Detecting the Use of Uninitialized Variables through Differential Replay [Paper] 

　　Mengchen Cao, Xiantong Hou, Tao Wang, Hunter Qu, Yajin Zhou, Xiaolong Bai, Fuwei Wang 

　　Proceedings of the 26th ACM Conference on Computer and Communications (ACM CCS 2019) 

　　LightBox: Full-stack Protected Stateful Middlebox at Lightning Speed [Paper] 

　　Huayi Duan, Cong Wang, Xingliang Yuan, Yajin Zhou, Qian Wang, Kui Ren 

　　Proceedings of the 26th ACM Conference on Computer and Communications (ACM CCS 2019) 

　　Towards a First Step to Understand the Cryptocurrency Stealing Attack on Ethereum [Paper] 

　　Zhen Cheng*, Xinrui Hou*, Runhuai Li, Yajin Zhou, Xiapu Luo, Jinku Li, Kui Ren 

　　Proceedings of the 22nd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2019) 

　　(*The names of the first two authors are in alphabetical order) 

　　SPEED: Accelerating Enclave Applications via Secure Deduplication [Paper] 

　　Helei Cui, Huayi Duan, Zhan Qin, Cong Wang, Yajin Zhou 

　　Proceedings of the 39th IEEE International Conference on Distributed Computing Systems (IEEE ICDCS 2019) 

　　Dating with Scambots: Understanding the Ecosystem of Fraudulent Dating Applications [Paper] 

　　Yangyu Hu, Haoyu Wang, Yajin Zhou, Yao Guo, Li Li, Bingxuan Luo, Fangren Xu 

　　IEEE Transactions on Dependable and Secure Computing (TDSC) 

　　Adaptive Call-site Sensitive Control Flow Integrity (Best Paper Award) [Paper | Code] 

　　Mustakimur Khandaker, Abu Naser, Wenqing Liu, Zhi Wang, Yajin Zhou, Yueqiang Cheng 

　　Proceedings of the 4th IEEE European Symposium on Security and Privacy (IEEE EuroS&P 2019) 

　　NDroid: Towards Tracking Information Flows Across Multiple Android Contexts [Paper] 

　　Lei Xue, Chenxiong Qian, Hao Zhou, Xiapu Luo, Yajin Zhou, Yuru Shao and Alvin T.S. Chan 

　　IEEE Transactions on Information Forensics & Security (TIFS), Volume: 14, Issue: 3, pp. 814–828, March 2019 

　　2018

　　Towards Privacy-Preserving Malware Detection Systems for Android (Best Paper Award) [Paper] 

　　Helei Cui, Yajin Zhou, Cong Wang, Qi Li, Kui Ren 

　　Proceedings of the 24th International Conference on Parallel and Distributed Systems (IEEE ICPADS 2018) 

　　AdCapsule: Practical Confinement of Advertisements in Android Applications [Paper] 

　　Xiaonan Zhu, Jinku Li, Yajin Zhou, Jianfeng Ma 

　　IEEE Transactions on Dependable and Secure Computing (TDSC) 

　　Before 2018

　　2017

　　When Program Analysis Meets Mobile Security: An Industrial Study of Misusing Android Internet Sockets [Paper] 

　　Wenqi Bu, Minhui Xue, Lihua Xu, Yajin Zhou, Zhushou Tang, Tao Xie 

　　Proceedings of the 11th joint meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering (ESEC/FSE 2017) 

　　Malton: Towards On-Device Non-Invasive Mobile Malware Analysis for ART [Paper] 

　　Lei Xue, Yajin Zhou, Ting Chen, Xiapu Luo, Guofei Gu 

　　Proceedings of the 26th USENIX Security Symposium (USENIX Security 2017) 

　　Design and Implementation of SecPod, A Framework for Virtualization-based Security Systems [Paper] 

　　Xiaoguang Wang, Yong Qi, Zhi Wang, Yue Chen, Yajin Zhou 

　　IEEE Transactions on Dependable and Secure Computing (TDSC) 

　　2016

　　Blender: Self-randomizing Address Space Layout for Android Apps [Paper] 

　　Mingshen Sun, John C.S. Lui, Yajin Zhou 

　　Proceedings of the the 19th International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2016) 

　　AppShell: Making Data Protection Practical for Lost or Stolen Android Devices [Paper] 

　　Yajin Zhou, Kapil Singh, Xuxian Jiang 

　　Proceedings of IEEE/IFIP Network Operations and Management Symposium (NOMS 2016) 

　　2015

　　SecPod: a Framework for Virtualization-based Security Systems [Paper] 

　　Xiaoguang Wang, Yue Chen, Zhi Wang, Yong Qi, Yajin Zhou 

　　Proceedings of the 2015 USENIX Annual Technical Conference (USENIX ATC 2015) 

　　Harvesting Developer Credentials in Android Apps [Paper] 

　　Yajin Zhou, Lei Wu, Zhi Wang, Xuxian Jiang 

　　Proceedings of the 8th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec 2015) 

　　Hybrid User-level Sandboxing of Third-party Android Apps [Paper] 

　　Yajin Zhou, Kunal Patel, Lei Wu, Zhi Wang, Xuxian Jiang 

　　Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2015)

　　2014

　　ARMlock: Hardware-based Fault Isolation for ARM [Paper | Slides] 

　　Yajin Zhou, Xiaoguang Wang, Yue Chen, Zhi Wang 

　　Proceedings of the 21st ACM Conference on Computer and Communications Security (CCS 2014) 

　　Owner-centric Protection of Unstructured Data on Smartphones [Paper] 

　　Yajin Zhou, Kapil Singh, Xuxian Jiang 

　　Proceedings of the 7th International Conference on Trust and Trustworthy Computing (TRUST 2014)

　　AirBag: Boosting Smartphone Resistance to Malware Infection [Paper] 

　　Chiachih Wu, Yajin Zhou, Kunal Patel, Zhenkai Liang, Xuxian Jiang 

　　Proceedings of the 21st Network and Distributed System Security Symposium (NDSS 2014)

　　DIVILAR: Diversifying Intermediate Language for Anti-Repackaging on Android Platform [Paper] 

　　Wu Zhou, Zhi Wang, Yajin Zhou, Xuxian Jiang 

　　Proceedings of the 4th ACM Conference on Data and Application Security and Privacy (CODASPY 2014)

　　2013

　　The Impact of Vendor Customizations on Android Security [Paper] 

　　Lei Wu, Michael Grace, Yajin Zhou, Chiachih Wu, Xuxian Jiang 

　　Proceedings of the 20th ACM Conference on Computer and Communications Security (CCS 2013) 

　　Fast, Scalable Detection of 'Piggybacked' Mobile Applications (Best Paper Award) [Paper] 

　　Wu Zhou, Yajin Zhou, Michael Grace, Xuxian Jiang, Shihong Zou 

　　Proceedings of the 3rd ACM Conference on Data and Application Security and Privacy (CODASPY 2013) 

　　Detecting Passive Content Leaks and Pollution in Android Applications [Paper | Slides] 

　　Yajin Zhou, Xuxian Jiang 

　　Proceedings of the 20th Network and Distributed System Security Symposium (NDSS 2013) 

　　2012

　　RiskRanker: Scalable and Accurate Zero-day Android Malware Detection [Paper] 

　　Michael Grace*, Yajin Zhou*, Qiang Zhang, Shihong Zou, Xuxian Jiang 

　　Proceedings of the 10th International Conference on Mobile Systems, Applications and Services (MobiSys 2012) 

　　(*The names of the first two authors are in alphabetical order)

　　Dissecting Android Malware: Characterization and Evolution [Paper] 

　　Yajin Zhou, Xuxian Jiang 

　　Proceedings of the 33rd IEEE Symposium on Security and Privacy (Oakland 2012) 

　　(Our dataset is released at Android Malware Genome Project)

　　DroidMOSS: Detecting Repackaged Smartphone Applications in Third-Party Android Marketplaces (Best Paper Award) [Paper] 

　　Wu Zhou, Yajin Zhou, Xuxian Jiang, Peng Ning 

　　Proceedings of the 2nd ACM Conference on Data and Application Security and Privacy (CODASPY 2012)

　　Hey, You, Get off of My Market: Detecting Malicious Apps in Official and Alternative Android Markets [Paper] 

　　Yajin Zhou, Zhi Wang, Wu Zhou and Xuxian Jiang 

　　Proceedings of the 19th Network and Distributed System Security Symposium (NDSS 2012) 

　　Systematic Detection of Capability Leaks in Stock Android Smartphones [Paper | Demo Video] 

　　Michael Grace, Yajin Zhou, Zhi Wang and Xuxian Jiang 

　　Proceedings of the 19th Network and Distributed System Security Symposium (NDSS 2012) 

　　2011

　　Taming Information-Stealing Smartphone Applications (on Android) [Paper] 

　　Yajin Zhou, Xinwen Zhang, Xuxian Jiang, Vince W. Freeh 

　　Proceedings of the 4th International Conference on Trust and Trustworthy Computing (TRUST 2011)