My research interest lies in Computer Security and Privacy. Broadly, I am interested in applying techniques from formal verification and runtime monitoring in achieving provable security and privacy assurances of modern systems and protocols. I am also interested in applying formal verification and software engineering techniques to automatically detect functional bugs in network protocols and safety-critical cyber-physical and IoT systems.
I am currently looking for one or two motivated graduate students who are interested in tackling practical cyber security and privacy problems to join my group. If interested, please contact me through email.
SPRING 2017: Our paper titled "Analyzing Operational Behavior of Stateful Protocol Implementations for Detecting Semantic Bugs" has been accepted at IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) 2017. Congratulations Sze Yiu Chau and Endadul Hoque.
SPRING 2017: Our paper titled "SymCerts: Practical Symbolic Execution For Exposing Noncompliance in X.509 Certificate Validation Implementations" has been accepted at IEEE S&P 2017. Congratulations Sze Yiu Chau and Endadul Hoque.