报告题目：Security Problems and Solutions from the Data Angle
报告人： LIANG Zhenkai
报告人单位：National University of Singapore (NUS)
报告人简介：Dr. LIANG Zhenkai is an Associate Professor of the School of Computing, National University of Singapore (NUS). His main
research interests are in system and software security, web security, mobile security, and program analysis. He has served as the
technical program committee members of many system security conferences, including the ACM Conference on Computer and
Communications Security (CCS), USENIX Security Symposium and the Network and Distributed System Security
Symposium (NDSS). He is also an associate editor of the IEEE Transaction on Dependable and Secure Computing. As a
co-author, he received the Best Paper Award in ICECCS 2014, the Best Paper Award in W2SP 2014, the ACM SIGSOFT Distinguished Paper Award at ESEC/FSE 2009, the Best Paper Award at USENIX Security Symposium 2007, and the
Outstanding Paper Award at ACSAC 2003. He also won the Annual Teaching Excellence Award of NUS in 2014 and 2015.
He received his Ph.D. degree in Computer Science from Stony Brook University in 2006, and B.S. degrees in Computer
Science and Economics from Peking University in 1999.
The fast evolution of Mobile, Web, and Cloud has provided us with a new platform for information services and computing.
This platform raises new challenges to system and data security. It is a complex platform consisting of many different types of
systems. The security policies, software qualities, etc., are diverse, and cannot be tightly controlled by a single standard.
Traditional security mechanisms, such as access control and isolation of privileges, are not sufficient to provide sufficient
protection in such a platform. In this talk, we look into the security problems and solutions of this platform from the data angle:
how to provide users with strong data-oriented protection, where data are protected by users security requirement even when part of the platform is not trusted. We will discuss our solution in the mobile and web platform. In addition, we will also
discuss our recent work in data-oriented exploits in the traditional desktop platform.
邀请人： 王丽娜 教授