Publications

Peer-Reviewed Conference and Workshop Publications

1. SCRUTINIZER: Towards Secure Forensics on Compromised TrustZone  
   Yiming Zhang, Fengwei Zhang*, Xiapu Luo*, Rui Hou, Xuhua Ding, Zhenkai Liang, Shoumeng Yan*, Tao Wei, and Zhengyu He
   To Appear In Proceedings of the Network and Distributed System Security Symposium (NDSS'25), San Diego, CA, February 2025.
   


2. HyperTEE: A Decoupled TEE Architecture with Secure Enclave Management  
   Yunkai Bai, Peinna Li, Yubiao Huang, Michael C. Huang, Shijun Zhao, Lutan Zhao, Fengwei Zhang, Dan Meng, and Rui Hou
   To Appear In Proceedings of the 57th IEEE/ACM International Symposium on Microarchitecture (MICRO'24), Austin, TX, November 2024.
   


3. The HitchHiker’s Guide to High-Assurance System Observability Protection with Efficient Permission Switches  
   Chuqi Zhang, Jun Zeng, Yiming Zhang, Adil Ahmad, Fengwei Zhang, Zhankai Liang, and Hai Jin
   To Appear In Proceedings of the 31th ACM Conference on Computer and Communications Security (CCS'24), Salt Lake City, UT, October 2024.
   


4. Efficiently Rebuilding Coverage in Hardware-Assisted Greybox Fuzzing  
   Tai Yue, Yibo Jin, Fengwei Zhang*, Zhenyu Ning, Pengfei Wang*, Xu Zhou, and Kai Lu
   To Appear In Proceedings of the 27th International Symposium on Research in Attacks, Intrusions and Defenses (RAID'24), Palazzo della Salute in Padua, Italy, September 2024.
   


5. MOAT: Towards Safe BPF Kernel Extension  [slides]
   Hongyi Lu, Shuai Wang*, Yechang Wu, Wanning He, and Fengwei Zhang*
   To Appear In Proceedings of the USENIX Security Symposium (USENIX Security'24), Philadelphia, PA, August 2024.
   


6. BootRIST: Detecting and Isolating Mercurial Cores at the Booting Stage  [slides]
   Yihao Luo, Yunjie Deng, Jingquan Ge, Zhenyu Ning, and Fengwei Zhang*
   To Appear In Proceedings of the 29th European Symposium on Research in Computer Security (ESORICS'24), Bydgoszcz, Poland, September 2024.
   


7. FortifyPatch: Towards Tamper-resistant Live Patching in Linux-based Hypervisor  
   Zhenyu Ye, Lei Zhou, Fengwei Zhang, Wenqiang Jin, Zhenyu Ning*, Yupeng Hu, and Zheng Qin
   To Appear In Proceedings of the ACM SIGSOFT International Symposium on Software Testing and Analysis, (ISSTA'24), Vienna, Austria, September 2024.
   


8. ESem: To Harden Process Synchronization for Servers  [slides]
   Zhanbo Wang, Jiaxin Zhan, Xuhua Ding, Fengwei Zhang*, and Ning Hu
   In Proceedings of the 19th ACM ASIA Conference on Computer and Communications Security (AsiaCCS'24), Singapore, July 2024.
   


9. DTD: Comprehensive and Scalable Testing for Debuggers  [slides]
   Hongyi Lu, Zhibo Liu*, Shuai Wang, and Fengwei Zhang*
   In Proceedings of the ACM International Conference on the Foundations of Software Engineering (FSE'24), Porto de Galinhas, Brazil, July 2024.
   


10. BFTRAND: Low-latency Random Number Provider for BFT Smart Contracts  [slides]
    Jinghui Liao, Borui Gong, Wenhai Sun, Fengwei Zhang*, Zhenyu Ning, Man Ho Allen Au, and Weisong Shi
    In Proceedings of the 54th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'24), Brisbane, Australia, June 2024.
    


11. Tatoo: A Flexible Hardware Platform for Binary-Only Fuzzing  [slides]
    Jinting Wuˆ, Haodong Zhengˆ, Yu Wang, Tai Yue, and Fengwei Zhang*
    In Proceedings of the 61st IEEE/ACM Design Automation Conference (DAC'24), San Francisco, CA, June 2024.
    


12. SoK: A Comparison Study of Arm TrustZone and CCA  [slides]
    Haoyang Huang, Fengwei Zhang*, Shoumeng Yan, Tao Wei, and Zhengyu He
    In Proceedings of the International Symposium on Secure and Private Execution Environment Design (SEED'24), Orlando, Florida, May 2024.
    


13. CAGE: Complementing Arm CCA with GPU Extensions  [slides]
    Chenxu Wang, Fengwei Zhang*, Yunjie Deng, Kevin Leach, Jiannong Cao, Zhenyu Ning, Shoumeng Yan, and Zhengyu He
    In Proceedings of the Network and Distributed System Security Symposium (NDSS'24), San Diego, CA, February 2024.
    CAGE project is online! [Web]
14. Travelling the Hypervisor and SSD: A Tag-Based Approach Against Crypto Ransomware with Fine-Grained Data Recovery  
    Boyang Ma, Yilin Yang, Jinku Li, Fengwei Zhang, Wenbo Shen, Yajin Zhou, Jianfeng Ma
    In Proceedings of the 30th ACM Conference on Computer and Communications Security (CCS'23), Copenhagen, Denmark, November 2023.
    


15. Raft: Hardware-assisted Dynamic Information Flow Tracking for Runtime Protection on RISC-V  [slides]
    Yu Wang, Jinting Wu, Haodong Zheng, Zhenyu Ning, Boyuan He, Fengwei Zhang*
    In Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses (RAID'23), Hong Kong, October, 2023.
    


16. RingGuard: Guard io_uring with eBPF  [slides]
    Wanning Heˆ, Hongyi Luˆ, Fengwei Zhang*, and Shuai Wang*
    In Proceedings of the 1st Workshop on eBPF and Kernel Extensions (eBPF'23), in conjunction with the ACM SIGCOMM'23, New York City, NY, September 2023.


17. Shelter: Extending Arm CCA with Isolation in User Space  [slides]
    Yiming Zhangˆ, Yuxin Huˆ, Zhenyu Ning, Fengwei Zhang*, Xiapu Luo, Haoyang Huang, Shoumeng Yan, and Zhengyu He
    In Proceedings of the 32nd USENIX Security Symposium (USENIX Security'23), Anaheim, CA, August 2023.
    Shelter project is online! [Web]


18. Alligator In Vest: A Practical Failure-Diagnosis Framework via Arm Hardware Features  [slides]
    Yiming Zhang, Yuxin Hu, Haonan Li, Wenxuan Shi, Zhenyu Ning*, Xiapu Luo*, and Fengwei Zhang
    In Proceedings of the 32nd ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA'23), Seattle, Washington, July 2023.
    


19. FlushTime: Towards Mitigating Flush-based Cache Attacks via Collaberating Flush Instructions & Timers on ARMv8-A   [slides]
    Jingquan Ge and Fengwei Zhang*
    In Proceedings of the 18th ACM ASIA Conference on Computer and Communications Security (AsiaCCS'23), Melbourne, Australia, July 2023.
    


20. StrongBox: A GPU TEE on Arm Endpoints  [slides]
    Yunjie Dengˆ, Chenxu Wangˆ, Shunchang Yu, Shiqing Liu, Zhenyu Ning, Kevin Leach, Jin Li, Shoumeng Yan, Zhengyu He, Jiannong Cao, and Fengwei Zhang*
    In Proceedings of the 29th ACM Conference on Computer and Communications Security (CCS'22), Los Angeles, CA, November 2022.
    StrongBox project is online! [Web]


21. Raven: A Novel Kernel Debugging Tool on RISC-V  [slides]
    Hongyi Lu, Fengwei Zhang*
    In Proceedings of the 59th IEEE/ACM Design Automation Conference (DAC'22), San Francisco, CA, July 2022.
    


22. SMILE: Secure Memory Introspection for Live Enclave  [slides]
    Lei Zhou, Xuhua Ding, Fengwei Zhang*
    In Proceedings of the 43rd IEEE Symposium on Security and Privacy (S&P'22), San Francisco, CA, May 2022.
    


23. SOTER: Guarding Black-box Inference for General Neural Networks at the Edge  
    Tianxiang Shen, Ji Qi, Jianyu Jiang, Xian Wang, Siyuan Wen, Xusheng Chen, Shixiong Zhao, Sen Wang, Li Chen, Xiapu Luo, Fengwei Zhang, and Heming Cui
    In Proceedings of the 2022 USENIX Annual Technical Conference (ATC'22), San Francisco, CA, July 2022.
    


24. Speedster: An Efficient Multi-party State Channel via Enclaves  [slides]
    Jinghui Liao, Fengwei Zhang*, Wenhai Sun, and Weisong Shi
    In Proceedings of the 17th ACM ASIA Conference on Computer and Communications Security (AsiaCCS'22), Nagasaki, Japan, May 2022.
    


25. RetTag: Hardware-assisted Return Address Integrity on RISC-V   [slides]
    Yu Wang, Jinting Wu, Tai Yue, Zhenyu Ning*, and Fengwei Zhang
    In Proceedings of the 15th European Workshop on Systems Security (EuroSec'22), in conjunction with the European Conference on Computer Systems (EuroSys'22), Rennes, France, April 2022.


26. Efficient and DoS-resistant Consensus for Permissioned Blockchains  [slides]
    Xusheng Chen, Shixiong Zhao, Ji Qi, Jianyu Jiang, Haoze Song, Cheng Wang, Tsz On Li, Hubert Chan, Fengwei Zhang, Xiapu Luo, Sen Wang, Gong Zhang, and Heming Cui
    In Proceedings of the 39th International Symposium on Computer Performance, Modeling, Measurements and Evaluation (Performance'21), Politecnico Di Milano, Italy, November 2021.
    


27. A Novel Memory Management for RISC-V Enclaves   [slides]
    Haonan Liˆ, Weijie Huangˆ, Mingde Ren, Hongyi Lu, Zhenyu Ning*, Heming Cui, and Fengwei Zhang
    In Proceedings of the Hardware and Architectural Support for Security and Privacy (HASP'21), in conjunction with the 54th IEEE/ACM International Symposium on Microarchitecture (MICRO'21), October 2021.


28. Position Paper: Lessons Learned from Blockchain Applications of Trusted Execution Environments and Implications for Future Research  
    Rabimba Karanjai, Weidong Shi, Lei Xu, Lin Chen, Fengwei Zhang, and Zhimin Gao
    In Proceedings of the Hardware and Architectural Support for Security and Privacy (HASP'21), in conjunction with the 54th IEEE/ACM International Symposium on Microarchitecture (MICRO'21), October 2021.


29. BadUSB-C: Revisiting BadUSB with Type-C  [slides]
    Hongyi Lu, Yechang Wu, Shuqing Li, You Lin, Chaozu Zhang, and Fengwei Zhang*
    In Proceedings of the 15th Workshop On Offensive Technologies (WOOT'21), in conjunction with the 42nd IEEE Symposium on Security and Privacy (S&P'21), May, 2021.
    This work is a course project from my CS 315 Computer Security Class, all co-authors are undergraduates in the class.
    CVE-2021-22325.


30. Happer: Unpacking Android Apps via a Hardware-Assisted Approach  
    Lei Xue, Hao Zhou, Xiapu Luo, Yajin Zhou, Yang Shi, Guofei Gu, Fengwei Zhang, and Man Ho Au
    In 42nd IEEE Symposium on Security and Privacy (S&P'21), May, 2021.


31. E-SGX: Cache Side-Channel Protection for Intel SGX on Untrusted OS  
    Fan Lang, Huorong Li, Wei Wang, Jingqiang Lin, Fengwei Zhang, Wuqiong Pan, and Qiongxiao Wang
    In Proceedings of the 16th International Conference on Information Security and Cryptology (Inscrypt'20), Guangzhou, China, December 2020.
    


32. SEED: Confidential Big Data Workflow Scheduling with Intel SGX Under Deadline Constraints  [slides] [video]
    Ishtiaq Ahmed, Saeid Mofrad, Shiyong Lu, Changxin Bai, Fengwei Zhang*, and Dunren Che
    In Proceedings of the IEEE International Conference on Services Computing (SCC'20), Beijing, China, October 2020.
    


33. HART: Hardware-assisted Kernel Module Tracing on Arm  [slides] [1-minute video] [15-minutes video]
    Yunlan Duˆ, Zhenyu Ningˆ, Jun Xu, Zilong Wang, Yueh-Hsun Lin, Fengwei Zhang*, Xinyu Xing, and Bing Mao
    In Proceedings of the 25th European Symposium on Research in Computer Security (ESORICS'20), Guildford, United Kingdom, September 2020.
    


34. Uranus: Simple, Efficient SGX Programming and Its Applications
    Jianyu Jiang, Xusheng Chen, Tze On Li, Cheng Wang, Tianxiang Shen, Shixiong Zhao, Heming Cui, Cho-Li Wang, Fengwei Zhang
    In Proceedings of the 15th ACM ASIA Conference on Computer and Communications Security (AsiaCCS'20), Taipei, Taiwan, October 2020.
    


35. KShot: Live Kernel Patching with SMM and SGX  [slides] [1-minute video] [video in Chinese]
    Lei Zhou, Fengwei Zhang*, Jinghui Liao, Zhenyu Ning, Jidong Xiao, Kevin Leach, Westley Weimer, and Guojun Wang
    In Proceedings of the 50th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'20), Valencia, Spain, June 2020 (Runner-up Best Paper Award, 3 out of 291 submissions).
    


36. SecDATAVIEW: A Secure Big Data Workflow Management System for Heterogeneous Computing Environments  [slides]
    [Artifacts Evaluated – Functional]
    [Source Code]
    Saeid Mofrad, Ishtiaq Ahmed, Shiyong Lu, Ping Yang, Heming Cui, and Fengwei Zhang*
    In Proceedings of the 35th Annual Computer Security Applications Conference (ACSAC'19), San Juan, Puerto Rico, December 2019.
    


37. Defeating Speculative-Execution Attacks on SGX with HyperRace
    Guoxing Chen, Mengyuan Li, Fengwei Zhang, and Yinqian Zhang
    In Proceedings of the 2019 IEEE Conference on Dependable and Secure Computing (IDSC'19), Hangzhou, China, November 2019.
    


38. SecLabel: Enhancing RISC-V Platform Security with Labelled Architecture  [slides]
    Zhenyu Ning Yinqian Zhang, and Fengwei Zhang*
    In the 1st China RISC-V Forum (CRVF'19), Shenzhen, China, November 2019.
    


39. A Study of the Multiple Sign-in Feature in Web Applications
    Marwan Albahar, Xing Gao, Gaby G. Dagher, Daiping Liu, Fengwei Zhang, and Jidong Xiao
    In Proceedings of the 15th EAI International Conference on Security and Privacy in Communication Networks (SecureComm'19), Short paper, Orlando, Florida, October 2019.
    


40. Nighthawk: Transparent System Introspection from Ring -3  [slides]
    Lei Zhou, Jidong Xiao, Kevin Leach, Westley Weimer, Fengwei Zhang*, and Guojun Wang
    In Proceedings of the 24th European Symposium on Research in Computer Security (ESORICS'19), Luxembourg, September 2019.
    


41. Understanding the Security of Traffic Signal Infrastructure  [slides]
    Zhenyu Ning, Fengwei Zhang*, and Stephen Remias
    In Proceedings of the 16th Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA'19), Gothenburg, Sweden, June 2019.
    


42. Understanding the Security of ARM Debugging Features  [slides]
    Zhenyu Ning and Fengwei Zhang
    In Proceedings of the 40th IEEE Symposium on Security & Privacy (S&P'19), San Francisco, California, May, 2019.
    Nailgun project is online! [Web] [PoC] [Video1] [Video2]
    CVE-2018-18068.


43. Preliminary Study of Trusted Execution Environments on Heterogeneous Edge Platforms  [bib]
    Zhenyu Ning, Jinghui Liao, Fengwei Zhang, and Weisong Shi
    In Proceedings of the 1st ACM/IEEE Workshop on Security and Privacy in Edge Computing (EdgeSP'18), in conjunction with The 3rd ACM/IEEE Symposium on Edge Computing (SEC'18), Bellevue, WA, October 2018.


44. A Comparison Study of Intel SGX and AMD Memory Encryption Technology  [bib]
    Saeid Mofrad, Fengwei Zhang, Shiyong Lu, and Weidong Shi
    In Proceedings of the Hardware and Architectural Support for Security and Privacy (HASP'18), in conjunction with The 45th International Symposium on Computer Architecture (ISCA'18), Los Angeles, California, June 2018.


45. DexLego: Reassembleable Bytecode Extraction for Aiding Static Analysis  [bib]
    Zhenyu Ning and Fengwei Zhang
    In Proceedings of the 48th IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'18), Luxembourg, June 2018.


46. MobiCeal: Towards Secure and Practical Plausibly Deniable Encryption on Mobile Devices  [bib]
    Bing Chang, Fengwei Zhang, Bo Chen, Yingjiu Li, Wen-Tao Zhu, Yangguang Tian, Zhan Wang, and Albert Ching
    In Proceedings of the 48th IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'18), Luxembourg, June 2018.


47. Transparent Malware Debugging on x86 and ARM  [bib]
    Zhenyu Ning and Fengwei Zhang
    In DEF CON China Hacking Conference, Beijing, China, May 2018.


48. Supporting Transparent Snapshot for Bare-metal Malware Analysis on Mobile Devices  [bib]
    Le Guan, Shijie Jia, Bo Chen, Fengwei Zhang, Bo Luo, Jingqiang Lin, Peng Liu, Xinyu Xing, and Luning Xia
    In Proceedings of the 33rd Annual Computer Security Application Conference (ACSAC'17), Orlando, Florida, December 2017 (Distinguished Paper Award).


49. Scotch: Combining Software Guard Extensions and System Management Mode to Monitor Cloud Resource Usage  [bib]
    Kevin Leach, Fengwei Zhang, and Westley Weimer
    In Proceedings of the 20th International Symposium on Research in Attacks, Intrusions and Defenses (RAID'17), Atlanta, Georgia, September 2017.


50. Ninja: Towards Transparent Tracing and Debugging on ARM  [bib]
    Zhenyu Ning and Fengwei Zhang
    In Proceedings of the 26th USENIX Security Symposium (USENIX-Security'17), Vancouver, BC, Canada, August 2017.


51. Using Asynchronous Collaborative Attestation to Build A Trusted Computing Environment for Mobile Applications  [bib]
    Lei Zhou, Fengwei Zhang, and Guojun Wang
    In Proceedings of the 3rd IEEE International Conference on Smart World Congress (SWC'17), Newark, California, August 2017.


52. Position Paper: Challenges Towards Securing Hardware-assisted Execution Environments  [bib]
    Zhenyu Ning, Fengwei Zhang, Weisong Shi, and Larry Shi
    In Proceedings of the Hardware and Architectural Support for Security and Privacy(HASP'17) , in conjunction with The 44th International Symposium on Computer Architecture (ISCA'17), Toronto, ON, Canada, June 2017.


53. COMS: Customer Oriented Migration Service  [bib]
    Kai Huang, Xing Gao, Fengwei Zhang, and Jidong Xiao
    In Proceedings of the 10th IEEE International Conference on Cloud Computing (CLOUD'17), Honolulu, Hawaii, June 2017.


54. Breaking BLE Beacons For Fun But Mostly Profit  [bib]
    Constantinos Kolias, Lucas Copi, Fengwei Zhang, and Angelos Stavrou
    In Proceedings of the 10th European Workshop on Systems Security (EuroSec'17), in conjunction with The 12th European Conference on Computer Systems (EuroSys'17), Belgrade, Serbia, April 2017.


55. SoK: A Study of Using Hardware-assisted Isolated Execution Environments for Security  [bib]
    Fengwei Zhang and Hongwei Zhang
    In Proceedings of the Hardware and Architectural Support for Security and Privacy (HASP'16), in conjunction with The 43rd International Symposium on Computer Architecture (ISCA'16), Seoul, South Korea, June 2016.


56. Towards Transparent Introspection  [bib]
    Kevin Leach, Chad Spensky, Westley Weime, and Fengwei Zhang
    In Proceedings of the 23rd IEEE Conference on Software Analysis, Evolution, and Reengineering (SANER'16), Osaka, Japan, March 2016.


57. MobiPluto: File System Friendly Deniable Storage for Mobile Devices  [bib]
    Bing Chang, Zhan Wang, Bo Chen, and Fengwei Zhang
    In Proceedings of the 31st Annual Computer Security Applications Conference (ACSAC'15), Los Angeles, California, December 2015.


58. Class-Chord: Efficient Messages to Classes of Nodes in Chord  [bib]
    Dan Fleck, Sharath Hiremagalore, Stephen Reese, Liam McGhee, and Fengwei Zhang
    In Proceedings of the 2nd IEEE International Conference on Cyber Security and Cloud Computing (CSCloud'15), New York City, New York, November 2015.


59. Using Hardware Features for Increased Debugging Transparency  [bib]
    Fengwei Zhang, Kevin Leach, Angelos Stavrou, Haining Wang, and Kun Sun
    In Proceedings of the 36th IEEE Symposium on Security and Privacy (S&P'15), San Jose, California, May 2015.


60. TrustLogin: Securing Password-Login on Commodity Operating Systems  [bib]
    Fengwei Zhang, Kevin Leach, Haining Wang, and Angelos Stavrou
    In Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security (AsiaCCS'15), Singapore, April 2015.


61. A Framework to Secure Peripherals at Runtime  [bib]
    Fengwei Zhang, Haining Wang, Kevin Leach, and Angelos Stavrou
    In Proceedings of the 19th European Symposium on Research in Computer Security (ESORICS'14), Wroclaw, Poland, September 2014.


62. IOCheck: A Framework to Enhance the Security of I/O Devices at Runtime (student paper)  [bib]
    Fengwei Zhang
    In Proceedings of the 43rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'13), Budapest, Hungary, June 2013.


63. SPECTRE: A Dependable Introspection Framework via System Management Mode  [bib]
    Fengwei Zhang, Kevin Leach, Kun Sun, and Angelos Stavrou
    In Proceedings of the 43rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'13), Budapest, Hungary, June 2013.


64. SecureSwitch: BIOS-Assisted Isolation and Switch between Trusted and Untrusted Commodity OSes  [bib]
    Kun Sun, Jiang Wang, Fengwei Zhang, and Angelos Stavrou
    In Proceedings of the 19th Annual Network & Distributed System Security Symposium (NDSS'12), San Diego, California, February 2012.


65. Firmware-assisted Memory Acquisition and Analysis tools for Digital Forensic  [bib]
    Jiang Wang, Fengwei Zhang, Kun Sun, and Angelos Stavrou
    In Proceedings of the 6th International Workshop on Systematic Approaches to Digital Forensic Engineering (SADFE'11), in conjunction with The 32nd IEEE Symposium on Security and Privacy (S&P'11), Oakland, California, May 2011.


66. Temporal Metrics for Software Vulnerabilities  [bib]
    Ju An Wang, Fengwei Zhang, and Min Xia
    In Proceedings of the 4th Annual Workshop on Cyber Security and Information Intelligence Research (CSIIRW'08), Oak Ridge, Tennessee, May 2008.

Journal Publications

1. SnapMem: Hardware/Software Cooperative Memory Resistant to Cache-Related Attacks on ARM-FPGA Embedded SoC  
   Jingquan Ge and Fengwei Zhang*
   To Appear In IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (TCAD'24), 2024.
   


2. Armor: Protecting Software Against Hardware Tracing Techniques  
   Tai Yue, Fengwei Zhang*, Zhenyu Ning, Pengfei Wang, Xu Zhou*, Kai Lu, and Lei Zhou
   To Appear In IEEE Transactions on Information Forensics & Security (TIFS'24), 2024. Impact Factor: 7.231.


3. Building a Lightweight Trusted Execution Environment for Arm GPUs  
   Chenxu Wangˆ, Yunjie Dengˆ, Zhenyu Ning, Kevin Leach, Jin Li, Shoumeng Yan, Zhengyu He, Jiannong Cao, and Fengwei Zhang*
   To Appear In IEEE Transactions on Dependable and Secure Computing (TDSC'24), 2024. Impact Factor: 7.329.
   StrongBox project is online! [Web]


4. Trusted Execution Environment: State-of-the-Art and Future Directions, 可信执行环境：现状与展望  
   Fengwei Zhang, Lei Zhou, Yiming Zhang, Mingde Ren, Yunjie Deng; 张锋巍, 周雷, 张一鸣, 任明德, 邓韵杰
   In Proceedings of the Journal of Computer Research and Development《计算机研究与发展》61(1): 243-260, 2024.
   


5. Hardware-assisted Live Kernel Function Updating on Intel Platforms  
   Lei Zhou, Fengwei Zhang*, Kevin Leach, Xuhua Ding, Zhenyu Ning, Guojun Wang, and Jidong Xiao
   To Appear In IEEE Transactions on Dependable and Secure Computing (TDSC'23), 2023. Impact Factor: 7.329.
   


6. Revisiting ARM Debugging Features: Nailgun and Its Defense  
   Zhenyu Ning, Chenxu Wang, Yinhua Chen, Fengwei Zhang*, and Jiannong Cao
   In IEEE Transactions on Dependable and Secure Computing (TDSC'23), Vol.20, No.1, pp.574-589, 2023. Impact Factor: 6.404.
   Nailgun project is online! [Web]


7. STC-IDS: Spatial–temporal Correlation Feature Analyzing based Intrusion Detection System for Intelligent Connected Vehicles  
   Pengzhou Cheng, Mu Han, Aoxue Li, and Fengwei Zhang
   In International Journal of Intelligent Systems (IJIS'22), Vol.37, No.11, pp.9532-9561, 2022. Impact Factor: 8.993.
   


8. Efficient and DoS-resistant Consensus for Permissioned Blockchains  
   Xusheng Chen, Shixiong Zhao, Ji Qi, Jianyu Jiang, Haoze Song, Cheng Wang, Tsz On Li, Hubert Chan, Fengwei Zhang, Xiapu Luo, Sen Wang, Gong Zhang, and Heming Cui
   In Performance Evaluation (PE'22), Volume 153, February 2022.
   


9. Securing Big Data Scientific Workflows via Trusted Heterogeneous Environments  
   Saeid Mofradˆ, Ishtiaq Ahmedˆ, Fengwei Zhang*, Shiyong Lu, Ping Yang, and Heming Cui
   In IEEE Transactions on Dependable and Secure Computing (TDSC'22), Vol.19, No.6, pp.4187-4203, 2022. Impact Factor: 6.404.
   


10. DAENet: Making Strong Anonymity Scale in a Fully Decentralized Network  
    Tianxiang Shen, Jianyu Jiang, Yunpeng Jiang, Xusheng Chen, Ji Qi, Shixiong Zhao, Fengwei Zhang*, Xiapu Luo, and Heming Cui*
    In IEEE Transactions on Dependable and Secure Computing (TDSC'22), Vol.19, No.4, pp.2286-2303, 2022. Impact Factor: 6.404.


11. Vacuum: An Efficient and Assured Deletion Scheme for User Sensitive Data on Mobile Devices  
    Li Yang, Cheng Li, Teng Wei, Fengwei Zhang, Jianfeng Ma, and Naixue Xiong
    In IEEE Internet of Things Journal (IoTJ'21), 2021. 5-Year Impact Factor: 11.705.


12. A Coprocessor-based Introspection Framework via Intel Management Engine  
    Lei Zhou, Fengwei Zhang*, Jidong Xiao, Kevin Leach, Westley Weimer, Xuhua Ding, and Guojun Wang
    In IEEE Transactions on Dependable and Secure Computing (TDSC'21), Vol.18, No.4, pp.1920-1932, 2021. Impact Factor: 6.404.


13. An Attribute-Isolated Secure Communication Architecture for Intelligent Connected Vehicles  
    Mu Han, Ailan Wan, Fengwei Zhang, and Shidian Ma
    In IEEE Transactions on Intelligent Vehicle (T-IV'20), Vol.5, No.4, pp.545-555, 2020. Impact Factor: 7.420.


14. RansomSpector: An Introspection-Based Approach to Detect Crypto Ransomware  
    Fei Tang, Boyang Ma, Jinku Li, Fengwei Zhang, Jipeng Su, Jianfeng Ma
    In Elsevier Computers & Security (CompSec'20), Vol.97, 2020. Impact Factor: 3.579.


15. Nailgun: Breaking Privilege Isolation on ARM, 钉枪：突破ARM特权隔离
    Fengwei Zhang and Zhenyu Ning, 张锋巍,宁振宇
    In Communications of China Computer Federation (CCCF'20),《中国计算机学会通讯》Vol.16, No.1, pp.51-54, 2020.


16. A Study of Using TEE on Edge Computing, 基于边缘计算的可信执行环境研究  [bib]
    Zhenyu Ning, Fengwei Zhang*, and Weisong Shi, 宁振宇,张锋巍*,施巍松
    In Journal of Computer Research and Development (JCDR'19),《计算机研究与发展》Vol.56, No.7, pp.1441-1453, 2019.


17. Hardware-assisted Transparent Tracing and Debugging on ARM  [bib]
    Zhenyu Ning and Fengwei Zhang
    In IEEE Transactions on Information Forensics & Security (TIFS'19), Vol.14, No.6, pp.1595-1609, 2019. Impact Factor: 5.824 (11/2018).


18. SADUS: Secure Data Deletion in User Space for Mobile Devices  [bib]
    Li Yang, Teng Wei, Fengwei Zhang, Jianfeng Ma
    In Elsevier Computers & Security (CompSec'18), Vol.77, pp.612-626, 2018. Impact Factor: 2.849.


19. FINE-CFI: Fine-grained Control- Flow Integrity for Operating System Kernels  [bib]
    Jinku Li, Xiaomeng Tong, Fengwei Zhang, and Jianfeng Ma
    In IEEE Transactions on Information Forensics & Security (TIFS'18), Vol.13, No.6, pp.1535-1550, 2018. Impact Factor: 4.332.


20. User-Friendly Deniable Storage for Mobile Devices  [bib]
    Bing Chang, Yao Cheng, Bo Chen, Fengwei Zhang, Wen Tao Zhu, Yingjiu Li, and Zhan Wang
    In Elsevier Computers & Security (CompSec'18), Vol.72, pp.163-174, 2018. Impact Factor: 2.849.


21. Towards Transparent Debugging  [bib]
    Fengwei Zhang, Kevin Leach, Angelos Stavrou, and Haining Wang
    In IEEE Transactions on Dependable and Secure Computing (TDSC'18), Vol.15, No.2, pp.321-335, 2018. Impact Factor: 4.410.


22. HyperCheck: A Hardware-Assisted Integrity Monitor  [bib]
    Fengwei Zhang, Jiang Wang, Kun Sun, and Angelos Stavrou
    In IEEE Transactions on Dependable and Secure Computing (TDSC'14), Vol.11, No.4, pp.332-344, July-August 2014.


23. Metrics for Information Security Vulnerabilities  [bib]
    Ju An Wang, Min Xia, and Fengwei Zhang
    In Journal of Applied Global Research (JAGR'08), Vol.1, No.1, pp.48-58, 2008.

Invited Keynote Publications

1. Keynote Talk: BadUSB-C: Revisiting BadUSB with Type-C  
   Fengwei Zhang
   In Proceedings of the 1st International Symposium on Advanced Security on Software and Systems(ASSS'21), in conjunction with the 16th ACM ASIA Conference on Computer and Communications Security (AsiaCCS'21), Hong Kong, China, June, 2021.
   Extended Our WOOT 2021 Paper with teaching materials of CS 315 Computer Security course.

Conference Poster Publications

1. Poster: SecTAG: Enhancing ARM Platform Security with Hardware Tags  [bib]
   Zhenyu Ning and Fengwei Zhang
   In Proceedings of the 40th IEEE Symposium on Security & Privacy (S&P'19), San Francisco, California, May, 2019.

Technical Reports

1. SecureSwitch: BIOS-Assisted Isolation and Switch between Trusted and Untrusted Commodity OSes  [bib]
   Kun Sun, Jiang Wang, Fengwei Zhang, and Angelos Stavrou
   Technical Report GMU-CS-TR-2011-7, Department of Computer Science, George Mason University, Fairfax, VA, July, 2011. (TR-CS-GMU'11), 2011.

Issued Patents

1. Methods and Systems for Increased Debugging Transparency  [bib]
   Fengwei Zhang, Kevin Leach, Angelos Stavrou, and Haining Wang
   U.S. Patent Number 10,127,137. Issued on November 13, 2018.

Ph.D. Thesis

• Using Hardware Isolated Execution Environments for Securing Systems  [bib]