Skip to content

Commit cbc29c1

Browse files
chaowangsecchaowangsec
committed
update home page
1 parent d49105f commit cbc29c1

4 files changed

Lines changed: 53 additions & 34 deletions

File tree

content/_index.md

Lines changed: 20 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -5,11 +5,11 @@ date: 2023-02-01T23:36:00-05:00
55

66
## Bio
77

8-
Chao Wang is a Ph.D. candidate from the [Department of Computer Science and Engineering](https://cse.osu.edu) of [The Ohio State University](https://osu.edu). He is advised by [Prof. Zhiqiang Lin](https://web.cse.ohio-state.edu/~lin.3021/) in [SecLab](https://go.osu.edu/seclab). He received his Bachelor of Science degree from [University of Electronic Science and Technology of China](https://en.uestc.edu.cn/) in 2021.
8+
Chao Wang is a Ph.D. candidate from the [Department of Computer Science and Engineering](https://cse.osu.edu) of [The Ohio State University](https://osu.edu). He is advised by [Prof. Zhiqiang Lin](https://zhiqlin.github.io/) in [SecLab](https://go.osu.edu/seclab). He received his Bachelor of Science degree from [University of Electronic Science and Technology of China](https://en.uestc.edu.cn/) in 2021.
99

1010
He is a security researcher interested in **mobile security** and **web security**, in particular mobile Super/Mini App security and JavaScript program analysis. He is also a DevOps engineer focused on code development and server operations.
1111

12-
He is a CTF player and composer in **web** challenges. He participates in CTF events with [StrawHat](https://strawhat.team/) and enjoys reversing, exploring and hacking CTF challenges and real-world applications.
12+
He is a CTF player and composer in **web** challenges. He participates in CTF events with [StrawHat](https://strawhat.team/) and [Nu1L](https://nu1l.com), and enjoys reversing, exploring and hacking CTF challenges and real-world applications.
1313

1414

1515
* The best way to reach him is through his email: [wang.15147@osu.edu](mailto:wang.15147@osu.edu)
@@ -20,18 +20,32 @@ He is a CTF player and composer in **web** challenges. He participates in CTF ev
2020

2121
## Research Interest
2222

23-
* **Mobile Security**: Mobile Super/Mini App Security ([\[ICSE \'23\]](publications/icse23.pdf), [[CCS \'23]](),[\[USENIX-SEC \'23a\]](publications/sec23a.pdf))
24-
* **Web Security**: JavaScript
23+
* **Mobile Security**:
24+
- Mobile Super/Mini App Security ([\[ICSE \'23\]](publications/icse23.pdf), [\[CCS \'23\]](publications/ccs23.pdf), [\[USENIX-SEC \'23a\]](publications/sec23a.pdf))
25+
- Mobile Security ([\[MobiSys \'26\]](publications/mobisys26.pdf), [\[USENIX-SEC \'23b\]](publications/sec23b.pdf))
26+
* **Web Security**: JavaScript ([\[ICSE \'23\]](publications/icse23.pdf))
2527
* **System Security**: TEE (TrustZone)
2628

2729

2830
## Publications
2931

30-
* **[ASIACCS \'24] RootFree Attacks: Exploiting Mobile Platform's Super Apps From Desktop.** [bib] [pdf] [slides]
32+
* **[MobiSys \'26] Fragile Deliveries: Inconsistencies in Android Parcel and Their Security Consequences.** [bib] [pdf]
33+
34+
<p style="margin-bottom: 0rem; margin-top: -1rem;">Hongkai Chen, <strong>Chao Wang</strong>, Yuqing Yang, Jennifer Miller, Tiffany Bao, Ruoyu Wang, Adam Doupé, Zhiiqang Lin, Yan Shoshitaishvili</p>
35+
36+
<p style="margin-bottom: 1rem;"><i>To appear in Proceedings of the 24th ACM International Conference on Mobile Systems, Applications, and Services</i></p>
37+
38+
* **[S&P Magazine \'26] The Rise of Miniapps: A New Frontier with Security Challenges in Mobile Apps.** [bib] [pdf]
39+
40+
<p style="margin-bottom: 0rem; margin-top: -1rem;">Yuqing Yang, <strong>Chao Wang</strong>, and Zhiqiang Lin</p>
41+
42+
<p style="margin-bottom: 1rem;"><i>IEEE Security & Privacy (2026)</i></p>
43+
44+
* **[ASIACCS \'24] RootFree Attacks: Exploiting Mobile Platform's Super Apps From Desktop.** [\[bib\]](bibliographies/asiaccs24.bib) [\[pdf\]](publications/asiaccs24.pdf)
3145

3246
<p style="margin-bottom: 0rem; margin-top: -1rem;"><strong>Chao Wang</strong>, Yue Zhang, and Zhiqiang Lin</p>
3347

34-
<p style="margin-bottom: 1rem;"><i>To appear in The 19th ACM ASIA Conference on Computer and Communications Security (ACM ASIACCS 2024), 2024</i></p>
48+
<p style="margin-bottom: 1rem;"><i>In The 19th ACM ASIA Conference on Computer and Communications Security (ACM ASIACCS 2024), 2024</i></p>
3549

3650
* **[USENIX-SEC \'23a] One Size Does Not Fit All: Uncovering and Exploiting Cross Platform Discrepant APIs in WeChat.** [\[bib\]](bibliographies/sec23a.bib) [\[code\]](https://github.com/OSUSecLab/APIDiff) [\[pdf\]](publications/sec23a.pdf) [\[slides\]](slides/sec23a-slides.pdf)
3751

@@ -81,5 +95,3 @@ He is a CTF player and composer in **web** challenges. He participates in CTF ev
8195
* **Graduate Research Assistant** <span style="float:right;">August. 2021 - Present</span>
8296
* **Research intern at Shanghai Jiaotong University** <span style="float:right;">April. 2020 - August. 2021</span>
8397
* **Research intern at Inst. of Info. Eng., Chinese Academy of Sciences** <span style="float:right;">July. 2019 - August. 2019</span>
84-
85-

public/bibliographies/asiaccs24.bib

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,7 @@
1+
@inproceedings{wang2024rootfree,
2+
title={RootFree Attacks: Exploiting Mobile Platform's Super Apps From Desktop},
3+
author={Wang, Chao and Zhang, Yue and Lin, Zhiqiang},
4+
booktitle={Proceedings of the 19th ACM Asia Conference on Computer and Communications Security},
5+
pages={830--842},
6+
year={2024}
7+
}

public/chaowang.pub

Lines changed: 26 additions & 26 deletions
Original file line numberDiff line numberDiff line change
@@ -3,31 +3,31 @@
33
mJMEY+VQNhMFK4EEACMEIwQAPBWKZiZdKfoerN+c1h92OCueovMvsJ7LNG+5pCAu
44
qWQMDSTJoxE0dYTNXnnYK7IcongDpCN/iQax1wHjDOTsMe4AOuizcvRG/M1LOB99
55
UkTB5uv9pS9sMb4QTGVg0C9iDrB7/dSh8E+UVAFJ+sioJ5vQpdq+mgolNy2pJyg8
6-
AeH19xC0HkNoYW8gV2FuZyA8d2FuZy4xNTE0N0Bvc3UuZWR1PojZBBMTCgA+AhsD
6+
AeH19xC0HkNoYW8gV2FuZyA8d2FuZy4xNTE0N0Bvc3UuZWR1PojYBBMTCgA+AhsD
77
BQsJCAcCBhUKCQgLAgQWAgMBAh4BAheAFiEEx7c8+9HSETVdiNlVfUlP3nt62aYF
8-
AmXn9q8FCQJ5TXkACgkQfUlP3nt62abfOwIJAU7mh5Fm2c4hGIQzAvSkSSTiCO/Z
9-
w+tkJcTWJBWKTiVG67HzhRSLdiSCoGW7yu2vwV5i0NPKmX2X///gvOcBC21sAgjf
10-
47xmegHzVgiLlEI/3Wi4tN1npb0iH4j32iINUO6Jv5pDjZcA+EwTx0ULvUArdXtQ
11-
YdY7ZTayDMsn2FZO1udp3bQiQ2hhbyBXYW5nIDxjaGFvd2FuZy5zZWNAZ21haWwu
12-
Y29tPojaBBMTCgA+AhsDBQsJCAcCBhUKCQgLAgQWAgMBAh4BAheAFiEEx7c8+9HS
13-
ETVdiNlVfUlP3nt62aYFAmXn9rYFCQJ5TXkACgkQfUlP3nt62aaF6gIJAYKsLKrU
14-
8zNsG0O9K2cAoSTyhwP5CF3FXwGvJtC5/uYF7P4OwGI6oO5BYvin6prkgg9x5gvG
15-
h/9FUdsrr76TAGpuAgkBGvlknrmK3HxX0Tnw+VIj0MQgkEO1cotQufaLXKS6QYb3
16-
xHUKpmqTs239TNR59Rn84omUVkfvS2K+erIL8gCdvvy4kwRj5VA2EwUrgQQAIwQj
17-
BAH3b47mKtScbMcar/EhYrPxMbd8WYoYzrF64azkO3x8yWI/0ftuj5/tvqIOEHAI
18-
wHqQspWCfK5puGWYZZglNXwqvgD6tGE7ibR92FaGNECHzMAZhzoU35JhSK+eh0ah
19-
Yernb/DYtToeBbowhymKRdTv52JAzJKU4UvTOMAE1SWOWIT7cYjCBBgTCgAmAhsg
20-
FiEEx7c8+9HSETVdiNlVfUlP3nt62aYFAmXn9sUFCQJ5TY8ACgkQfUlP3nt62aZG
21-
SQIJAQ4PskwKXzvrKdWRkoyQjvXcS1Kq07yeoB6F37lCD7N8c7u2ZiVFGSOzUWvL
22-
wt3LPj/BLbTIKRvehVMm4C5yVRalAgkBetNa9v/UIBSZv2QhRV0jQItChSBrTS46
23-
TrQ/Cd5F83Ct8FNuxfM4eWDRdlQEMY63l/6cgOP3k51Tx+io1Da3qtu4lwRj5VA2
24-
EgUrgQQAIwQjBAHMt7XjlDFktJOR7rtM/DLdq8TSQvqYZ3U0XSsU4xkbSnGko8tC
25-
U6lfbmT/IwMwy2ncta05BHhpaqJT6hhoBCcYsABmITtbQdADr/sK9idlcnyn6mY/
26-
r0eid+U7EzTQrRDYVKWJ+U+tAeOCEUwgVX7+eLBKT38FHeku6cey+4dboANhwQMB
27-
CgmIwgQYEwoAJgIbDBYhBMe3PPvR0hE1XYjZVX1JT957etmmBQJl5/bPBQkCeU2Z
28-
AAoJEH1JT957etmmpgcCCQERYQ6Ah1Y4J9i83/HyJR8w3MTHHMHE/OsTNxcdE91t
29-
a5FAZPlD/0GSB8doFGjwzdkfQHPp/lf/ZHNmTG8gQKtf/gIJAesqeR9z8Jmmlgoc
30-
kZW3YMrTXoOJNCXWnbwQXmjCNyTMxZ3NqR7hjF81dNqIVTM36OMfhf+9VBGV4CIn
31-
90LZ0HzD
32-
=VwBN
8+
Amod2BMFCQgZu1oACgkQfUlP3nt62aZm3QIEDpVkjl2bCqOjLKHlIlBhtNzbWRCr
9+
lj+5ZL7679vLsqjbfKtl/fbetcRZZr1HMbn9E3tT2b/WBOtTaWO6pD5PSdcCB3xl
10+
Vfmz8OeRich5zDq0nHBX/DchZ71Wbxseyb2bzPRlEvH7Sh93vFgXPXUbZ9v2k5iF
11+
rOS4a5UkmGLKbnP8qlT0tCJDaGFvIFdhbmcgPGNoYW93YW5nLnNlY0BnbWFpbC5j
12+
b20+iNgEExMKAD4CGwMFCwkIBwIGFQoJCAsCBBYCAwECHgECF4AWIQTHtzz70dIR
13+
NV2I2VV9SU/ee3rZpgUCah3YEAUJCBm7WgAKCRB9SU/ee3rZptg4AgdPXMwHWyTg
14+
zdJyi/+aj/QBHLmAH0lA4xXP4tbnaVJxdRJ9bvuyBEdZVygw9OyPu+Nf2oLSROxW
15+
gBov3k+cgO1B1AIIw11yijOL9ytB0RwfMuCoH7wD3bvU/VwrXaqH/m/K+8MrKbW1
16+
HaDbU0BhVlDhOPC61L6pGh/ccMgOv64/7j/FOom4kwRj5VA2EwUrgQQAIwQjBAH3
17+
b47mKtScbMcar/EhYrPxMbd8WYoYzrF64azkO3x8yWI/0ftuj5/tvqIOEHAIwHqQ
18+
spWCfK5puGWYZZglNXwqvgD6tGE7ibR92FaGNECHzMAZhzoU35JhSK+eh0ahYern
19+
b/DYtToeBbowhymKRdTv52JAzJKU4UvTOMAE1SWOWIT7cYjCBBgTCgAmAhsgFiEE
20+
x7c8+9HSETVdiNlVfUlP3nt62aYFAmod2KsFCQgZu/UACgkQfUlP3nt62aYpHwIJ
21+
AZZ563SJRfg6V3jbVrgyscxlW7cNXq79nn3FDwstZAi12HR0y19jOtkGVwP+4Whw
22+
SodpKLYER6+489TOzxB5azETAgkBegxPJqybT9zXGvPbK+bZWClIMZsbu8fB9xrh
23+
nJI7xmBL0dmkZbpdYJIP9pTgNbMX9PNnrpalscGAkNG8WELzvIO4lwRj5VA2EgUr
24+
gQQAIwQjBAHMt7XjlDFktJOR7rtM/DLdq8TSQvqYZ3U0XSsU4xkbSnGko8tCU6lf
25+
bmT/IwMwy2ncta05BHhpaqJT6hhoBCcYsABmITtbQdADr/sK9idlcnyn6mY/r0ei
26+
d+U7EzTQrRDYVKWJ+U+tAeOCEUwgVX7+eLBKT38FHeku6cey+4dboANhwQMBCgmI
27+
wAQYEwoAJgIbDBYhBMe3PPvR0hE1XYjZVX1JT957etmmBQJqHdisBQkIGbv1AAoJ
28+
EH1JT957etmmpkACCPfGf4aCWhgkcTNyDuv9ekrI78Yh0r0jSgd5Sw60sAljbdOk
29+
Jq8Phtmi2rjH7GHUdoIWVSgmIFv2TCeyvuDdAQrqAgiy6hr01YrsV4bt4I1uXydF
30+
s3jZOr6zppNoZ7jR/bz2/ogIQj4hBmjYPnb19LJYCQP0zXww5E/vjdXJpkHyMbP+
31+
BA==
32+
=GKgp
3333
-----END PGP PUBLIC KEY BLOCK-----

public/publications/asiaccs24.pdf

1.28 MB
Binary file not shown.

0 commit comments

Comments
 (0)