Biography

Zhongjie Wang is a Security Scientist at Baidu USA. Before joining Baidu, he earned his PhD in Computer Science at University of California, Riverside, advised by Professor Zhiyun Qian and Professor Srikanth V. Krishnamurthy. He earned his bechelor degree from Beijing University of Posts and Telecommunications and master degree from Peking University. His research interest lies in Network Security, Program Analysis, Formal Verification, Censorship and Privacy. He is interested in developing automated tools that can enhance software security and discover vulnerabilities.

Previously, he worked as a software testing engineer at NetEase Games. He also interned at several companies and institutions, such as Microsoft Research Asia, Morgan Stanley, Samsung Research America and International Computer Science Institute (ICSI) at Berkeley.

Research Interest

  • Developing automated tools to formally verify software security and discover syntactic and semantic bugs
  • Incorporating machine learning techniques to reduce manual efforts in software security analysis
  • Measuring Internet preformance and security vulnerabilities
  • Remotely exploiting vulnerabilities in network-connected devices

News

  • Aug/2021: Our paper on eluding ML-based Ad blockers got accepted to ACSAC 2021.
  • Aug/2021: Our paper on robust NIDS and discrepancy discovery got accepted to CCS 2021.
  • Jun/2021: Joined Baidu Security X-Lab as a Security Scientist.
  • Nov/2020: Our paper on DNS cache poisoning received Distinguished Paper Award at CCS 2020.
  • Sep/2020: Our paper on machine learning based NIDS got accepted to CoNEXT 2020.
  • Jul/2020: Our paper on DNS cache poisoning using side-channels got accepted to CCS 2020.
  • Feb/2020: Presented our SymTCP paper at NDSS 2020.
  • Jan/2020: We released the source code of SymTCP on Github.
  • Dec/2019: Our paper on measuring Internet performance in China got accepted to SIGMETRICS 2020.
  • Dec/2019: Our paper on eluding stateful DPI got accepted to NDSS 2020.
  • Jun/2019: Joined Samsung Research America (SRA) as a research intern.
  • Jun/2018: Joined Internationcal Computer Science Institute (ICSI) as a research intern.

Recent Publications

  1. Eluding ML-based Adblockers With Actionable Adversarial Examples. Shitong Zhu, Zhongjie Wang, Xun Chen, Shasha Li, Keyu Man, Umar Iqbal, Zhiyun Qian, Kevin Chan, Srikanth V. Krishnamurthy, Zubair Shafiq, Yu Hao, Guoren Li, Zheng Zhang, Xiaochen Zou. 37th Annual Computer Security Applications Conference (ACSAC) 2021, Virtual Conference.
  2. Themis: Ambiguity-Aware Network Intrusion Detection based on Symbolic Model Comparison. Zhongjie Wang, Shitong Zhu, Keyu Man, Pengxiong Zhu, Yu Hao, Zhiyun Qian, Srikanth V. Krishnamurthy, Tom La Porta, Michael J. De Lucia. 28th ACM Conference on Computer and Communications Security (CCS) 2021, Virtual Conference.
  3. You Do (Not) Belong Here: Detecting DPI Evasion Attacks with Context Learning. Shitong Zhu, Shasha Li, Zhongjie Wang, Xun Chen, Zhiyun Qian, Srikanth V. Krishnamurthy, Kevin S. Chan, Ananthram Swami. 16th International Conference on emerging Networking EXperiments and Technologies (CoNext) 2020, Barcelona, Spain.
  4. DNS Cache Poisoning Attack Reloaded: Revolutions with Side Channels. Keyu Man, Zhiyun Qian, Zhongjie Wang, Xiaofeng Zheng, Youjun Huang, Haixin Duan. ACM CCS 2020, Virtual Event, USA. Distinguished Paper Award
  5. Characterizing Transnational Internet Performance and the Great Bottleneck of China. Pengxiong Zhu, Keyu Man, Zhongjie Wang, Zhiyun Qian, Roya Ensafi, J. Alex Halderman, and Haixin Duan. ACM SIGMETRICS 2020, Boston, Massachusetts, USA.
  6. SymTCP: Eluding Stateful Deep Packet Inspection with Automated Discrepancy Discovery. Zhongjie Wang, Shitong Zhu, Yue Cao, Zhiyun Qian, Chengyu Song, Srikanth V. Krishnamurthy, Kevin S. Chan, and Tracy D. Braun. Network & Distributed System Security Symposium (NDSS) 2020, San Diego, California, USA.
  7. Principled Unearthing of TCP Side Channel Vulnerabilities. Yue Cao, Zhongjie Wang, Zhiyun Qian, Chengyu Song, Srikanth V. Krishnamurthy, and Paul Yu. 26th ACM Conference on Computer and Communications Security (CCS) 2019, London, UK.
  8. ShadowBlock: A Lightweight and Stealthy Adblocking Browser. Shitong Zhu, Umar Iqbal, Zhongjie Wang, Zhiyun Qian, Zubair Shafiq, and Weiteng Chen. The Web Conference (WWW) 2019, San Francisco, California, USA.
  9. Off-Path TCP Exploits of the Challenge ACK Global Rate Limit. Yue Cao, Zhiyun Qian, Zhongjie Wang, Tuan Dao, Srikanth V. Krishnamurthy, and Lisa M. Marvel. IEEE/ACM Transactions on Networking 2018.
  10. Your State is Not Mine: A Closer Look at Evading Stateful Internet Censorship. Zhongjie Wang, Yue Cao, Zhiyun Qian, Chengyu Song, and Srikanth V. Krishnamurthy. ACM Internet Measurement Conference (IMC) 2017, London, UK.
  11. Investigation of the 2016 Linux TCP Stack Vulnerability at Scale. Alan Quach*, Zhongjie Wang*, and Zhiyun Qian (*co-first author). ACM SIGMETRICS 2017, Urbana-Champaign, Illinois, USA.
  12. Off-Path TCP Exploits: Global Rate Limit Considered Dangerous. Yue Cao, Zhiyun Qian, Zhongjie Wang, Tuan Dao, Srikanth V. Krishnamurthy, and Lisa M. Marvel. 25th USENIX Security Symposium 2016, Austin, TX, USA.