Thwarting E-mail Spam Laundering (2009)
Mengjun Xie, Heng Yin, Haining Wang
Laundering e-mail spam through open-proxies or compromised PCs is a widely-used trick to conceal real spam sources and reduce spamming cost in the underground e-mail spam industry. Spammers have...
Securing BGP through Keychain-based Signatures (2009)
Heng Yin, Bo Sheng, Haining Wang
Abstract — As the major component of Internet routing infrastructure, the Border Gateway Protocol (BGP) is vulnerable to malicious attacks. While Secure BGP (S-BGP) provides a comprehensive...
Molecular Determinants and Evolutionary Dynamics of Wobble Splicing (2009)
Lv, Jianning, Yang, Yun, Yin, Heng, Chu, Fengjiao, Wang, Haitao, Zhang, Wenjing, ...
Alternative splicing at tandem splice sites (wobble splicing) is widespread in many species, but the mechanisms specifying the tandem sites remain poorly understood. Here, we used synaptotagmin I as...
Thwarting Email Spam Laundering (2008)
Mengjun Xie, Heng Yin, Haining Wang
Laundering email spam through open-proxies or compromised PCs is a widely-used trick to conceal real spam sources and reduce spamming cost in underground email spam industry. Spammers have been...
Securing BGP through Keychain-based Signatures (2008)
Heng Yin, Bo Sheng, Haining Wang
Abstract — As the major component of Internet routing infrastructure, the Border Gateway Protocol (BGP) is vulnerable to malicious attacks. While Secure BGP (S-BGP) provides a comprehensive...
Abstract Building an Application-aware IPsec Policy System (2008)
As a security mechanism at the network-layer, the IP security protocol (IPsec) has been available for years, but its usage is limited to Virtual Private Networks (VPNs). The end-to-end security...
1 Automatically Identifying Trigger-based Behavior in (2008)
David Brumley, Cody Hartwig, Zhenkai Liang, James Newsome, Dawn Song, Heng Yin
Malware often contains hidden behavior which is only activated when properly triggered. Well known examples include: the MyDoom worm which DDoS’s on particular dates, keyloggers which only log...
Yang, Yun, Lv, Jianning, Gui, Bin, Yin, Heng, Wu, Xiaojie, Zhang, Yaozhou, ...
The molecular mechanism and physiological function of recoding by A-to-I RNA editing is well known, but its evolutionary significance remains a mystery. We analyzed the RNA editing of the Kv2 K+...
Panorama: Capturing system-wide information flow for malware detection and analysis (2007)
Heng Yin, Dawn Song, Manuel Egele, Christopher Kruegel, Engin Kirda
Malicious programs spy on users ’ behavior and compromise their privacy. Even software from reputable vendors, such as Google Desktop and Sony DRM media player, may perform undesirable actions....
BitScope: Automatically dissecting malicious binaries (2007)
David Brumley, Cody Hartwig, Min Gyung Kang, Zhenkai Liang, James Newsome, Pongsin Poosankam, ...
Automatic analysis of malicious binaries is necessary in order to scale with the rapid development and recovery of malware found in the wild. The results of automatic analysis are useful for creating...
Panorama: Capturing system-wide information flow for malware detection and analysis (2007)
Heng Yin, Dawn Song, Manuel Egele, Christopher Kruegel, Engin Kirda
Malicious programs spy on users ’ behavior and compromise their privacy. Even software from reputable vendors, such as Google Desktop and Sony DRM media player, may perform undesirable actions....
Dynamic Spyware Analysis (2007)
Manuel Egele, Christopher Kruegel, Engin Kirda, Heng Yin
Spyware is a class of malicious code that is surreptitiously installed on victims ’ machines. Once active, it silently monitors the behavior of users, records their web surfing habits, and steals...
Dynamic Spyware Analysis (2007)
Manuel Egele, Christopher Kruegel, Engin Kirda, Heng Yin
Spyware is a class of malicious code that is surreptitiously installed on victims ’ machines. Once active, it silently monitors the behavior of users, records their web surfing habits, and steals...
Panorama: Capturing system-wide information flow for malware detection and analysis (2007)
Heng Yin, Dawn Song, Manuel Egele, Christopher Kruegel, Engin Kirda
Malicious programs spy on users ’ behavior and compromise their privacy. Even software from reputable vendors, such as Google Desktop and Sony DRM media player, may perform undesirable actions....
Heng Yin, Zhenkai Liang, Dawn Song, Heng Yin, Zhenkai Liang, Dawn Song
Installing various hooks into the victim system is an important attacking strategy used by malware, including spyware, rootkits, stealth backdoors, and others. In order to evade detection, malware...
Polyglot: Automatic extraction of protocol format using dynamic binary analysis (2007)
Juan Caballero, Heng Yin, Zhenkai Liang, Dawn Song
Protocol reverse engineering, the process of extracting the application-level protocol used by an implementation, without access to the protocol specification, is important for many network security...
Dynamic Spyware Analysis (2007)
Manuel Egele, Christopher Kruegel, Engin Kirda, Heng Yin, Dawn Song
Spyware is a class of malicious code that is surreptitiously installed on victims ’ machines. Once active, it silently monitors the behavior of users, records their web surfing habits, and steals...
Building an Application-aware IPsec Policy System (2005)
As a security mechanism at the network-layer, the IP security protocol (IPsec) has been available for years, but its usage is limited to Virtual Private Networks (VPNs). The end-to-end security...
Yang, Yun, Lv, Jianning, Gui, Bin, Yin, Heng, Wu, Xiaojie, Zhang, Yaozhou, ...
The molecular mechanism and physiological function of recoding by A-to-I RNA editing is well known, but its evolutionary significance remains a mystery. We analyzed the RNA editing of the Kv2 K+...
Molecular Determinants and Evolutionary Dynamics of Wobble Splicing
Lv, Jianning, Yang, Yun, Yin, Heng, Chu, Fengjiao, Wang, Haitao, Zhang, Wenjing, ...
Alternative splicing at tandem splice sites (wobble splicing) is widespread in many species, but the mechanisms specifying the tandem sites remain poorly understood. Here, we used synaptotagmin I as...