Assistant Professor

Secure Software Lab (S2 Lab)

Department of Computer Science and Engineering

Ulsan National Institute of Science and Technology (UNIST)

[email: ysjeon@unist.ac.kr][CV][Google Scholar][GitHub]


I am looking for motivated collaborators (graduate students and undergraduate interns).

Please feel free to contact me through email, if you’re interested in software and systems security.


Research Interest

  • My research interests are all aspects of software and systems security. In particular, my research focus is designing and implementing advanced bug sanitization and mitigation techniques to protect operating systems and user applications in existing and emerging areas (e.g., autonomous driving, drones) by leveraging compiler, fuzzing, and AI-based techniques.

Education

  • [2015.08 - 2020.12] Ph.D. in Computer Science, Purdue University, USA
  • [2008.02 - 2010.02] M.S. in Computer and Communications Engineering, POSTECH, South Korea
  • [2003.03 - 2007.08] B.S. in Computer Science and Engineering, INHA University, South Korea

Work Experiences

  • [2021.02 - Present] Assistant Professor, Ulsan National Institute of Science and Technology (UNIST), South Korea
  • [2018.05 - 2018.08] Graduate Intern, Platform Security Division, Intel, Hillsboro, OR, USA
  • [2016.05 - 2016.08] Research Intern, Security Department, NEC Labs America, Princeton, NJ, USA
  • [2013.12 - 2015.06] Research Engineer, Software R&D Center, Samsung Electronics, South Korea
  • [2010.02 - 2013.06] Research Engineer, National Security Research Institute, South Korea

Publication

  • ERASAN: Efficient Rust Address Sanitizer (conditionally accepted)

    Jiun Min*, Dongyeon Yu*, Seongyun Jeong, Dokyung Song, and Yuseok Jeon

    IEEE Symposium on Security and Privacy (S&P) 2024

    (*: co-first author)

  • Pspray: Timing Side-Channel based Linux Kernel Heap Exploitation Technique [ paper ]

    Yoochan Lee, Jinhan Kwak, Junesoo Kang, Yuseok Jeon, and Byoungyoung Lee

    USENIX Security Symposium (Security) 2023

  • Perfect Spray: A Journey From Finding a New Type of Logical Flaw at Linux Kernel To Developing a New Heap Exploitation Technique

    Yoochan Lee, Byoungyoung Lee, Yuseok Jeon, Jinhan Kwak, Junesoo Kang

    BlackHat EUROPE 2022

  • DriveFuzz: Discovering Autonomous Driving Bugs through Driving Quality-Guided Fuzzing [ paper | slide | code ]

    Seulbae Kim, Major Liu, Junghwan Rhee, Yuseok Jeon, Yonghwi Kwon, and Chung Hwan Kim

    ACM Conference on Computer and Communications Security (CCS) 2022

  • ShadowAuth: Backward-Compatible Automatic CAN Authentication for Legacy ECUs [ paper ]

    Sungwoo Kim, Gisu Yeo, Taegyu Kim, Junghwan John Rhee, Yuseok Jeon, Antonio Bianchi, Dongyan Xu, and Dave (Jing) Tian

    ACM ASIA Conference on Computer and Communications Security (ASIACCS) 2022

  • SwarmFlawFinder: Discovering and Exploiting Logic Flaws of Swarm Algorithms [ paper ]

    Chijung Jung, Ali Ahad, Yuseok Jeon, and Yonghwi Kwon

    IEEE Symposium on Security and Privacy (S&P) 2022

  • Certified Malware in South Korea: A Localized Study of Breaches of Trust in Code-Signing PKI Ecosystem [ paper ]

    Bumjun Kwon, Sanghyun Hong, Yuseok Jeon, and Doowon Kim

    International Conference on Information and Communications Security (ICICS) 2021

  • FuZZan: Efficient Sanitizer Metadata Design for Fuzzing [ paper | slide | code ]

    Yuseok Jeon, WookHyun Han, Nathan Burow, and Mathias Payer

    USENIX Annual Technical Conference (ATC) 2020

  • PoLPer: Process-Aware Restriction of Over-Privileged Setuid Calls in Legacy Applications [ paper | slide ]

    Yuseok Jeon, Junghwan Rhee, Chung Hwan Kim, Zhichun Li, Mathias Payer, Byoungyoung Lee, and Zhenyu Wu

    ACM Conference on Data and Application Security and Privacy (CODASPY) 2019

  • HexType: Efficient Detection of Type Confusion Errors for C++ [ paper | slide | code ]

    Yuseok Jeon, Priyam Biswas, Scott A. Carr, Byoungyoung Lee, and Mathias Payer

    ACM Conference on Computer and Communications Security (CCS) 2017

  • TypeSan: Practical Type Confusion Detection [ paper | code ]

    Istvan Haller, Yuseok Jeon, Hui Peng, Mathias Payer, Cristiano Giuffrida, Herbert Bos, and Erik van der Kouwe

    ACM Conference on Computer and Communications Security (CCS) 2016

  • A Distributed Monitoring Architecture for AMIs [ paper ]

    Incheol Shin, Junho Huh, Yuseok Jeon, and David M. Nicol

    Smart Energy Grid Security Workshop (In conjunction with CCS) 2013

  • LT-OLSR: Attack-Tolerant OLSR against Link Spoofing [ paper ]

    Yuseok Jeon, Tae-Hyung Kim, Yuna Kim, and Jong Kim

    IEEE Conference on Local Computer Networks (LCN) 2012, Short Paper

Students

  • Please check our lab students here.

Teaching

  • (CSE551) Advanced Computer Security: Fall 2023, Fall 2021
  • (CSE467) Computer Security: Spring 2022, Spring 2021
  • (CSE251) System Programming: Spring 2023
  • (CSE241) Object Oriented Programming: Fall 2020
  • (UNI204) Software hacking and defense: Winter 2021

Services

Program Chair

 

  • IEEE/ACIS International Conference on Software Engineering, Management and Applications (SERA) 2023

 

Program Committee

 

  • USENIX Security Symposium (SEC) 2024, 2023, 2022, 2021

  • ACM Conference on Computer and Communications Security (CCS) 2024

  • Network and Distributed System Security (NDSS) 2024, 2023

  • European Symposium on Research in Computer Security (ESORICS) 2022, 2021

  • International Symposium on Research in Attacks, Intrusions and Defenses (RAID) 2022, 2021

  • ACM Conference on Data and Application Security and Privacy (CODASPY) 2022, 2021

  • World Conference on Information Security Applications (WISA) 2023

  • Man-At-The-Middle Attacks Workshop (CheckMATE) Co-located with the ACM CCS 2021

  • The Silicon Valley Cybersecurity Conference (SVCC) 2023

Patents

  • Fine-grained analysis and prevention of invalid privilege transitions

    Junghwan Rhee, Yuseok Jeon, Zhichun Li, Kangkook Jee, Zhenyu Wu, Guofei Jiang

    Patent No : US10,402,564 (USA)

  • Blackbox Program Privilege Flow Analysis with Inferred Program Behavior Context

    Junghwan Rhee, Yuseok Jeon, Zhichun Li, Kangkook Jee, Zhenyu Wu, Guofei Jiang

    Patent No : US10,505,962 (USA)

  • Automated Blackbox Inference of External Origin User Behavior

    Zhenyu Wu, Jungwhan Rhee, Yuseok Jeon, Zhichun Li, Kangkook Jee, Guofei Jiang

    Patent No : US10,572,661 (USA)

  • Apparatus and method for analyzing vulnerability of ZigBee Network

    Yuseok Jeon, Incheol Shin, Jaeduck Choi, Gunhee Lee, Sinkyu Kim, Jungtaek Seo

    Patent No : 1014141760000 (South Korea) / US9294496 B2 (USA)

  • Apparatus and method for collecting network data traffic

    Incheol Shin, Yuseok Jeon, Sinkyu Kim, Jungtaek Seo

    Patent No : 1013693830000 (South Korea) / US20150128271 A1 (USA)

Honors and Awards

  • CERIAS Diamond Award, 2020
  • Bilsland Dissertation Fellowship, 2020
  • ACM CCS 2016 Student Travel Grant, 2016
  • Expert level (top grade), Samsung S/W Certificate, 2015
  • 19th place, Samsung S/W Programming Contest Finals, 2014
  • Top prize, National Computer Competition hosted by Kyung-Hee University, 2001
  • Bronze prize, Information Technology Competition hosted by Hanyang University, 2001
  • Bronze prize, Korea Computer Competition hosted by Soongsil University, 2001