Sep. 2024
ย
๐คย Jihoon joins SSLab as Masterโs student
Jul. 2024
ย
๐ย Our work uMMU has been accepted to ACM CCS โ24!
Jun. 2024
ย
๐ย Kha, Kyuwon, Hajeong (PhD) and Jongyoon, Jaeyoon (Masterโs) receive BK21 scholarship!
Mar. 2024
ย
๐คย Jooyoung joins SSLab as Masterโs student
Dec. 2023
ย
๐ย Our work RustSan has been accepted to USENIX Security โ24!
Dec. 2023
ย
๐ย (In)visible Privacy Indicator (a joint work with seclab@SKKU) has been accepted to ASIACCS โ24!
Dec. 2023
ย
๐ย Our work Capacity was awarded Distinguished Paper Award at ACM CCS โ23!
Nov. 2023
ย
๐ย GENESIS (a joint work with CySecLab@KAIST) has been accepted to ACM/SIGAPP SAC โ24!
Sep. 2023
ย
๐ย SSLabโs CTF Team (Jaeyoon, Sungsoo, Jangyup) won 1st place in the SKKU CTF 2023!
Sep. 2023
ย
๐คย Hajeong and Kyuwon finished their masterโs, and started Ph.D.
Sep. 2023
ย
๐คย Sungsoo joins SSLab as a Masterโs student
Jul. 2023
ย
๐ย Our work Capacity has been accepted to ACM CCS โ23.
Mar. 2023
ย
๐คย Jaeyoon joins SSLab as an integrated Ph.D student.
Systems Security Labโs mission is to retrofit the security architecture of modern computing systems against the constantly evolving threats and broadening attack surface. Todayโs computing systems are increasingly more complex while the attackers and their strategy constantly evolve. SSLabโs research focuses on discovering weaknesses in existing defenses and proposing novel principles for defense to stay ahead of the curve.
Software and Operating Systems Security
Software Attacks and Defenses
Operating Systems Security
Hardware-assisted Security
Trusted Execution Environments
HW-accelerated security monitoring
Secure Computation for AI
Trusted AI Computation in Cloud
Privacy-preserving AI
Prof. Hojoon Lee is currently an associate professor in the Department of Computer Science and Engineering at Sungkyunkwan University since September 2019. Prior to his current position, he spent one year as a postdoctoral researcher at CISPA under the supervision of Prof. Michael Backes. He received my Ph.D. from KAIST in 2018, advised by Prof. Brent Byunghoon Kang, and his B.S. from The University of Texas at Austin. His main research interests lie in retrofitting security in computing systems against todayโs advanced threats. My research interests include but are not limited to Operating System Security, Trusted Execution Environments, Program Analysis, Software Security, and Secure Computation in the Cloud.
์ด์ฅ์ฝ (์ํํธ์จ์ดํ๊ณผ, 4ํ๋ ), ์ตํธ์ค (์ํํธ์จ์ดํ๊ณผ, 4ํ๋ ), ์ด์ฌ๊ท (์ํํธ์จ์ดํ๊ณผ, 2ํ๋ ), ๊นํ์ง (์ํํธ์จ์ดํ๊ณผ, 2ํ๋ ), ์ ๋ฏผ๊ท (์ํํธ์จ์ดํ๊ณผ, 2ํ๋ )
์์คํ ๋ณด์ ์ฐ๊ตฌ์ค (SSLab)์ ํดํน์ ์ด์ ์๋ ํ์๋ค์ ๊ธฐ๋ค๋ฆฌ๊ณ ์์ต๋๋ค. ์ ํฌ ์ฐ๊ตฌ์ค์ ๋ญ๊ฐ๋ฅผ ๋ง๋ค๊ณ , ๊ณ ์ฅ๋ด๊ณ , ๊ณ ์น๋ ๊ฑธ ์ข์ํ๋ ํด์ปค ๊ธฐ์ง์ ๊ฐ์ง ์ฌ๋ฌ๋ถ๋ค์ ์ฐพ๊ณ ์์ต๋๋ค. SSLab์ ์ํํธ์จ์ด ๋ฐ ์์คํ ๋ณด์ ๋ถ์ผ ์ฐ๊ตฌ๋ฅผ ์ค์ ์ ์ผ๋ก ์ฐ๊ตฌํ๊ณ ์๊ณ , ๋ฌด์๋ณด๋ค ํ์ ํ๋ช ํ๋ช ์ด ์ฌ๋ฏธ๋ฅผ ๋๋ผ๋ ์ฃผ์ ๋ฅผ ์ฐพ๊ณ ๋ ๊น๊ฒ ํ๊ณ ๋ค ์ ์๋๋ก ์ ๊ทน ์ง์ํฉ๋๋ค. OS, Computer Architecture, Reverse engineering, Software Exploit Writing๋ฑ์ ๋ํ ๋ฐฐ๊ฒฝ์ง์์ด ์์ผ๋ฉด ์ข์ง๋ง, ์ฒด๊ณ์ ์ธ ์ ์ ์ ๊ต์ก ํ๋ก๊ทธ๋จ์ ํตํด ๋ฐฐ์๋๊ฐ ์๋ ์์ต๋๋ค. SSLab์ ์ฒ ํ์ ๊ตฌ์ฑ์ ๊ฐ๊ฐ์ธ์ด ์ฐ๊ตฌ๋ฅผ ํ๋ ๊ฐ์ฅ ํฐ ๋๊ธฐ๋ถ์ฌ๊ฐ ์ฌ๋ฏธ๊ฐ ๋๋๋ก ํ๋ ๊ฒ์ ๋๋ค. ํ์ฌ ์ ํฌ ์ฐ๊ตฌ์ค์ ์๋์ ๊ฐ์ ํฌ์ง์ ์ ๋ชจ์งํ๊ณ ์์ต๋๋ค:
We are looking for passionate students interested in doing research at SSLab. The most important qualification we want from you is that you inherently enjoy hacking stuff. We student research topic is that you have fun exploring the topic. So, do not hesitate to talk to us if you are interested:) Currently, I have the following positions open :
Please contact me at hojoon.lee [ at ] skku.edu, if you are interested!
uMMU: Securing Data Confidentiality with Unobservable Memory Subsystem (To Appear)
Hajeong Lim, Jaeyoon Kim, Hojoon Lee
ACM Conference on Computer and Communications Security (ACM CCS) 2024ย ย ย
(In)visible Privacy Indicator: Security Analysis of Privacy Indicator on Android Devices
Yurak Choe, Hyungseok Yu, Taeho Kim, Shinjae Lee, *Hojoon Lee, *Hyoungshick Kim ( *Co-corresponding authors)
ACM ASIA Conference on Computer and Communications Security (ACM ASIACCS) 2024ย ย ย
RustSan: Retrofitting AddressSanitizer for Efficient Sanitization of Rust
Kyuwon Cho, Jongyoon Kim, Kha Dinh Duy, Hajeong Lim, Hojoon Lee
USENIX Security Symposium 2024ย ย ย
GENESIS: A Generalizable, Efficient, and Secure Intra-kernel Privilege Separation
Seongman Lee, Seoye Kim, Chihyun Song, Byeongsu Woo, Eunyeong Ahn, Junsu Lee, Yeongjin Jang, Jinsoo Jang, *Hojoon Lee, *Brent Byunghoon Kang ( *Co-corresponding Authors)
ACM/SIGAPP Symposium on Applied Computing (SAC) 2024ย ย ย
Capacity: Cryptographically-Enforced In-process Capabilities for Modern ARM Architectures
Kha Dinh Duy, Kyuwon Cho, Taehyun Noh, Hojoon Lee
ACM Conference on Computer and Communications Security (CCS) 2023ย (Distinguished Paper Award)ย ย
Towards Scalable and Configurable Simulation for Disaggregated Architecture
Daegyeong Kim, Wonwoo Choi, Chang-il Lim, Eunjin Kim, Geonwoo Kim, Yongho Song, Junsu Lee, Youngkwang Han, Hojoon Lee, Brent Byunghoon Kang
Elsevier Simulation Modelling Practice and Theory (2023)ย ย ย
DID We Miss Anything?: Towards Privacy-Preserving Decentralized ID Architecture
Siwon Huh, Myungkyu Shim, Jihwan Lee, Simon Woo, Hyoungshick Kim, Hojoon Lee
IEEE Transactions on Dependable and Secure Computing (TDSC) (2023)ย ย ย
SE-PIM: In-Memory Acceleration of Data-Intensive Confidential Computing
Kha Dinh Duy, Hojoon Lee
IEEE Transactions on Cloud Computing (2022)ย ย ย
Harnessing the x86 Intermediate Rings for Intra-Process Isolation
Hojoon Lee, Chihyun Song, Brent Byunghoon Kang
IEEE Transactions on Dependable and Secure Computing (TDSC) (2022)ย ย ย
Confidential Machine Learning Computation in Untrusted Environments: A Systems Security Perspective
Kha Dinh Duy, Taehyun Noh, Siwon Huh, Hojoon Lee
IEEE Access (2021)ย ย ย
A Comprehensive Analysis of Todayโs Malware and Its Distribution Network: Common Adversary Strategies and Implications
Siwon Huh, Seonghwan Cho, Jinho Choi, Seungwon Shin, Hojoon Lee
IEEE Access (2021)ย ย ย
EmuID: Detecting Presence of Emulation through Microarchitectural Characteristic on ARM
Yeseul Choi, Yunjong Jeong, Dahee Jang, Brent Byunghoon Kang, Hojoon Lee
Elsevier Computers & Security (2021)ย ย ย
On the Analysis of Byte-Granularity Heap Randomization.
DaeHee Jang, Jonghwan Kim, Hojoon Lee, Minjoon Park, Yunjong Jung, Minsu Kim, Brent ByungHoon Kang
IEEE Transactions on Dependable and Secure Computing (TDSC) (2021)ย ย ย
Lord of the x86 Rings: A Portable User Mode Privilege Separation Architecture on x86
Hojoon Lee, Chihyun Song, and Brent Byunghoon Kang
ACM Conference on Computer and Communications Security (ACM CCS) 2018ย ย ย ย
ATRA: Address Translation Redirection Attack Against Hardware-based External Monitors
Dahee Jang, Hojoon Lee, Hyungon Moon, Minsu Kim, Daehyeok Kim, Daegyeong Kim, Brent Byunghoon Kang
ACM Conference on Computer and Communications Security (ACM CCS) 2014ย ย ย
KI-Mon: A Hardware-assisted Event-triggered Monitoring Platform for Mutable Kernel Object
Hojoon Lee, Hyungon Moon, Daehee Jang, Kihwan Kim, Jihoon Lee, Yunheung Paek, Brent Byunghoon Kang
USENIX Security Symposium 2013ย ย ย
Vigilare: Toward Snoop-based Kernel Integrity Monitor
Hyungon Moon, Hojoon Lee, Jihoon Lee, Kihwan Kim, Yunheung Paek, Brent Bynghoon Kang
ACM Conference on Computer and Communications Security (ACM CCS) 2012ย ย ย
A Dynamic Per-context Verification of Kernel Address Integrity from External Monitors
Hojoon Lee, Minsu Kim, Yunheung Paek, Brent Byunghoon Kang
Elsevier Computers & Security, 77:824 โ 837, 2018ย ย ย
KI-Mon ARM: A Hardware- assisted Event-triggered Monitoring Platform for Mutable Kernel Object
Hojoon Lee, Hyungon Moon, Daehee Jang, Kihwan Kim, Jihoon Lee, Yunheung Paek, Brent Byunghoon Kang
IEEE Transactions on Dependable and Secure Computing (TDSC), pages 1โ1, 2018ย ย ย
Detecting and Preventing Kernel Rootkit Attacks with Bus Snooping
Hyungon Moon, Hojoon Lee, Ingoo Heo, Kihwan Kim, Yunheung Paek, Brent Bynghoon Kang
IEEE Transactions on Dependable and Secure Computing (TDSC), 14(2):145โ157, March 2017ย ย ย
SWE2001: System Program (์์คํ ํ๋ก๊ทธ๋จ)
SWE3025: Computer Security (์ ๋ณด๋ณดํธ๊ฐ๋ก )
SWE3009: Internet Services and Information Security (์ธํฐ๋ท ์๋น์ค์ ์ ๋ณด๋ณดํธ)
ESW4010: Special Topics on Systems Security (์์คํ ๋ณด์ ํน๋ก )
CTF๋ Capture-The-Flag์ ์ฝ์๋ก, ์ฃผ์ด์ง ํ๋ก๊ทธ๋จ/์น์ฌ์ดํธ๋ฑ์ ์ทจ์ฝ์ ์ ์ฐพ์๋ด Flag๋ฅผ ์ฐพ๋ ํดํน๋ํ ํ์์ ์๊ฒ์์ ๋งํฉ๋๋ค.
SSLab ์ด์ CTF๋ ์ฑ๊ท ๊ด๋ํ๊ต ์ตํฉ๋ณด์๋ํ์ ํด์ปคํค, ๋ณด์ ๊ด๋ จ ์์ , ํ๋ถ์ฐ๊ตฌ์ ํ๋ก๊ทธ๋จ์ ํตํด ์ฒดํํด๋ณด์ค์ ์์ต๋๋ค.