Yiming Jing
I am a security scientist at Baidu USA. I earned my Ph.D. from Arizona State University, advised by Prof. Gail-Joon Ahn, in 2015. I got my B.S. in Information Security from Shanghai Jiao Tong University in 2010.
I'm the maintainer of MesaLink, a memory-safe and OpenSSL-compatible TLS library.
Email: jingyiming [at] baidu [dot] com, yjing [at] mesalink [dot] io
PGP Public Key: Keybase
News
- 09/2018: MesaLink 800 stars reached. Thanks to all our supporters!
- 05/2018: MesaLink 500 stars reached.
- 04/2018: The first public release of MesaLink is here!
- 11/2016: I've joined Baidu USA as a security scientist.
- 11/2016: Many research insitutes and companies worldwide have requested our Morpheus dataset, including Uber, Baidu X-Lab, UC Santa Babara, UC Davis, Royal Holloway University of London, and Chinese Academy of Science.
- 01/2016: I've started working with the SE Android team at Samsung Research America.
- 11/2015: I've defended my Ph.D. dissertation, entitled "Toward Monitoring, Assessing, and Confining Mobile Applications in Modern Mobile Platforms", on 11/09/2015.
- 10/2015: My paper "Towards Automated Risk Assessment and Mitigation of Mobile Applications" has been selected as the Spotlight Paper for the September/October 2015 issue of IEEE Transactions on Dependable and Secure Computing (TDSC).
- 10/2015: My paper "Morpheus: Automatically Generating Heuristics to Detect Android Emulators" has been selected as one of the top-10 finalists for CSAW 2015 Best Applied Security Paper Award.
- 08/2015: I've been invited to attend the Dropbox Hack Week, an annual one-week hackathon where Dropboxer and invited guest hackers build cool stuff together.
Research Interests
Publications
-
TRIPLEMON: A Multi-layer Security Framework for Mediating Inter-Process Communication on Android [PDF]
Yiming Jing, Gail-Joon Ahn, Hongxin Hu, Haehyun Cho, and Ziming Zhao
In Journal of Computer Security (JCS), Vol 24, No. 4, iOS Press, August, 2016.
-
Checking Intent-based Communication in Android with Intent Space Analysis [PDF]
Yiming Jing, Gail-Joon Ahn, and Adam Doupé
Proceedings of the 11th ACM Symposium on Information, Computer and Communications Security (ASIACCS), Xi'an, China, May 30-June 3, 2016.
Acceptance rate (full papers): 73/350 = 20.9%
-
Towards Automated Risk Assessment and Mitigation of Mobile Applications [PDF]
Yiming Jing, Gail-Joon Ahn, Ziming Zhao, and Hongxin Hu
In IEEE Transactions on Dependable and Secure Computing (TDSC), Vol. 12, No. 5, Septemper, 2015.
Spotlight paper of the issue -
Morpheus: Automatically Generating Heuristics to Detect Android Emulators [PDF | Slides | CSAW Poster]
Yiming Jing, Ziming Zhao, Gail-Joon Ahn, and Hongxin Hu
Proceedings of the 30th Annual Computer Security Applications Conference (ACSAC), New Orleans, LA, USA, December 8-12, 2014.
Acceptance rate (full papers): 47/236 = 19.9%
CSAW 2015 Best Applied Security Paper Finalist: 10/82 = 12.2%The dataset and sample applications are available at http://honeynet.asu.edu/morpheus/
-
RiskMon: Continuous and Automated Risk Assessment of Mobile Applications [PDF | Slides]
Yiming Jing, Gail-Joon Ahn, Ziming Zhao, and Hongxin Hu
Proceedings of the 4th ACM Conference on Data and Application Security and Privacy (CODASPY), San Antonio, TX, USA, March 3-5, 2014.
Acceptance rate (full papers): 19/119 = 16.0%
Best Paper Award -
Model-based Conformance Testing for Android [PDF]
Yiming Jing, Gail-Joon Ahn, and Hongxin Hu
Proceedings of the 7th International Workshop on Security (IWSEC), Fukuoka, Japan, November 2012.
Awards and Recognition
- Best Applied Security Paper Finalist, CSAW, 2015
- ACSAC Conferenceship Award, ACSAC, 2014
- Best Paper Award, ACM CODASPY, 2014
Services
I have been a reviewer, external reviewer or sub-reviewer for:- CCS 2013, 2015
- CODASPY 2012, 2013, 2014, 2015, 2016
- SACMAT 2013, 2014
- ASIACCS 2014
- SECURECOMM 2015
- ICDCS 2016