Computer and Communication Security Laboratory

Computer & Communication Security Laboratory (CCS Lab) was established in 2004 for the purpose of studying security problems and proper countermeasures. The members of CCS Lab are pursuing research on system security and network security. We take part in activities related to computer security and cooperate with professors and researchers inside and outside the country for research advances. We continue to publish the results of our researches and projects in the major international journals and conferences.

CCSLAB - Main

News

2024/07/10	Prof. Lee delivered a talk as a panelist in OECD Global Forum on Digital Security for Prosperity
Professor delivered a talk as a panelist in order to discuss open source security and security-by-design, along with renowned policy/technical experts. (https://www.oecd-events.org/global-forum-digital-security-for-prosperity/speaker/4d9e5217-861a-ef11-86d2-6045bd9c1849/heejo-lee) (Draft Agenda: OECD GF on Digital Security)
2024/07/08	Dr. Nkuba Carlos Uncovered 28 Denial of Service (DoS) Vulnerabilities in Z-Wave IoT Smart Home Devices with New Research
Groundbreaking research by Dr. Nkuba Carlos and Jimin Kang uncovered 28 vulnerabilities in Z-Wave IoT smart home devices, leading to security advisories and CVE assignments. More Detail
2024/05/18	CCSLAB 20th Anniversary Event
Event photos
2022/04/22	CCSLAB got the excellence award for the IITP R&D project exchange meeting
CCSLAB got the excellence award for the IITP R&D project exchange meeting with the "Development of Automated Vulnerability Discovery Technologies for Blockchain Platform Security" project. Picture
2021/09/08	Seunghoon's paper, V0Finder (SECURITY 2021), is introduced as news articles in Boan News and Professor Newspaper.
The articles introduce the research results of V0Finder, which discovers the Vulnerability Zero (VZ, the software where a vulnerability first originated) of software vulnerabilities, and the importance of discovering VZs in the perspective of prompt vulnerability detection and patching process. (https://www.boannews.com/media/view.asp?idx=100545, and http://www.kyosu.net/news/articleView.html?idxno=76034)
2021/02/19	Seunghoon's paper, CENTRIS (ICSE 2021), is introduced as a news article in The Daily Swig.
The article introduces the research results of CENTRIS, which identifies modified OSS components accounting for 95% real-world popular OSS ecosystem, and its significance in terms of security and the software supply chain management. (https://portswigger.net/daily-swig/centris-new-tool-helps-prevent-software-supply-chain-attacks-by-flagging-modified-open-source-components)

More News.......

Registered CVEs

35	2024/02/07	CVE-2024-25454	Heewon Park, Choongin Lee
34	2024/02/07	CVE-2024-25453	Heewon Park, Choongin Lee
33	2024/02/07	CVE-2024-25452	Heewon Park, Choongin Lee
32	2024/02/07	CVE-2024-25451	Heewon Park, Choongin Lee
31	2024/02/07	CVE-2024-25450	Choongin Lee, Heewon Park
29	2024/02/07	CVE-2024-25448	Choongin Lee, Heewon Park
28	2024/02/07	CVE-2024-25447	Choongin Lee, Heewon Park
27	2024/02/07	CVE-2024-25446	Heewon Park, Choongin Lee
26	2024/02/07	CVE-2024-25445	Heewon Park, Choongin Lee

More CVEs.......

Publication

2025/01/01	A large-scale analysis of the effectiveness of publicly reported security patches, Computers & Security	Seunghoon Woo
2024/09/16	BLOOMFUZZ : Unveiling Bluetooth L2CAP Vulnerabilities via State Cluster Fuzzing with Target-Oriented State Machines, European Symposium on Research in Computer Security (ESORICS)	Pyeongju Ahn
2024/09/16	PRETT2: Discovering HTTP/2 DoS Vulnerabilities via Protocol Reverse Engineering, European Symposium on Research in Computer Security (ESORICS)	Choongin Lee
2024/04/19	CNEPS: A Precise Approach for Examining Dependencies among Third-Party C/C++ Open-Source Components, IEEE/ACM Int'l Conf. on Software Engineering (ICSE)	Yoonjong Na
2024/02/19	METHOD AND APPARATUS FOR DETECTING PROPAGATION OF SECURITY VULNERABILITIES OF OPEN SOURCE SOFTWARE INHERENT IN COMPONENTS OF TARGET SOFTWARE	Seunghoon Woo
2024/02/05	APPARATUS AND METHOD FOR PERFORMING FUZZING	Heejo Lee
2023/12/05	METHOD FOR IDENTIFYING OPEN-SOURCE SOFTWARE COMPONENTS AT THE SOURCE-CODE LEVEL	Heejo Lee
2023/08/09	V1SCAN: Discovering 1-day Vulnerabilities in Reused C/C++ Open-source Software Components Using Code Classification Techniques, USENIX Security Symposium	Seunghoon Woo
2023/07/03	Forensic integrity verification of video recordings based on MTS files, Journal of Forensic Sciences	Kyusun Shim
2023/06/12	ZMAD: Lightweight Model-Based Anomaly Detection for the Structured Z-Wave Protocol, IEEE Access	Carlos Kayembe Nkuba
2023/05/15	AutoMetric: Towards Measuring Open-Source Software Quality Metrics Automatically, The 4th ACM/IEEE International Conference on Automation of Software Test (AST)	Taejun Lee

More Publication...