Computer and Communication Security Laboratory

Computer & Communication Security Laboratory (CCS Lab) was established in 2004 for the purpose of studying security problems and proper countermeasures. The members of CCS Lab are pursuing research on system security and network security. We take part in activities related to computer security and cooperate with professors and researchers inside and outside the country for research advances. We continue to publish the results of our researches and projects in the major international journals and conferences.

CCSLAB - Main

News

2024/07/10	Prof. Lee delivered a talk as a panelist in OECD Global Forum on Digital Security for Prosperity
Professor delivered a talk as a panelist in order to discuss open source security and security-by-design, along with renowned policy/technical experts. (https://www.oecd-events.org/global-forum-digital-security-for-prosperity/speaker/4d9e5217-861a-ef11-86d2-6045bd9c1849/heejo-lee) (Draft Agenda: OECD GF on Digital Security)
2024/05/18	CCSLAB 20th Anniversary Event
Event photos
2022/04/22	CCSLAB got the excellence award for the IITP R&D project exchange meeting
CCSLAB got the excellence award for the IITP R&D project exchange meeting with the "Development of Automated Vulnerability Discovery Technologies for Blockchain Platform Security" project. Picture
2021/09/08	Seunghoon's paper, V0Finder (SECURITY 2021), is introduced as news articles in Boan News and Professor Newspaper.
The articles introduce the research results of V0Finder, which discovers the Vulnerability Zero (VZ, the software where a vulnerability first originated) of software vulnerabilities, and the importance of discovering VZs in the perspective of prompt vulnerability detection and patching process. (https://www.boannews.com/media/view.asp?idx=100545, and http://www.kyosu.net/news/articleView.html?idxno=76034)
2021/02/19	Seunghoon's paper, CENTRIS (ICSE 2021), is introduced as a news article in The Daily Swig.
The article introduces the research results of CENTRIS, which identifies modified OSS components accounting for 95% real-world popular OSS ecosystem, and its significance in terms of security and the software supply chain management. (https://portswigger.net/daily-swig/centris-new-tool-helps-prevent-software-supply-chain-attacks-by-flagging-modified-open-source-components)
2020/09/25	It has been published as a special feature article in the 2020 issue of 'Engineering Journal' on the theme of 'Going to Korea University Blockchain Research Institute'.
Pre-checking and preventing security vulnerabilities caused by open source code reuse in the block chain has been introduced. Picture

More News.......

Registered CVEs

2024/02/09	CVE-2024-25450	Choongin Lee, Heewon Park
2024/02/09	CVE-2024-25451	Heewon Park, Choongin Lee
2024/02/09	CVE-2024-25452	Heewon Park, Choongin Lee
2024/02/09	CVE-2024-25453	Heewon Park, Choongin Lee
2024/02/09	CVE-2024-25454	Heewon Park, Choongin Lee
2024/02/09	CVE-2024-25442	Heewon Park, Choongin Lee
2024/02/09	CVE-2024-25445	Heewon Park, Choongin Lee
2024/02/09	CVE-2024-25448	Choongin Lee, Heewon Park
2024/02/09	CVE-2024-25447	Choongin Lee, Heewon Park

More CVEs.......

Publication

2024/09/16	BLOOMFUZZ : Unveiling Bluetooth L2CAP Vulnerabilities via State Cluster Fuzzing with Target-Oriented State Machines, European Symposium on Research in Computer Security (ESORICS)	Pyeongju Ahn
2024/09/16	PRETT2: Discovering HTTP/2 DoS Vulnerabilities via Protocol Reverse Engineering, European Symposium on Research in Computer Security (ESORICS)	Choongin Lee
2024/04/19	CNEPS: A Precise Approach for Examining Dependencies among Third-Party C/C++ Open-Source Components, IEEE/ACM Int'l Conf. on Software Engineering (ICSE)	Yoonjong Na
2024/02/19	METHOD AND APPARATUS FOR DETECTING PROPAGATION OF SECURITY VULNERABILITIES OF OPEN SOURCE SOFTWARE INHERENT IN COMPONENTS OF TARGET SOFTWARE	Seunghoon Woo
2024/02/05	APPARATUS AND METHOD FOR PERFORMING FUZZING	Heejo Lee
2023/12/05	METHOD FOR IDENTIFYING OPEN-SOURCE SOFTWARE COMPONENTS AT THE SOURCE-CODE LEVEL	Heejo Lee
2023/08/09	V1SCAN: Discovering 1-day Vulnerabilities in Reused C/C++ Open-source Software Components Using Code Classification Techniques, USENIX Security Symposium	Seunghoon Woo
2023/07/03	Forensic integrity verification of video recordings based on MTS files, Journal of Forensic Sciences	Kyusun Shim
2023/06/12	ZMAD: Lightweight Model-Based Anomaly Detection for the Structured Z-Wave Protocol, IEEE Access	Carlos Kayembe Nkuba
2023/05/15	AutoMetric: Towards Measuring Open-Source Software Quality Metrics Automatically, The 4th ACM/IEEE International Conference on Automation of Software Test (AST)	Taejun Lee
2023/04/17	Web 3.0 시대 핵심기술 블록체인 보안 위협 전망 및 분석, KISA Insight	우승훈

More Publication...