Computer & Communication Security Laboratory (CCS Lab) was established in 2004 for the purpose of studying security problems and proper countermeasures. The members of CCS Lab are pursuing research on system security and network security. We take part in activities related to computer security and cooperate with professors and researchers inside and outside the country for research advances. We continue to publish the results of our researches and projects in the major international journals and conferences.

CCSLAB - Main

News

2022/04/22 CCSLAB got the excellence award for the IITP R&D project exchange meeting
CCSLAB got the excellence award for the IITP R&D project exchange meeting with the "Development of Automated Vulnerability Discovery Technologies for Blockchain Platform Security" project.
Picture
2021/09/08 Seunghoon's paper, V0Finder (SECURITY 2021), is introduced as news articles in Boan News and Professor Newspaper.
The articles introduce the research results of V0Finder, which discovers the Vulnerability Zero (VZ, the software where a vulnerability first originated) of software vulnerabilities, and the importance of discovering VZs in the perspective of prompt vulnerability detection and patching process.
(https://www.boannews.com/media/view.asp?idx=100545, and
http://www.kyosu.net/news/articleView.html?idxno=76034)
2021/02/19 Seunghoon's paper, CENTRIS (ICSE 2021), is introduced as a news article in The Daily Swig.
The article introduces the research results of CENTRIS, which identifies modified OSS components accounting for 95% real-world popular OSS ecosystem, and its significance in terms of security and the software supply chain management.
(https://portswigger.net/daily-swig/centris-new-tool-helps-prevent-software-supply-chain-attacks-by-flagging-modified-open-source-components)
2020/09/25 It has been published as a special feature article in the 2020 issue of 'Engineering Journal' on the theme of 'Going to Korea University Blockchain Research Institute'.
Pre-checking and preventing security vulnerabilities caused by open source code reuse in the block chain has been introduced.
Picture
2020/07/13 MBC news regarding the safety problem by the security vulnerabilities is reported at July 13, 2020.
One message can stop a fast moving scooter remotely which can be fatal to the user.
The news story is based on the analysis by CCS lab members.
(https://imnews.imbc.com/replay/2020/nwdesk/article/5841148_32524.html)
(Video with English subtitles: https://youtu.be/H23Ezt5QGq4")
2018/09/14 CCSLAB got the 1st prize for UDC2018 contest.
CCSLAB got the first prize for the UDC2018 contest with SmartWall, the firewall system for the smart contract.
Picture

More News.......

Registered CVEs

2024/02/09 CVE-2024-25450 Choongin Lee, Heewon Park
2024/02/09 CVE-2024-25451 Heewon Park, Choongin Lee
2024/02/09 CVE-2024-25452 Heewon Park, Choongin Lee
2024/02/09 CVE-2024-25453 Heewon Park, Choongin Lee
2024/02/09 CVE-2024-25454 Heewon Park, Choongin Lee
2024/02/09 CVE-2024-25442 Heewon Park, Choongin Lee
2024/02/09 CVE-2024-25445 Heewon Park, Choongin Lee
2024/02/09 CVE-2024-25448 Choongin Lee, Heewon Park
2024/02/09 CVE-2024-25447 Choongin Lee, Heewon Park

More CVEs.......

Publication

2024/09/16 BLOOMFUZZ : Unveiling Bluetooth L2CAP Vulnerabilities via State Cluster Fuzzing with Target-Oriented State Machines, European Symposium on Research in Computer Security (ESORICS) Pyeongju Ahn
2024/09/16 PRETT2: Discovering HTTP/2 DoS Vulnerabilities via Protocol Reverse Engineering, European Symposium on Research in Computer Security (ESORICS) Choongin Lee
2024/04/14 CNEPS: A Precise Approach for Examining Dependencies among Third-Party C/C++ Open-Source Components, IEEE/ACM Int'l Conf. on Software Engineering (ICSE) Yoonjong Na
2024/02/19 METHOD AND APPARATUS FOR DETECTING PROPAGATION OF SECURITY VULNERABILITIES OF OPEN SOURCE SOFTWARE INHERENT IN COMPONENTS OF TARGET SOFTWARE Seunghoon Woo
2024/02/05 APPARATUS AND METHOD FOR PERFORMING FUZZING Heejo Lee
2023/12/05 METHOD FOR IDENTIFYING OPEN-SOURCE SOFTWARE COMPONENTS AT THE SOURCE-CODE LEVEL Heejo Lee
2023/08/09 V1SCAN: Discovering 1-day Vulnerabilities in Reused C/C++ Open-source Software Components Using Code Classification Techniques, USENIX Security Symposium Seunghoon Woo
2023/07/03 Forensic integrity verification of video recordings based on MTS files, Journal of Forensic Sciences Kyusun Shim
2023/06/12 ZMAD: Lightweight Model-Based Anomaly Detection for the Structured Z-Wave Protocol, IEEE Access Carlos Kayembe Nkuba
2023/05/15 AutoMetric: Towards Measuring Open-Source Software Quality Metrics Automatically, The 4th ACM/IEEE International Conference on Automation of Software Test (AST) Taejun Lee
2023/04/17 Web 3.0 시대 핵심기술 블록체인 보안 위협 전망 및 분석, KISA Insight 우승훈

More Publication...