| 2024/07/10 | Prof. Lee delivered a talk as a panelist in OECD Global Forum on Digital Security for Prosperity | |
| Professor delivered a talk as a panelist in order to discuss open source security
and security-by-design, along with renowned policy/technical experts.
(https://www.oecd-events.org/global-forum-digital-security-for-prosperity/speaker/4d9e5217-861a-ef11-86d2-6045bd9c1849/heejo-lee) (Draft Agenda: OECD GF on Digital Security) |
||
| 2024/07/08 | Dr. Nkuba Carlos Uncovered 28 Denial of Service (DoS) Vulnerabilities in Z-Wave IoT Smart Home Devices with New Research | |
| Groundbreaking research by Dr. Nkuba Carlos and Jimin Kang uncovered 28 vulnerabilities in Z-Wave IoT smart home devices, leading to security advisories and CVE assignments.
More Detail |
||
| 2024/05/18 | CCSLAB 20th Anniversary Event | |
| Event photos | ||
| 2022/04/22 | CCSLAB got the excellence award for the IITP R&D project exchange meeting | |
| CCSLAB got the excellence award for the IITP R&D project exchange meeting with the "Development of Automated Vulnerability Discovery Technologies for Blockchain Platform Security" project. Picture |
||
| 2021/09/08 | Seunghoon's paper, V0Finder (SECURITY 2021), is introduced as news articles in Boan News and Professor Newspaper. | |
| The articles introduce the research results of V0Finder, which discovers the Vulnerability Zero (VZ, the software where a vulnerability first originated) of software vulnerabilities,
and the importance of discovering VZs in the perspective of prompt vulnerability detection and patching process.
(https://www.boannews.com/media/view.asp?idx=100545, and http://www.kyosu.net/news/articleView.html?idxno=76034) |
||
| 2021/02/19 | Seunghoon's paper, CENTRIS (ICSE 2021), is introduced as a news article in The Daily Swig. | |
| The article introduces the research results of CENTRIS, which identifies modified OSS components accounting for 95% real-world popular OSS ecosystem, and its significance in terms of security and the software supply chain management.
(https://portswigger.net/daily-swig/centris-new-tool-helps-prevent-software-supply-chain-attacks-by-flagging-modified-open-source-components) |
||
| 42 | 2024/12/10 | CVE-2024-50931 | Nkuba Kayembe Carlos, Jimin Kang |
| 41 | 2024/12/10 | CVE-2024-50930 | Nkuba Kayembe Carlos, Jimin Kang |
| 40 | 2024/12/10 | CVE-2024-50929 | Nkuba Kayembe Carlos, Jimin Kang |
| 39 | 2024/12/10 | CVE-2024-50928 | Nkuba Kayembe Carlos, Jimin Kang |
| 38 | 2024/12/10 | CVE-2024-50924 | Nkuba Kayembe Carlos, Jimin Kang |
| 37 | 2024/12/10 | CVE-2024-50921 | Nkuba Kayembe Carlos, Jimin Kang |
| 36 | 2024/12/10 | CVE-2024-50920 | Nkuba Kayembe Carlos, Jimin Kang |
| 35 | 2024/02/09 | CVE-2024-25454 | Heewon Park, Choongin Lee |
| 34 | 2024/02/09 | CVE-2024-25453 | Heewon Park, Choongin Lee |
| 2026/03/23 | Human vs AI: Insecure Use of Security-sensitive Functions in AI-generated Code in Comparison to Human-written Code, ACM/SIGAPP Symposium On Applied Computing (ACM SAC) | Joonku Lee |
| 2026/03/23 | CovBooster: Coverage Booster for Binary Code Clone Detection by Reduced Signatures, ACM/SIGAPP Symposium On Applied Computing (ACM SAC) | Jeongwoo Lee |
| 2025/11/16 | IMUFUZZER: Resilience-based Discovery of Signal Injection Attacks on Robotic Vehicles, IEEE/ACM Int'l Conf. on Automated Software Engineering (ASE) | Sudharssan Mohan |
| 2025/09/24 | METHOD AND APPARATUS FOR IDENTIFYING VULNERABLE SOFTWARE VERSIONS THROUGH SEMANTIC PAIR MAPPING BASED ON CODE LINE DEPENDENCY USING SECURITY PATCHES | Heejo Lee |
| 2025/08/27 | Scaling SCIERA: A Journey Through the Deployment of a Next-generation Network, Int'l Conf. on ACM SIGCOMM | Wirz, Gartner, Bommel |
| 2025/06/23 | ZCOVER: Uncovering Z-Wave Controller Vulnerabilities Through Systematic Security Analysis of Application Layer Implementation, IEEE/IFIP Int'l Conf. on Dependable Systems and Networks (DSN) | Carlos Nkuba Kayembe |
| 2025/04/16 | METHOD FOR IDENTIFYING OPENSOURCE SOFTWARE COMPONENTS AT THE SOURCECODE LEVEL | Heejo Lee |
| 2025/01/01 | A large-scale analysis of the effectiveness of publicly reported security patches, Computers & Security | Seunghoon Woo |
| 2024/09/16 | BLOOMFUZZ : Unveiling Bluetooth L2CAP Vulnerabilities via State Cluster Fuzzing with Target-Oriented State Machines, European Symposium on Research in Computer Security (ESORICS) | Pyeongju Ahn |
| 2024/09/16 | PRETT2: Discovering HTTP/2 DoS Vulnerabilities via Protocol Reverse Engineering, European Symposium on Research in Computer Security (ESORICS) | Choongin Lee |
| 2024/08/23 | METHOD AND APPARATUS FOR DETERMINING DEPENDENCIES BETWEEN COMPONENTS OF REUSED OPEN SOURCE SOFTWARE | Heejo Lee |