Computer & Communication Security Laboratory (CCS Lab) was established in 2004 for the purpose of studying security problems and proper countermeasures. The members of CCS Lab are pursuing research on system security and network security. We take part in activities related to computer security and cooperate with professors and researchers inside and outside the country for research advances. We continue to publish the results of our researches and projects in the major international journals and conferences.

CCSLAB - Main

News

2024/07/10 Prof. Lee delivered a talk as a panelist in OECD Global Forum on Digital Security for Prosperity
Professor delivered a talk as a panelist in order to discuss open source security and security-by-design, along with renowned policy/technical experts.
(https://www.oecd-events.org/global-forum-digital-security-for-prosperity/speaker/4d9e5217-861a-ef11-86d2-6045bd9c1849/heejo-lee)
(Draft Agenda: OECD GF on Digital Security)
2024/07/08 Dr. Nkuba Carlos Uncovered 28 Denial of Service (DoS) Vulnerabilities in Z-Wave IoT Smart Home Devices with New Research
Groundbreaking research by Dr. Nkuba Carlos and Jimin Kang uncovered 28 vulnerabilities in Z-Wave IoT smart home devices, leading to security advisories and CVE assignments.
More Detail
2024/05/18 CCSLAB 20th Anniversary Event
Event photos
2022/04/22 CCSLAB got the excellence award for the IITP R&D project exchange meeting
CCSLAB got the excellence award for the IITP R&D project exchange meeting with the "Development of Automated Vulnerability Discovery Technologies for Blockchain Platform Security" project.
Picture
2021/09/08 Seunghoon's paper, V0Finder (SECURITY 2021), is introduced as news articles in Boan News and Professor Newspaper.
The articles introduce the research results of V0Finder, which discovers the Vulnerability Zero (VZ, the software where a vulnerability first originated) of software vulnerabilities, and the importance of discovering VZs in the perspective of prompt vulnerability detection and patching process.
(https://www.boannews.com/media/view.asp?idx=100545, and
http://www.kyosu.net/news/articleView.html?idxno=76034)
2021/02/19 Seunghoon's paper, CENTRIS (ICSE 2021), is introduced as a news article in The Daily Swig.
The article introduces the research results of CENTRIS, which identifies modified OSS components accounting for 95% real-world popular OSS ecosystem, and its significance in terms of security and the software supply chain management.
(https://portswigger.net/daily-swig/centris-new-tool-helps-prevent-software-supply-chain-attacks-by-flagging-modified-open-source-components)

More News.......

Registered CVEs

35 2024/02/07 CVE-2024-25454 Heewon Park, Choongin Lee
34 2024/02/07 CVE-2024-25453 Heewon Park, Choongin Lee
33 2024/02/07 CVE-2024-25452 Heewon Park, Choongin Lee
32 2024/02/07 CVE-2024-25451 Heewon Park, Choongin Lee
31 2024/02/07 CVE-2024-25450 Choongin Lee, Heewon Park
29 2024/02/07 CVE-2024-25448 Choongin Lee, Heewon Park
28 2024/02/07 CVE-2024-25447 Choongin Lee, Heewon Park
27 2024/02/07 CVE-2024-25446 Heewon Park, Choongin Lee
26 2024/02/07 CVE-2024-25445 Heewon Park, Choongin Lee

More CVEs.......

Publication

2024/09/16 BLOOMFUZZ : Unveiling Bluetooth L2CAP Vulnerabilities via State Cluster Fuzzing with Target-Oriented State Machines, European Symposium on Research in Computer Security (ESORICS) Pyeongju Ahn
2024/09/16 PRETT2: Discovering HTTP/2 DoS Vulnerabilities via Protocol Reverse Engineering, European Symposium on Research in Computer Security (ESORICS) Choongin Lee
2024/04/19 CNEPS: A Precise Approach for Examining Dependencies among Third-Party C/C++ Open-Source Components, IEEE/ACM Int'l Conf. on Software Engineering (ICSE) Yoonjong Na
2024/02/19 METHOD AND APPARATUS FOR DETECTING PROPAGATION OF SECURITY VULNERABILITIES OF OPEN SOURCE SOFTWARE INHERENT IN COMPONENTS OF TARGET SOFTWARE Seunghoon Woo
2024/02/05 APPARATUS AND METHOD FOR PERFORMING FUZZING Heejo Lee
2023/12/05 METHOD FOR IDENTIFYING OPEN-SOURCE SOFTWARE COMPONENTS AT THE SOURCE-CODE LEVEL Heejo Lee
2023/08/09 V1SCAN: Discovering 1-day Vulnerabilities in Reused C/C++ Open-source Software Components Using Code Classification Techniques, USENIX Security Symposium Seunghoon Woo
2023/07/03 Forensic integrity verification of video recordings based on MTS files, Journal of Forensic Sciences Kyusun Shim
2023/06/12 ZMAD: Lightweight Model-Based Anomaly Detection for the Structured Z-Wave Protocol, IEEE Access Carlos Kayembe Nkuba
2023/05/15 AutoMetric: Towards Measuring Open-Source Software Quality Metrics Automatically, The 4th ACM/IEEE International Conference on Automation of Software Test (AST) Taejun Lee
2023/04/17 Web 3.0 시대 핵심기술 블록체인 보안 위협 전망 및 분석, KISA Insight 우승훈

More Publication...