Wenbo Shen

Wenbo Shen

ZJU100 Professor, Zhejiang University

Short Bio

Dr. Wenbo Shen is a ZJU100 Professor at Zhejiang University. His research interests are software and system security, including operating system security, software supply chain security, and container security. He has published over 40 research papers at top-tier academic conferences and won three distinguished paper awards (NDSS 16, AsiaCCS 17, ACSAC 22). His research works on operating system protection have been deployed on hundreds of millions of devices.


Background

  • 2019 - Now, Zhejiang University (China), College of Computer Science and Technology, ZJU100 Professor
  • 2015 - 2019, Samsung Research America (USA), Tech Lead of Kernel Protection (RKP)
  • 2010 - 2015, North Carolina State University (USA), Department of Computer Science, Ph.D
  • 2006 - 2010, Harbin Institute of Technology (China), School of Software Engineering, B.Eng


    • Recent Publications

    [Full list in Publications]

  • Take Over the Whole Cluster: Attacking Kubernetes via Excessive Permissions of Third-party Applications
    Nanzi Yang, Wenbo Shen, Jinku Li, Xunqi Liu, Xin Guo, Jianfeng Ma
    ACM CCS 23

  • A Hybrid Alias Analysis and Its Application to Global Variable Protection in the Linux Kernel
     Guoren Li, Hang Zhang, Jinmeng Zhou, Wenbo Shen, Yulei Sui, Zhiyun Qian
     USENIX Security Symposium. 2023.

  • Demystifying Pointer Authentication on Apple M1
     Zechao Cai, Jiaxun Zhu, Wenbo Shen, Yutian Yang, Rui Chang, Yu Wang, Jinku Li, Kui Ren
     USENIX Security Symposium. 2023.

  • Attacks are Forwarded: Breaking the Isolation of MicroVM-based Containers Through Operation Forwarding
     Jietao Xiao, Nanzi Yang, Wenbo Shen, Jinku Li, Xin Guo, Zhiqiang Dong, Fei Xie, Jianfeng Ma
     USENIX Security Symposium. 2023.

  • Ambush from All Sides: Understanding Security Threats in Open-Source Software CI/CD Pipelines
     Ziyue Pan, Wenbo Shen, Xingkai Wang, Yutian Yang, Rui Chang, Yao Liu, Chengwei Liu, Yang Liu, Kui Ren
     Transactions on Dependable and Secure Computing (TDSC). 2023

  • VDom: Fast and Unlimited Virtual Domains on Multiple Architectures
     Ziqi Yuan, Siyu Hong, Rui Chang, Yajin Zhou, Wenbo Shen, Kui Ren
     Architectural Support for Programming Languages and Operating Systems (ASPLOS). 2023.

  • Making Memory Account Accountable: Analyzing and Detecting Memory Missing-account bugs for Container Platforms
     Yutian Yang, Wenbo Shen, Xun Xie, Kangjie Lu, Mingsen Wang, Tianyu Zhou, Chenggang Qin, Wang Yu, Kui Ren
     Annual Computer Security Applications Conference (ACSAC). 2022.

  • Automatic Permission Check Analysis for Linux Kernel
     Jinmeng Zhou, Tong Zhang, Wenbo Shen, Dongyoon Lee, Changhee Jung, Ahmed Azab, Ruowen Wang, Peng Ning, Kui Ren
     Transactions on Dependable and Secure Computing (TDSC). 2022

  • RegVault: Hardware Assisted Selective Data Randomization for Operating System Kernels
     Jinyan Xu, Haoran Lin, Ziqi Yuan, Wenbo Shen, Yajin Zhou, Rui Chang, Lei Wu, Kui Ren
     ACM/IEEE Design Automation Conference (DAC). 2022.


    • Awards

  • Distinguished Paper Award by Annual Computer Security Applications Conference (ACSAC), 2022
  • Distinguished Paper Award by ACM Asia Conference on Computer and Communications Security (ASIACCS), ACM SIGSAC, 2017.
  • Distinguished Paper Award by Network and Distributed System Security Symposium (NDSS), 2016.