Hyerean Jang
Computer Systems Security Research Lab (CSL)
School of Cybersecurity, Korea University
E-mail : [email protected]
🔎 Research interest:
Microarchitectural side-channel attacks, system security, software security
📚 EDUCATION
- Ph.D. in Information Security, Korea University, Korea
- M.S. in Information Security, Korea University, Korea
- B.S. in Mathematics, Chungnam National University, Korea
2021.09 ~ present
2018.03 ~ 2020.02
2013.03 ~ 2017.08
📄 PUBLICATIONS
- Hyerean Jang, Taehun Kim, and Youngjoo Shin, "SysBumps: Exploiting Speculative Execution in System Calls for Breaking KASLR in macOS for Apple Silicon", Black Hat Europe 2024, December 9-12, 2024, London, UK
- Songah Joo, Hyerean Jang, and Youngjoo Shin, "POSTER: Beyond the Filter: Advanced Mimicry Attack to Bypass System Call Filtering", The 40th Annual Computer Security Applications Conference (ACSAC 2024), December 9-13, 2024, Honolulu, Hawaii, USA
- Hyerean Jang, Taehun Kim, Youngjoo Shin, “SysBumps: Exploiting Speculative Execution in System Calls for Breaking KASLR in macOS for Apple Silicon”, The 31st ACM Conference on Computer and Communications Security (CCS 2024), October 14-18, 2024, Salt Lake City, USA
- Hyerean Jang, Youngjoo Shin, "MicroCFI: Microarchitecture-level Control-Flow Restrictions for Spectre Mitigation", IEEE Access, Vol.11, pp.138699-138711, 2023, DOI:10.1109/ACCESS.2023.3340680
- Minseo Kim, Hyerean Jang, Youngjoo Shin, "Avengers, Assemble! Survey of WebAssembly Security Solutions," 2022 IEEE 15th International Conference on Cloud Computing (CLOUD)
- Hyerean Jang, Moon Chan Park, Dong Hoon Lee, "IBV-CFI: Efficient Fine-grained Control-Flow Integrity Preserving CFG Precision", COMPUTERS&SECURITY, (2020)
⚒️ CVE
CVE-2024-54531
Vulnerability in macOS Sequoia versions up to 15.1, allowing an application to bypass Kernel Address Space Layout Randomization (KASLR) [NVD][GitHub]
🏆 AWARD
- 2024.11
- 2022.09
- 2022.07
- 2018.06
Top prize at the Cybersecurity Paper Competition 2024 (”SysBumps: Exploiting Speculative Execution in System Calls for Breaking KASLR in macOS for Apple Silicon”)
Encouragement prize(장려상) in the technology field of the 2022 Cyber Security Research Paper Contest held by KIISC and NIS(”Mitigating Spectre Attacks using Control-Flow Integrity”)
Excellent paper prize(우수 발표 논문상) at KCC 2022 ("Mitigating Spectre Attacks using Control-Flow Integrity")
Excellent paper prize(우수논문상) at CISC-S’18 (”Analysis of Control-Flow Integrity Technique Applied to Dynamic Dispatch of C++”)