Heng Yin Carnegie Mellon University CIC Hall 2131F 4720 Forbes Avenue Pittsburgh, PA 15213

My research interests lie in computer and network security. My current focus is computer security. In particular, I'm working on binary analysis, especially for the detection and analysis of malicious code. I have also worked on network security topics, such as IPsec, Email Spam, and BGP security.

I am a doctoral student in the computer science department at College of William and Mary. I am supervised by Dr. Haining Wang and Dr. Dawn Song. Currently, I am visiting Carnegie Mellon University, and participating the BitBlaze project.

Before coming to WM, I received BA and MS in Computer Science from the Huazhong University of Science and Technology, in China.

Publications

1. Thwarting Email Spam Laundering.
   By Mengjun Xie, Heng Yin, and Haining Wang
   To appear in ACM Transactions on Information and System Security (TISSEC), 2008

2. HookFinder: Identifying and Understanding Malware Hooking Behaviors. PDF BiBTeX
   By Heng Yin, Zhenkai Liang, and Dawn Song
   To appear in the Proceedings of the 15th Annual Network and Distributed System Security Symposium (NDSS'08), San Diego, CA, February 2008

3. Renovo: A Hidden Code Extractor for Packed Executables. PDF BiBTeX
   By Min Gyung Kang, Pongsin Poosankam, and Heng Yin
   Appeared in the 5th ACM Workshop on Recurring Malcode (WORM'07), Alexandria, VA, November 2007.

4. Polyglot: Automatic Extraction of Protocol Message Format using Dynamic Binary Analysis. PDF BiBTeX
   By Juan Caballero, Heng Yin, Zhenkai Liang, and Dawn Song
   Appeared in the Proceedings of the 14th ACM Conference on Computer and Communication Security (CCS'07), Alexandria, VA, October 2007.

5. Panorama: Capturing System-wide Information Flow for Malware Detection and Analysis. PDF BiBTeX
   By Heng Yin, Dawn Song, Manuel Egele, Christopher Kruegel, and Engin Kirda
   Appeared in the Proceedings of the 14th ACM Conference on Computer and Communication Security (CCS'07), Alexandria, VA, October 2007.

6. Securing BGP through Keychain-based Signatures. PDF BiBTeX
   By Heng Yin, Bo Sheng, Haining Wang, and Jianping Pan
   Appeared in the Proceedings of the Fifteenth IEEE International Workshop on Quality of Service (IWQoS'07), Chicago, IL, June 2007.

7. Dynamic Spyware Analysis. PDF BibTeX
   By Manuel Egele, Christopher Kruegel, Engin Kirda, Heng Yin, and Dawn Song
   Proceedings of the 2007 USENIX Annual Technical Conference (Usenix'07), Santa Clara, CA, June 2007.

8. Building an Application-aware IPsec Policy System.
   By Heng Yin and Haining Wang
   To appear in The IEEE/ACM Transaction on Networking.
   * This is the journal version of our Security'05 paper.

9. An Effective Defense Against Email Spam Laundering. PDF BiBTeX
   By Mengjun Xie, Heng Yin, and Haining Wang
   Proceedings of the ACM Computer and Communications Security (CCS'06), Alexandra, VA, October 2006

10. Building an Application-aware IPsec Policy System. PDF BiBTeX
    By Heng Yin and Haining Wang
    Proceedings of the USENIX Security Symposium (Security'05), Baltimore, MD, August 2005

1. Automatically Identifying Trigger-based Behavior in Malware
   By David Brumley, Cody Hartwig, Zhenkai Liang, James Newsome, Pongsin Poosankam, Dawn Song, and Heng Yin
   Book chapter in ``Botnet Analysis in Defense", Editors Wenke Lee et. al., 2007.

Software

• IPSAPPOL: A prototype of Application-aware IPsec Policy System on Linux 2.6 (Use at your own risk!)

Honors

• Sigcomm 2005 Student Traval Grant, 2005

• USENIX Security Symposium 2005 Student Stipend Award, 2005