Faculty

Prof. WU Daoyuan 吳道遠教授

Adjunct Assistant Professor (MIEEE, MACM)
Education: BEng (NUPT), MPhil (PolyU), PhD (SMU)
Research Area: Cryptography, Security and Privacy; Internet Engineering and Networked Applications
Contact
Email: dywu [@] ie.cuhk.edu.hk

Website

Research Interests

  • Mobile System Security
  • Blockchain and FinTech
  • Web Privacy Research
  • Network Measurement
  • Static and Dynamic Analysis
  • Mining/Learning for Security

Courses Taught

  • IERG4130 Introduction to Cyber Security
  • IEMS5710 Cryptography, Information Security and Privacy
  • IEMS5722 Mobile Network Programming and Distributed Server Architecture

Biography

Daoyuan Wu served as a Research Assistant Professor in the Department of Information Engineering at The Chinese University of Hong Kong (CUHK) from 2019 to 2022. Prior to CUHK, Daoyuan earned his PhD degree in 2019 from Singapore Management University (SMU) in the School of Computing and Information Systems. Before pursuing his PhD in Singapore, Daoyuan received the M.Phil. from The Hong Kong Polytechnic University in 2015 and B.E. from Nanjing University of Posts and Telecommunications in 2011.

Daoyuan is broadly interested in systems and network security, with a focus on vulnerability and privacy research. His research methodology includes system building, program analysis, code mining, and network measurement. In particular, Daoyuan is one of the pioneers in using on-device app crowdsourcing for security and networking research. He is also an expert in developing practical Android static analysis, for which he is leading a long-term project on using search-based static analysis for Android security. Besides publishing papers in top-tier venues (e.g., NDSS, ATC, and DSN), Daoyuan has reported many app vulnerabilities on both Android and iOS (over 60 CVEs), as well as ~10 system issues in Android (e.g., CVE-2014-7224) and one in iOS (CVE-2015-5921). Currently, he is leading the Vulnerability and Privacy Research (VPR) Lab: https://github.com/VPRLab.

Recent Selected Publications

  • Xiao Yi, Yuzhou Fang, Daoyuan Wu*, and Lingxiao Jiang. BlockScope: Detecting and Investigating Propagated Vulnerabilities and Their Patching Processes in Forked Blockchain Projects. In Proc. ISOC Network and Distributed System Security Symposium (NDSS), 2023. [https://tinyurl.com/block-scope]
  • Xiao Yi, Daoyuan Wu*, Lingxiao Jiang, Yuzhou Fang, Kehuan Zhang, and Wei Zhang. An Empirical Study of Blockchain System Vulnerabilities: Modules, Types, and Patterns. In Proc. ACM European Software Engineering Conference and Symposium on the Foundations of Software Engineering (FSE), 2022. [https://github.com/VPRLab/BlkVulnDataset]
  • Daoyuan Wu, Debin Gao, Robert H. Deng, and Rocky K. C. Chang. When Program Analysis Meets Bytecode Search: Targeted and Efficient Inter-procedural Analysis of Modern Android Apps in BackDroid. In Proc. IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), 2021. [https://github.com/VPRLab/BackDroid]
  • Daoyuan Wu, Debin Gao, Rocky K. C. Chang, En He, Eric K. T. Cheng, and Robert H. Deng. Understanding Open Ports in Android Applications: Discovery, Diagnosis, and Security Assessment. In Proc. ISOC Network and Distributed System Security Symposium (NDSS), 2019.
  • Daoyuan Wu, Rocky K. C. Chang, Weichao Li, Eric K. T. Cheng, and Debin Gao. MopEye: Opportunistic Monitoring of Per-app Mobile Network Performance. In Proc. USENIX Annual Technical Conference (ATC), 2017. [https://mopeye.github.io/]