GT Home > COE Home > ECE Home > Research > Labs > Communications Assurance and Performance Group
Georgia Tech

Binbin Zhao

photo

Email Address: email

Education:
  • B.S., Computer Science & Technology, Zhejiang University, 2018
Research Interests:
  • IoT Security
  • CAPTCHA
Hobbies:
  • Magic
  • Movies
Publications:
  • Binbin Zhao, Shouling Ji, Jiacheng Xu, Yuan Tian, Qiuyang Wei, Qinying Wang, Chenyang Lyu, Xuhong Zhang, Changting Lin, Jingzheng Wu, Raheem Beyah. "One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware." In the IEEE Transactions on Dependable and Secure Computing, 2023
  • Binbin Zhao, Shouling Ji, Weihan Lee, Changting Lin, Haiqin Weng, Jingzheng Wu, Pan Zhou, Liming Fang, and Raheem Beyah. "A Large-scale Empirical Study on the Vulnerability of Deployed IoT Devices". In the IEEE Transactions on Dependable and Secure Computing, Vol. 19, No. 3, pp. 1826-1840, November 2020
  • Boyu Chang, Binbin Zhao, Qiao Zhang, Peiyu Liu, Yuan Tian, Raheem Beyah, and Shouling Ji. "FirmRCA: Towards Post-Fuzzing Analysis on ARM Embedded Firmware with Efficient Event-based Fault Localization." In the 46th IEEE Symposium on Security and Privacy (S&P 2025).
  • Qinying Wang, Boyu Chang, Shouling Ji, Yuan Tian, Xuhong Zhang, Binbin Zhao, Gaoning Pan, Chenyang Lyu, Mathias Payer, Wenhai Wang, and Raheem Beyah. "SyzTrust: State-aware Fuzzing on Trusted OS Designed for IoT Devices." In the 45th IEEE Symposium on Security and Privacy (S&P 2024).
  • Binbin Zhao, Shouling Ji, Xuhong Zhang, Yuan Tian, Qinying Wang, Yuwen Pu, Chenyang Lyu, and Raheem Beyah. "UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware." In the 32nd USENIX Security Symposium (USENIX Security 23).
  • Chenyang Lyu, Jiacheng Xu, Shouling Ji, Xuhong Zhang, Qinying Wang, Binbin Zhao, Gaoning Pan, Wei Cao, Peng Chen, and Raheem Beyah. "MINER: A Hybrid Data-Driven Approach for REST API Fuzzing." In the 32nd USENIX Security Symposium (USENIX Security 23).
  • Binbin Zhao, Shouling Ji, Jiacheng Xu, Yuan Tian, Qiuyang Wei, Qinying Wang, Chenyang Lyu, Xuhong Zhang, Changting Lin, Jingzheng Wu, and Raheem Beyah. "A Large-Scale Empirical Analysis of the Vulnerabilities Introduced by Third-party Components in IoT Firmware." In the 31st International Symposium on Software Testing and Analysis (ISSTA 2022).
  • Chenyang Lyu, Hong Liang, Shouling Ji, Xuhong Zhang, Binbin Zhao, Meng Han, Yun Li, Zhe Wang, Wenhai Wang, and Raheem Beyah. "SLIME: Program-sensitive Energy Allocation for Fuzzing." In the 31st International Symposium on Software Testing and Analysis (ISSTA 2022).
  • Chenyang Lyu, Shouling Ji, Xuhong Zhang, Hong Liang, Binbin Zhao, Kangjie Lu, and Raheem Beyah. "EMS: History-Driven Mutation for Coverage-based Fuzzing." In the 29th Annual Network and Distributed System Security Symposium (NDSS 2022).
  • Qinying Wang, Shouling Ji, Yuan Tian, Xuhong Zhang, Binbin Zhao, Yuhong Kan, Zhaowei Lin, Changting Lin, Shuiguang Deng, Alex X. Liu, and Raheem Beyah. "MPInspector: A Systematic and Automatic Approach for Evaluating the Security of IoT Messaging Protocols." In the 30th USENIX Security Symposium, 2021.
  • Binbin Zhao, Haiqin Weng, Shouling Ji, Jianhai Chen, Ting Wang, Qinming He, and Raheem Beyah. "Towards Evaluating the Security of Image CAPTCHA in the Wild." In the ACM Workshop on Artificial Intelligence and Security (AiSec), Toronto, Canada, October 2018.