[TIFS'25] Xin Zhao, Mu Zhang, Xiaopeng Ke, Yu Pan, Yue Duan, Sheng Zhong and Fengyuan Xu, "DeepVMUnProtect: Neural Network-Based Recovery of VM-Protected Android Apps for Semantics-Aware Malware Detection", in IEEE Transactions on Information Forensics & Security. (2025)
[Paper]
[TDSC'22] Lei Zhao*, Pengcheng Cao, Yue Duan*, Heng Yin, and Jifeng Xuan, "Probabilistic Path Prioritization for Hybrid Fuzzing", in IEEE Transactions on Dependable and Secure Computing. (2022) (* corresponding authors)
[Paper]
[J.UCS'12] JooYoung Lee, Yue Duan, Jae C. Oh, Wenliang Du, Howard Blair, Lusha Wang, and Xing Jin. "Social Network Based Reputation Computation and Document Classification", Journal of Universal Computer Science, 18, no. 4 (2012): 532-553.
Conference Paper
[DSN'26]Shengchen Duan, Yihua Xu, Sheng Zhang, Shen Wang, Yue Duan. "PDLogger: Automated Logging Framework for Practical Software Development", to appear in Proceedings of the 56th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, June 2026.
[DSN'26] Ashok Kasthuri*, Sajad Meisami*, Lingxiao Jiang, Binghui Wang, Yue Duan. "Large-Scale Security Analysis of Multi-Token Smart Contracts: Uncovering Hidden Flaws in Batch Transfers", to appear in Proceedings of the 56th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, June 2026. (* co-first authors)
[USENIX Security'25] Yu Pan, Wanjing Han, Yue Duan, and Mu Zhang. "COLLISIONREPAIR: First-Aid and Automated Patching for Storage Collision Vulnerabilities in Smart Contracts", in Proceedings of the 34rd USENIX Security Symposium, August 2025.
[Paper][Source Code]
[WWW'25]Sajad Meisami, Hugo Dabadie, Song Li, Yuzhe Tang, Yue Duan. "SigScope: Detecting and Understanding Off-Chain Message Signing-related Vulnerabilities in Decentralized Applications", in Proceedings of The 2025 ACM Web Conference, April 2025.
[Paper]
[USENIX Security'24] Shenao Yan, Shen Wang, Yue Duan, Hanbin Hong, Kiho Lee, Doowon Kim, and Yuan Hong. "An LLM-Assisted Easy-to-Trigger Poisoning Attack on Code Completion Models: Injecting Disguised Vulnerabilities against Strong Detection", in Proceedings of the 33rd USENIX Security Symposium, August 2024.
[Paper][Source Code]
[ICSE'24] Jie Hu, Yue Duan, and Heng Yin. "Marco: A Stochastic Asynchronous Concolic Explorer", in Proceedings of the 46th International Conference on Software Engineering, April 2024.
[Paper][Source Code]
[NDSS'24] Lian Gao, Yu Qu, Sheng Yu, Yue Duan, and Heng Yin. "SigmaDiff: Semantics-Aware Deep Graph Matching for Pseudocode Diffing", in Proceedings of the 31st Network and Distributed System Security Symposium, February 2024.
[Paper][Source Code]
[USENIX Security'23]William E Bodell III, Sajad Meisami, and Yue Duan. "Proxy Hunting: Understanding and Characterizing Proxy-based Upgradeable Smart Contracts in Blockchains", in Proceedings of the 32nd USENIX Security Symposium, August 2023.
[Paper][Source Code]
[CCS'22]Yue Duan, Xin Zhao, Yu Pan, Shucheng Li, Minghao Li, Fengyuan Xu, Mu Zhang. "Towards Automated Safety Vetting of Smart Contracts in Decentralized Applications", in Proceedings of the 29st ACM Conference on Computer and Communications Security, November 2022.
[Paper][Source Code]Best Paper Honorable Mention
[NDSS'20]Yue Duan, Xuezixiang Li, Jinghan Wang, and Heng Yin. "DeepBinDiff: Learning Program-Wide Code Representations for Binary Diffing", in Proceedings of the 27th Network and Distributed System Security Symposium, February 2020.
[Paper][Presentation][Source Code]
[RAID'19]Yue Duan, Lian Gao, Jie Hu, and Heng Yin. "Automatic Generation of Non-intrusive Updates for Third-Party Libraries in Android Applications", in Proceedings of the 22nd International Symposium on Research on Attacks, Intrusions and Defenses, September 2019.
[Paper]
[RAID'19] Jinghan Wang, Yue Duan, Wei Song, Heng Yin, and Chengyu Song. "Be Sensitive and Collaborative:Analyzing Impact of Coverage Metrics in Greybox Fuzzing", in Proceedings of the 22nd International Symposium on Research on Attacks, Intrusions and Defenses, September 2019.
[Paper]Best Paper Award
[NDSS'19] Lei Zhao, Yue Duan, Heng Yin, and Jifeng Xuan. "Send Hardest Problems My Way: Probabilistic Path Prioritization for Hybrid Fuzzing", in Proceedings of the 26th Network and Distributed System Security Symposium, February 2019.
[Paper]
[NDSS'18]Yue Duan, Mu Zhang, Abhishek Vasist Bhaskar, Heng Yin, Xiaorui Pan, Tongxin Li, Xueqiang Wang, and Xiaofeng Wang. "Things You May Not Know About Android (Un)Packers: A Systematic Study based on Whole-System Emulation", in Proceedings of the 25th Network and Distributed System Security Symposium, February 2018.
[Paper][Presentation][Source Code]
[SecureComm'17] Xunchao Hu, Yao Cheng, Yue Duan, Andrew Henderson and Heng Yin. "JSForce: A Forced Execution Engine for Malicious JavaScript Detection", in Proceedings of the 13th EAI International Conference on Security and Privacy in Communication Networks, October 2017.
[Paper]
[NDSS'17] Xiaorui Pan, Xueqiang Wang, Yue Duan, Xiaofeng Wang, and Heng Yin. "Dark Hazard: Large-Scale Discovery of Unknown Hidden Sensitive Operations in Android Apps", in Proceedings of the 24th Network and Distributed System Security Symposium, February 2017.
[Paper]
[CCS'15] Mu Zhang, Yue Duan, Qian Feng, and Heng Yin. "Towards Automatic Generation of Security-Centric Descriptions for Android Apps", in Proceedings of the 22nd ACM Conference on Computer and Communications Security, November 2015.
[Paper]
[HotClound'15]Yue Duan, Mu Zhang, Heng Yin, and Yuzhe Tang, "Privacy-Preserving Offloading of Mobile App to the Public Cloud", in Proceedings of the 7th USENIX Workshop on Hot Topics in Cloud Computing, Santa Clara, CA, July 2015.
[Paper]
[CCS'14] Mu Zhang, Yue Duan, Heng Yin, and Zhiruo Zhao. "Semantics-Aware Android Malware Classification using Weighted Contextual API Dependency Graphs", in Proceedings of the 21st ACM Conference on Computer and Communications Security, November 2014.
[Paper]
Poster
[Oakland'15]Yue Duan, Mu Zhang, Heng Yin, Yuzhe Tang. "Poster: Privacy-Preserving Offloading of Mobile App to the Public Cloud", in the IEEE Symposium on Security and Privacy 2011.
[ASONAM'11] JooYoung Lee, Yue Duan, Jae C Oh, Wenliang Du, Howard Blair, Lusha Wang, Xing Jin. "Automatic reputation computation through document analysis: a social network approach", in the Advances in Social Networks Analysis and Mining (ASONAM), 2011 International Conference on.