Bao Junliu


Courses

Recent News

  • 10/2023, Dr. Baojun Liu is selected for Top Young Scholar of National “Ten Thousand Talent Program”.

  • 03/08/2023, Dr. Baojun Liu is awarded by the Internet Fundamental Technology Archievement Award.

  • 31/07/2023, Dr. Baojun Liu is sponsored by the CCF-Tencent Rhino-Bird Young Faculty Open Research Fund.

  • 29/07/2023, Dr. Baojun Liu is awarded by the ACM SIGSAC China Rising Star Award.

  • 25/03/2023, three research papers were accepted by CCS 2023.


Hey!

I am an assistant professor at Tsinghua University (PhD supervisor), Top Young Scholar of National “Ten Thousand Talent Program”. My research focuses on measuring and enhancing the security of Internet infrastructure, uncovering significant vulnerabilities in core protocols like DNS and TLS, and understanding emerging cyberspace security threats.

I have discovered security issues in domains names, certificates, and other fundamental Internet building blocks, as well as serious vulnerabilities in protocols like DNS and HTTP. My work has received worldwide recognition and impact: informing standards bodies like IETF, earning awards at top academic venues, and being integrated into security products by companies like Huawei and QiAnXin to protect users.

I have published more than 20 research papers at leading network security conferences including IEEE S&P, USENIX Security, ACM CCS, and NDSS. My students and I have reported over 160 software vulnerabilities, contributing to CVE/CNVD and working with affected vendors for remediation. I have been honored with a number of awards: IRTF Applied Networking Research Prize, Internet Fundamental Technology Archievement Award, NDSS Best Paper, DSN Best Paper, and ACM SIGSAC China Rising Star.

My research work focuses on three main areas: (1) Measuring and improving infrastructure security, including DNS, PKI, and BGP. (2) Discovering vulnerabilities in core protocols like DNS, HTTP, and TLS. (3)Tracking emerging criminal threats like underground economy, cryptojacking, and mobile fraud.

My research has been featured at venues like Black Hat, ICANN DNS Symposium, DNS-OARC, and covered by media outlets like ZDNet and ACM TechNews. I aim to continue advancing the state of Internet security through impactful discoveries and strong collaboration between academia and industry. Please feel free to contact me to discuss my work!

Selected Publications / More

  • Rusted Anchors: A National Client-Side View of Hidden Root CAs in the Web PKI Ecosystem
    Yiming Zhang, Baojun Liu †, Chaoyi Lu, Zhou Li, Haixin Duan †, Jiachen Li and Zaifeng Zhang
    xiang Seoul, South Korea, November 15-19, 2021. C PDF Slides

  • Lies in the Air: Characterizing Fake-base-station Spam Ecosystem in China
    Yiming Zhang, Baojun Liu †, Chaoyi Lu, Zhou Li, Haixin Duan †, Shuang Hao, Mingxuan Liu, Ying Liu †, Dong Wang and Qiang Li
    Proceedings of The 27th ACM Conference on Computer and Communications Security (CCS )
    Orlando, USA, November 9-13, 2020. C PDF Slides Dataset

  • An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come?
    Chaoyi Lu, Baojun Liu, Zhou Li, Shuang Hao, Haixin Duan, Mingming Zhang, Chunying Leng, Ying Liu, Zaifeng Zhang and Jianping Wu
    Proceedings of The 2019 Internet Measurement Conference (IMC )
    Amsterdam, Netherlands, October 21-23, 2019. C PDF Slides Website
    Applied Networking Research Prize Best Paper Award Nominee Community Contribution Nominee
    Selected by The 31th DNS-OARC

  • Who Is Answering My Queries: Understanding and Characterizing Interception of the DNS Resolution Path
    Baojun Liu, Chaoyi Lu, Haixin Duan, Ying Liu, Zhou Li, Shuang Hao and Min Yang
    Proceedings of The 27th USENIX Security Symposium (USENIX Security )
    Baltimore, USA, August 14, 2018. C PDF Slides
    Selected by The 30th DNS-OARC and The ANRW 2019

© 2023 Baojun Liu. All rights reserved.