I am an assistant professor at Tsinghua University (PhD supervisor), Top Young Scholar of National “Ten Thousand Talent Program”. My research focuses on measuring and enhancing the security of Internet infrastructure, uncovering significant vulnerabilities in core protocols like DNS and TLS, and understanding emerging cyberspace security threats.
I have discovered security issues in domains names, certificates, and other fundamental Internet building blocks, as well as serious vulnerabilities in protocols like DNS and HTTP. My work has received worldwide recognition and impact: informing standards bodies like IETF, earning awards at top academic venues, and being integrated into security products by companies like Huawei and QiAnXin to protect users.
I have published more than 20 research papers at leading network security conferences including IEEE S&P, USENIX Security, ACM CCS, and NDSS. My students and I have reported over 160 software vulnerabilities, contributing to CVE/CNVD and working with affected vendors for remediation. I have been honored with a number of awards: IRTF Applied Networking Research Prize, Internet Fundamental Technology Archievement Award, NDSS Best Paper, DSN Best Paper, and ACM SIGSAC China Rising Star.
My research work focuses on three main areas: (1) Measuring and improving infrastructure security, including DNS, PKI, and BGP. (2) Discovering vulnerabilities in core protocols like DNS, HTTP, and TLS. (3)Tracking emerging criminal threats like underground economy, cryptojacking, and mobile fraud.
My research has been featured at venues like Black Hat, ICANN DNS Symposium, DNS-OARC, and covered by media outlets like ZDNet and ACM TechNews. I aim to continue advancing the state of Internet security through impactful discoveries and strong collaboration between academia and industry. Please feel free to contact me to discuss my work!
Rusted Anchors: A National Client-Side View of Hidden Root
CAs in the Web PKI Ecosystem
Yiming Zhang, Baojun Liu †, Chaoyi Lu, Zhou Li, Haixin Duan †, Jiachen Li and Zaifeng Zhang
xiang Seoul, South Korea, November 15-19, 2021. C PDF Slides
Lies in the Air: Characterizing Fake-base-station Spam
Ecosystem in China
Yiming Zhang, Baojun Liu †, Chaoyi Lu, Zhou Li, Haixin Duan †, Shuang Hao, Mingxuan Liu, Ying Liu †, Dong Wang and Qiang Li
Proceedings of The 27th ACM Conference on Computer and Communications Security (CCS )
Orlando, USA, November 9-13, 2020. C PDF Slides Dataset
An End-to-End, Large-Scale Measurement of
DNS-over-Encryption: How Far Have We Come?
Chaoyi Lu, Baojun Liu, Zhou Li, Shuang Hao, Haixin Duan, Mingming Zhang, Chunying Leng, Ying Liu, Zaifeng Zhang and Jianping Wu
Proceedings of The 2019 Internet Measurement Conference (IMC )
Amsterdam, Netherlands, October 21-23, 2019. C PDF Slides Website
Applied Networking Research Prize Best Paper Award Nominee Community Contribution Nominee
Selected by The 31th DNS-OARC
Who Is Answering My Queries: Understanding and Characterizing Interception of the DNS Resolution Path
Baojun Liu, Chaoyi Lu, Haixin Duan, Ying Liu, Zhou Li, Shuang Hao and Min Yang
Proceedings of The 27th USENIX Security Symposium (USENIX Security )
Baltimore, USA, August 14, 2018. C PDF Slides
Selected by The 30th DNS-OARC and The ANRW 2019
© 2023 Baojun Liu. All rights reserved.