基本信息

姓 名 : 刘维杰

性 别 :

所属部门: 信息安全系

行政职务:

职 称 : 副教授

学 历 : 博士

所学专业: 信息安全

办公电话:

电子邮件: weijieliu at nankai.edu.cn

研究方向: 操作系统、体系结构

个人简介:

简介


刘维杰,南开大学副教授,CCF网络与系统安全专委会、计算机安全专委会执行委员,星绽Asterinas开源社区技术指导委员会常务委员。在系统与安全领域顶级会议和期刊IEEE S&P、CCS、NDSS、ASPLOS、EuroSys、FAST、DSN、ESORICS、TDSC、TIFS上发表论文多篇,授权国际专利多项,具有丰富的机密计算实践经验。发现多个Intel、RedHat、阿里云等产品中的漏洞,取得多个CVE/CNVD漏洞编号。成果应用于字节、阿里、腾讯等企业,其中基于Rust语言的安全操作系统入选《“科创中国”开源创新榜单》;主持国家自然科学基金,字节跳动星火计划,CCF企业联合基金等项目;参与多项国家“863”计划项目、多项NSFC重点项目、美国NSF、NIH等项目;担任多个国际顶级期刊(TOPS、TACO)的审稿人;担任国际安全基因计算竞赛iDash的出题人和裁判组负责人,大学生计算机系统能力大赛、隐私计算大赛的出题人和评委。


本人长期与国内外知名高校的信息安全领域顶级教授合作,同时与大厂有密切学术交流;可推荐优秀同学出国深造/大厂实习。欢迎有意研究 系统安全、虚拟化、可信执行环境、AI隐私保护 等方向的同学与我联系^^


主页


https://stanplatinum.github.io/


经历


2024.07 - 至今 南开大学,副教授

2021.11 - 2024.06 蚂蚁集团,技术专家/系统架构师

2021.09 - 2022.09 Indiana University Bloomington, Research Associate

2019.01 - 2021.09 Indiana University Bloomington, Postdoctoral Fellow

2018.07 - 2018.12 腾讯集团,技术大咖/青云计划

2015.08 - 2016.11 Singapore Management University, Research Assistant

2008.09 - 2018.06 武汉大学,学士、博士


论文


Pyramid: A Secure, Resource-Efficient, and Pluggable Kubernetes for Multi-Tenancy. European Conference on Computer Systems (EuroSys), 2026

Losing the Beat: Understanding and Mitigating Desynchronization Risks in Container Isolation. Network and Distributed System Security (NDSS) Symposium, 2026

AtomicDisk: A Secure Virtual Disk for TEEs against Eviction Attacks. USENIX Conference on File and Storage Technologies (FAST), 2025

Lost along the Way: Understanding and Mitigating Path-Misresolution Threats to Container Isolation. ACM SIGSAC Conference on Computer and Communications Security (CCS), 2023

Robbery on DevOps: Understanding and Mitigating Illicit Cryptomining on Continuous Integration Service Platforms. IEEE Symposium on Security and Privacy (Oakland), 2022

Retrofitting LBR Profiling to Enhance Virtual Machine Introspection. IEEE Transactions on Information Forensics and Security (TIFS), 2022

Trust Beyond Border: Lightweight, Verifiable User Isolation for Protecting In-Enclave Services. IEEE Transactions on Dependable and Secure Computing (TDSC), 2021

Incremental CFG Patching for Binary Rewriting. ACM International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), 2021

Practical and Efficient in-Enclave Verification of Privacy Compliance. IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), 2021

On-Demand Time Blurring to Support Side-Channel Defense. European Symposium on Research in Computer Security (ESORICS), 2017