Soyeon Park

Research Interests

I am interested in software security, and system security. During my Ph.D., I have been working on finding bugs in complicated software such as web browsers and open-source libraries with automatic ways like fuzzing and static analysis. I am also interested in applying emerging hardware features such as Intel MPK and SGX to improve binary protection. One of my recent interests is applying machine learning for security. My recent works utilized the ML model for natural language processing to improve binary analysis.

Publications

Binary Code Representation with Well-balanced Instruction Normalization (to appear)
Hyungjoon Koo, Soyeon Park, Daejin Choi and Taesoo Kim
IEEE Access (2023)
Memory Protection Keys: facts, key extension perspectives, and discussions (to appear)
Soyeon Park, Sangho Lee, and Taesoo Kim
IEEE Security & Privacy, May/June 2023
A Look Back on a Function Identification
Hyungjoon Koo, Soyeon Park, and Taesoo Kim
In Proceedings of the 2021 Annual Computer Security Applications Conference (ACSAC 2021)
[Paper] | [Slides]
Revisiting Function Identification with Machine Learning
Hyungjoon Koo, Soyeon Park, and Taesoo Kim
Workshop on Machine Learning for Program Analysis (MLPA 2020)
[Paper]
FREEDOM: Engineering a State-of-the-Art DOM Fuzzer
Wen Xu, Soyeon Park, and Taesoo Kim
In Proceedings of the 27th ACM Conference on Computer and Communications Security (CCS 2020)
[Paper] | [Slides] | [Code]
Fuzzing JavaScript Engines with Aspect-preserving Mutation
Soyeon Park, Wen Xu, Insu Yun, Daehee Jang, and Taesoo Kim
In Proceedings of the 41st IEEE Symposium on Security and Privacy (Oakland 2020)
[Paper] | [Slides] | [Code]
* This paper is nominated as the top 10 papers in CSAW’20.
libmpk: Software Abstraction for Intel Memory Protection Keys
Soyeon Park, Sangho Lee, Wen Xu, Hyungon Moon, and Taesoo Kim
In Proceedings of the 2019 USENIX Annual Technical Conference (ATC 2019)
[Paper] | [Slides] | [Code]
VeriCount: Verifiable Resource Accounting Using Hardware and Software Isolation
Shruti Tople, Soyeon Park, Min Suk Kang, and Prateek Saxena
In the 16th International Conference on Applied Cryptography and Network Security (ACNS 2018)
[Paper]
Heterogeneous Distributed Shared Memory for Lightweight Internet-of-Things Devices
Bongjun Kim, Seonyeong Heo, Gyeongmin Lee, Soyeon Park, Hanjun Kim, and Jong Kim
IEEE Micro, Volume 36, Number 6, Nov/Dec 2016.
[Paper]

Education

Georgia Institute of Technology
Atlanta, GA Aug 2017 - Present
Advisor: Prof. Taesoo Kim
Pohang University of Science and Technology (POSTECH)
Pohang, South Korea Mar 2013 - Feb 2017
* Graduated at the top of my class in Computer Science (Major GPA: 3.96/4.0)

Work Experiences

Georgia Institute of Technology, Atlanta, GA Aug 2017 - Present
Graduate Research Assistant
Samsung Research, Seoul, South Korea Sep 2021 - Apr 2022
Research Intern
IBM Research, Yorktown Heights, NYMay 2021 - Aug 2021
Research Intern expand_more

I worked as a research intern on Cyber Security Intelligence team. During the internship, I explored the effective way to apply natural language processing models to binary analysis. In the process, I developed a tool to generate function embedding utilizing the data flow from LLVM IR with BERT. Our primitive experiment result showed that the function embedding based on data-flow results in higher recall for finding the most similar function in the binaries according to the cosine similarity compared to the SOTA IR representation tool.
Microsoft, Seattle, WAMay 2020 - Jul 2020
Security Engineering Intern expand_more

I worked as a security engineering intern on Platform Security Assurance & Vulnerability Research team. I conducted security assessments over kernel modules for network file systems including developing a file system fuzzer built on a full-system emulator. During the internship, I found multiple bugs including CVE-2020-17047 and CVE-2020-17051. Please check CVE-2020-17047 and CVE-2020-17051 for details.
National University of Singapore, SingaporeJan 2017 - Jun 2017
Research Assistant expand_more

I worked as a research intern advised by Prof. Min-suk Kang. During the internship, I developed a verifiable resource accounting system for cloud services with hardware and software isolation techniques using Intel SGX and LLVM pass. Please check here for details.
Pohang University of Science and Technology (POSTECH), Pohang, South KoreaFeb 2016 - Jul 2016
Research Assistant expand_more

I worked as an undergrad research intern advised by Prof. Hanjun Kim. During the internship, I Implemented a part of a unified IoT development platform supporting unified virtual memory using LLVM pass. Please check here for details.

Services

Program Committee
- NYU's CSAW Applied Research Competition 2021, 2022
Reviewer
- Computer & Security 2021
External Reviewer
- Usenix Security Symposium (Security) 2018, 2022, 2023
- ACM Symposium on Operating Systems Principles (SOSP) 2021
- Network and Distributed System Security Symposium (NDSS) 2020
- ACM Conference on Computer and Communications Security (CCS) 2019
- Usenix Symposium on Operating Systems Design and Implementation (OSDI) 2018
- Usenix Annual Technical Conference (ATC) 2018
Organizer of TKCTF 2022 2022
Organizer of 6265 CTF 2018 2018
Organizer of inc0gnito CTF 20152015

Teaching

CS 6265: Information Security Lab, Georgia Institute of Technology Fall 2022
Graduate Teaching Assistant
CS 6265: Information Security Lab, Georgia Institute of Technology Fall 2018
Graduate Teaching Assistant
Microprocessor and Assembly Language Programming, POSTECH Spring 2016
Tutor
C Programming, Pohang Jecheol High School Spring and Fall 2015
Teaching Assistant
Microprocessor and Assembly Language Programming, POSTECH Spring 2015
Tutor