Publications

13 papers published at top venues: CCS (x5), USENIX Security (x4), NDSS (x2), IMC (x1), WWW (x1)

Papers also presented at: Black Hat Europe, ICANN APAC DNS Forum, ICANN DNS Symposium, OARC (x3), IETF, ANRW

Slides are provided where I'm the presenter.

Conference & Workshop Papers

2024

  1. [WWW '24] A Worldwide View on the Reachability of Encrypted DNS Services
    Ruixuan Li, Baojun Liu, Chaoyi Lu, Haixin Duan, and Jun Shao.
    To appear in Proceedings of the 2024 International World Wide Web Conference, Singapore, May 2024.

  2. [NDSS '24] Understanding the Implementation and Security Implications of Protective DNS Services
    Mingxuan Liu, Yiming Zhang, Xiang Li, Chaoyi Lu, Baojun Liu, Haixin Duan, and Xiaofeng Zheng.
    To appear in Proceedings of the 2024 Network and Distributed System Security Symposium, San Diego, CA, USA, February 2024.

2023

  1. [CCS '23(b)] TsuKing: Coordinating DNS Resolvers and Queries into Potent DoS Amplifiers
    Wei Xu, Xiang Li, Chaoyi Lu, Baojun Liu, Jia Zhang, Jianjun Chen, Tao Wan, and Haixin Duan.
    In Proceedings of the 30th ACM Conference on Computer and Communications Security, Copenhagen, Denmark, November 2023.
    CVEs: CVE-2023-24711, CVE-2023-24712, CVE-2023-28455
    Communuty event contribution: Black Hat Europe '23, OARC 41
    2.   PDF   Slides   Project page

  2. [CCS '23(a)] Silence is not Golden: Disrupting the Load Balancing of Authoritative DNS Servers
    Fenglu Zhang, Baojun Liu, Eihal Alowaisheq, Jianjun Chen, Chaoyi Lu, Linjian Song, Yong Ma, Ying Liu, Haixin Duan, and Min Yang.
    In Proceedings of the 30th ACM Conference on Computer and Communications Security, Copenhagen, Denmark, November 2023.
    Distinguished Paper Award winner!
    Communuty event contribution: ICANN APAC DNS Forum (pre-event webinar) 2023, OARC 41
    3.   PDF

  3. [USENIX Security '23] The Maginot Line: Attacking the Boundary of DNS Caching Protection
    Xiang Li, Chaoyi Lu, Baojun Liu, Qifan Zhang, Zhou Li, Haixin Duan, and Qi Li.
    In Proceedings of the 32nd USENIX Security Symposium, Anaheim, CA, USA, August 2023.
    Blog post at APNIC
    CVEs: CVE-2021-25220, CVE-2021-43105, CVE-2022-32983
    4.   PDF   Project page

2022

  1. [EthiCS Workshop '22] Ethics in Security Research: Visions, Reality, and Paths Forward
    Yiming Zhang, Mingxuan Liu, Mingming Zhang, Chaoyi Lu, and Haixin Duan.
    Accepted to the 1st International Workshop on Ethics in Computer Security (co-located with IEEE EuroSP), Genoa, Italy, June 2022.
    Best Student Paper Award Winner!
    2.   PDF

  2. [PAM '22] Measuring the Practical Effect of DNS Root Server Instances: A China-Wide Case Study
    Fenglu Zhang, Chaoyi Lu, Baojun Liu, Haixin Duan, and Ying Liu.
    In Proceedings of the 23rd Passive and Active Measurement Conference, Virtual event, March 2022.
    Communuty event contribution: ICANN APAC DNS Forum 2022
    3.   PDF

2021

  1. [CCS '21] Rusted Anchors: A National Client-Side View of Hidden Root CAs in the Web PKI Ecosystem
    Yiming Zhang, Baojun Liu, Chaoyi Lu, Zhou Li, Haixin Duan, Jiachen Li, and Zaifeng Zhang.
    In Proceedings of the 28th ACM Conference on Computer and Communications Security, Virtual event, November 2021.
    Coverage by The Register and Help Net Security.
    2.   PDF

  2. [NDSS '21] From WHOIS to WHOWAS: A Large-Scale Measurement Study of Domain Registration Privacy under the GDPR
    Chaoyi Lu, Baojun Liu, Yiming Zhang, Zhou Li, Fenglu Zhang, Haixin Duan, Ying Liu, Joann Qiongna Chen, Jinjin Liang, Zaifeng Zhang, Shuang Hao, and Min Yang.
    In Proceedings of the 2021 Network and Distributed System Security Symposium, Virtual event, February 2021.
    Coverage by Cybercrime Digest of Cybercrime Programme Office of the Council of Europe (2021-02-25).
    Coverage by CERT-SE's weekly letter v.8 (2021-02-26).
    3.   PDF   Slides   Video

  3. [USENIX Security '21] Weak Links in Authentication Chains: A Large-scale Analysis of Email Sender Spoofing Attacks
    Kaiwen Shen, Chuhan Wang, Xiaofeng Zheng, Minglei Guo, Chaoyi Lu, Baojun Liu, Yuxuan Zhao, Shuang Hao, Haixin Duan, Qingfeng Pan, and Min Yang.
    In Proceedings of the 30th USENIX Security Symposium, Virtual event, August 2021.
    4.   PDF

2020

  1. [CCS '20(b)] Talking with Familiar Strangers: An Empirical Study on HTTPS Context Confusion Attacks
    Mingming Zhang, Xiaofeng Zheng, Kaiwen Shen, Ziqiao Kong, Chaoyi Lu, Yu Wang, Haixin Duan, Shuang Hao, Baojun Liu, and Min Yang.
    In Proceedings of the 27th ACM Conference on Computer and Communications Security, Virtual event, November 2020.
    2.   PDF

  2. [CCS '20(a)] Lies in the Air: Characterizing Fake-base-station Spam Ecosystem in China
    Yiming Zhang, Baojun Liu, Chaoyi Lu, Zhou Li, Haixin Duan, Shuang Hao, Mingxuan Liu, Ying Liu, Dong Wang, and Qiang Li.
    In Proceedings of the 27th ACM Conference on Computer and Communications Security, Virtual event, November 2020.
    3.   PDF

  3. [USENIX Security '20] Poison Over Troubled Forwarders: A Cache Poisoning Attack Targeting DNS Forwarding Devices
    Xiaofeng Zheng, Chaoyi Lu, Jian Peng, Qiushi Yang, Dongjie Zhou, Baojun Liu, Keyu Man, Shuang Hao, Haixin Duan, and Zhiyun Qian.
    In Proceedings of the 29th USENIX Security Symposium, Virtual event, August 2020.
    Communuty event contribution: ICANN DNS Symposium 2021
      PDF   Slides   Video

2019

  1. [IMC '19] An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come?
    Chaoyi Lu, Baojun Liu, Zhou Li, Shuang Hao, Haixin Duan, Mingming Zhang, Chunying Leng, Ying Liu, Zaifeng Zhang, and Jianping Wu.
    In Proceedings of the 2019 ACM Internet Measurement Conference, Amsterdam, Netherlands, October 2019.
    IRTF Applied Networking Research Prize (ANRP) 2020 Award Winner!
    Distinguished Paper Award Nominee and Community Contribution Award Nominee.
    Communuty event contribution: IETF 108, OARC 31
    2.   PDF   Slides   Video

  2. [EuroSP '19] TraffickStop: Detecting and Measuring Illicit Traffic Monetization Through Large-Scale DNS Analysis
    Baojun Liu, Zhou Li, Peiyuan Zong, Chaoyi Lu, Haixin Duan, Ying Liu, Sumayah Alrwais, Xiaofeng Wang, Shuang Hao, Yaoqi Jia, Yiming Zhang, Kai Chen, and Zaifeng Zhang.
    In Proceedings of the 4th IEEE European Symposium on Security and Privacy, Stockholm, Sweden, June 2019.
    3.   PDF   Slides

2018

  1. [USENIX Security ’18] Who Is Answering My Queries: Understanding and Characterizing Interception of the DNS Resolution Path
    Baojun Liu, Chaoyi Lu, Haixin Duan, Ying Liu, Zhou Li, Shuang Hao, and Min Yang.
    In Proceedings of the 27th USENIX Security Symposium, Baltimore, MD, USA, August 2018.
    Communuty event contribution: ANRW '19, OARC 30
    Coverage by ACM TechNews, The Register, Hackread, CircleID, and HackWareNews.
    2.   PDF   Slides   Video

  2. [FOCI Workshop '18] Measuring Privacy Threats in China-Wide Mobile Networks
    Mingming Zhang, Baojun Liu, Chaoyi Lu, Jia Zhang, Shuang Hao, and Haixin Duan.
    Accepted to the 8th USENIX Workshop on Free and Open Communications on the Internet (co-located with USENIX Security Symposium), Baltimore, MD, USA, August 2018.
    3.   PDF

  3. [DSN '18] A Reexamination of Internationalized Domain Names: the Good, the Bad and the Ugly
    Baojun Liu, Chaoyi Lu, Zhou Li, Ying Liu, Haixin Duan, Shuang Hao, and Zaifeng Zhang.
    In Proceedings of the 48th IEEE/IFIP International Conference on Dependable Systems and Networks, Luxembourg City, Luxembourg, June 2018.
    4.   PDF   Slides