Hongxu Chen (陈泓旭)

hongxu_chen@foxmail.com (+86) 13027944806 hongxuchen.github.io Publications hongxuchen hongxuchen

Education

Nanyang Technological University - Singapore, Singapore

2015.08 - 2019.07

Ph.D., Major in Cybersecurity, Supervisor: Prof. Yang Liu

Thesis: Securing Software Systems via Fuzz Testing and Verification

  • Fuzz Testing: Grey-box fuzzing on C/C++ programs with the help of program analysis
  • Formal Verification: Permission-dependent type system for secure information flow analysis.

Shanghai Jiaotong University - Shanghai, China

2011.09 - 2014.03

Master, Major in Program Analysis, Supervisor: Prof. Jianjun Zhao

Thesis: Program Slicing Enhanced Symbolic Execution

Nanjing University of Science and Technology - Nanjing, China

2007.09 - 2011.07

Working Experiences

Senior Researcher @ Huawei Technologies Co., Ltd. - Shenzhen, China

2021.07 - Present

  • Code dependency analysis for C/C++, Java, Python
  • Software Architecture conformance checking
  • Software quality analysis

Senior Research @ Huawei International Pte, Ltd. - Singapore, Singapore

2020.1 - 2021.06

  • Code dependency analysis for C/C++, Java

Research Fellow @ Nanyang Technology University - Singapore, Singapore

2020.01 - 2020.09

  • I lead the architecture design of a fuzzing service which provides a general-purpose interface for different testing scenarios, such as embedded systems, the automotive-relevant microcontrollers, stateful protocols, etc. I am also involved in a data-based reverse engineering research to help decompose the functional components of a given project.

Research Associate @ Nanyang Technological University - Singapore, Singapore

2019.08 - 2019.12

  • I maintain the fuzzing framework FOT. Meanwhile, I am also involved in a high-performance cross-CPU binary fuzzing framework BiFF, as well as a fuzzing technique called MUZZ that aims to boost fuzz testing on multithreaded programs.

Research Intern @ Scantist Pte. Ltd. - Singapore, Singpaore

2018.09 - 2019.05

  • I co-designed and built the prototype of a cross-CPU grey-box fuzzer for binaries.

Research Associate @ Nanyang Technological University - Singapore, Singapore

2014.05 - 2015.08

  • I focused on LLVM based data flow analysis which aims to improve the dynamic fuzzing effectiveness with the aid of static analysis.

Research Intern @ Microsoft Research Asia - Beijing, China

2013.02 - 2013.11

  • I focused on improving the white-box fuzzing technique on patching programs with the help of static analysis; I implemented a static analysis tool that can slice the underlying program for subsequent white-box testing.

Awards

1st Award in Prototype Competition (freestyle) - Harbin, China (2019.11)

  • The 18th National Software Application Conference (NASAC 2019)

1st Award in Prototype Competition (fixed topic) - Hangzhou, China (2017.11)

  • The 16th National Software Application Conference (NASAC 2017)

NTU Research Scholarship - Singapore, Singapore

  • Nanyang Technological University

Professional Skills

  • Static Program Analysis, Grey-box Fuzzing, Symbolic Execution, Binary Analysis, Java, Python, Rust, Scala
  • Program Language Theory, Compiler Techniques, Linux System Programming, Formal Verification, LLVM/GCC, Bash, JVM, C/C++
  • Web3, Distributed Systems, OCaml, Haskell, Coq, Isabelle

Teaching Experience

Object-Oriented Programming

  • Autumn Semester 2018, NTU Lab supervision for course “CE/CZ2002 Object Oriented Design and Programming”

Software Engineering

  • Spring Semester 2018, NTU Lab supervision for course “CE/CZ2006 Software Engineering”

System Design and Programming

  • Autumn Semester 2017, NTU Lab supervision for course “CE/CZ3003 Software Systems Analysis and Design”

Computer Security

  • Autumn Semester 2017, NTU Course design for “CE/CZ4062 Computer Security”

Computer Security

  • Spring Semester 2017, NTU Lab supervision for course “CE/CZ4024 Cryptography and Network Security”

Algorithms

  • Autumn Semester 2016, NTU Lab supervision for course “CE/CZ2001 Algorithms”

Compiler Techniques

  • Spring Semester 2016, NTU Lab supervision for course “CE/CZ3007 Compiler Techniques”