Professor

College of Computer Science and Technology
Nanjing University of Aeronautics and Astronautics
29 Jiangjun Boulevard
Nanjing 211106, China

Office: College Building #236
Email: hhan@nuaa.edu.cn

Publication

Journal Articles

• [TIOT] UltraSnoop: Placement-agnostic Keystroke Snooping via Smartphone-based Ultrasonic Sonar
  Yanchao Zhao, Yiming Zhao, Si Li, Hao Han, and Lei Xie
  ACM Transactions on Internet of Things, to appear

• [TMC] RescQR: Enabling Reliable Data Recovery in Screen-Camera Communication System
  Hao Han, Kunming Xie, Tongyu Wang, Xiaojun Zhu, Yanchao Zhao, Fengyuan Xu
  IEEE Transactions on Mobile Computing, to appear (CCF A)

• [TMC] LEAP: TrustZone Based Developer-Friendly TEE for Intelligent Mobile Apps
  Lizhi Sun, Shuocheng Wang, Hao Wu, Yuhang Gong, Fengyuan Xu, Yunxin Liu, Hao Han, and Sheng Zhong
  IEEE Transactions on Mobile Computing, to appear (CCF A)

• [WCMC] User-Level Membership Inference for Federated Learning in Wireless Network Environment
  Yanchao Zhao, Jiale Chen, Jiale Zhang, Zilu Yang, Huawei Tu, Hao Han, Kun Zhu and Bing Chen
  Wireless Communications and Mobile Computing, Volume 2021 (CCF C)

• [TII] Secure Transmission of Compressed Sampling Data Using Edge Clouds
  Yushu Zhang, Ping Wang, Liming Fang, Xing He, Hao Han and Bing Chen
  IEEE Transactions on Industrial Informatics, vol. 16, no. 10, pp. 6641-6651, 2020

• [TPDS] Efficient Protocols for Collecting Histograms in Large-scale RFID Systems
  Lei Xie, Hao Han, Qun Li, Jie Wu, and Sanglu Lu
  IEEE Transactions on Parallel and Distributed Systems, vol. 26, no. 9, pp. 2421-2433, 2015 (CCF A)

• [TON] Design, Realization, and Evaluation of DozyAP for Power-Efficient Wi-Fi Tethering
  Hao Han, Yunxin Liu, Guobin Shen, Yongguang Zhang, Qun Li and Chiu C. Tan
  IEEE/ACM Transactions on Networking, vol. 22, No. 5, pp. 1672-1685, 2014 (CCF A)

• [TVT] VProof: Lightweight Privacy-Preserving Vehicle Location Proofs
  Yifan Zhang, Chiu C. Tan, Fengyuan Xu, Hao Han, Qun Li
  IEEE Transactions on Vehicular Technology, vol. 64, No. 1, pp. 378-385, 2015

• [TVT] VR-Defender: Self-Defense Against Vehicular Rogue APs for Drive-Thru Internet
  Hao Han, Fengyuan Xu, Chiu C. Tan, Yifan Zhang, and Qun Li,
  IEEE Transactions on Vehicular Technology, vol. 63, No. 8, pp. 3927-3934, 2014

• [TPDS] A Timing Based Scheme for Rogue AP Detection
  Hao Han, Bo Sheng, Chiu C. Tan , Qun Li, and Sanglu Lu
  IEEE Transactions on Parallel and Distributed Systems, vol. 22, No. 11, pp. 1912-1925, 2011 (CCF A)

Conference Articles

• [MSN'23] ShuffleCAN: Enabling Moving Target Defense for Attack Mitigation on Automotive CAN
  Huiping Qian, Hao Han, Xiaojun Zhu and Fengyuan Xu
  IEEE International Conference on Mobility, Sensing and Networking, Nanjing, China, Dec.14-16 2023 (CCF C)

• [ISSRE'23] SAPPX: Securing COTS Binaries with Automatic Program Partitioning for Intel SGX
  Jiawei Huang, Hao Han, Fengyuan Xu, Bing Chen
  IEEE International Symposium on Software Reliability Engineering, Florence, Italy, Oct.9-12 2023 (CCF B)

• [IWQoS'22] Privacy-Preserving and Robust Federated Deep Metric Learning
  Yulong Tian, Xiaopeng Ke, Zeyi Tao, Shaohua Ding, Fengyuan Xu, Qun Li, Hao Han, Sheng Zhong, and Xinyi Fu
  IEEE/ACM International Symposium on Quality of Service, Virtual Conference, June 2022 (CCF B)

• [IWQoS'21] ChirpMu: Chirp Based Imperceptible Information Broadcasting with Music
  Yu Wang, Xiaojun Zhu and Hao Han
  IEEE/ACM International Symposium on Quality of Service, Virtual Conference, June 2021 (CCF B)

• [ICCCN'20] Beyond Model-Level Membership Privacy Leakage: an Adversarial Approach in Federated Learning
  Jiale Chen, Jiale Zhang, Yanchao Zhao, Hao Han, Kun Zhu and Bing Chen
  International Conference on Computer Communications and Networks (ICCCN), Virtual Conference, August 2020 (CCF C)

• [SEC'20] TAES: Two-factor Authentication with End-to End Security against VoIP Phishing
  Dai Hou, Hao Han and Ed Novak
  IEEE/ACM Symposium on Edge Computing (SEC), San Jose, CA, November 2020

• [SEC'20] FareQR: Fast and Reliable Screen-Camera Transfer System for Mobile Devices using QR Code
  Tongyu Wang, Hao Han, Zijie Wang
  IEEE/ACM Symposium on Edge Computing (SEC), San Jose, CA, November 2020

• [SpaCCS'20] DFspliter: Data Flow Oriented Program Partitioning against Data Stitching Attacks
  Chenyu Zhao and Hao Han
  International Conference on Security, Privacy and Anonymity in Computation, Communication and Storage (SpaCCS), Nanjing, China, December 2020

• [SpaCCS'20] Revisiting Attacks and Defenses in Connected and Autonomous Vehicles
  Ziyan Fang, Weijun Zhang Zongfei Li, Huaao Tang, Hao Han and Fengyuan Xu
  International Conference on Security, Privacy and Anonymity in Computation, Communication and Storage (SpaCCS), Nanjing, China, December 2020

• [MILCOM'18] Routing, Network Coding and TCP Support for Wideband HF Communications
  Tugba Erpek, Yalin E. Sagduyu, Yi Shi, Maice Costa, Kemal Davaslioglu, Hao Han, Daniel Fayette, Eric Johnson, Elizabeth Bentley, Clif Banner
  IEEE Military Communications Conference (MILCOM), Los Angeles, CA, October 2018

• [RAID'17] VDF: Targeted Evolutionary Fuzz Testing of Virtual Devices
  Andrew Henderson, Heng Yin, Guang Jin, Hao Han and Hongmei Deng
  International Symposium on Research in Attacks, Intrusions and Defenses (RAID), Atlanta, Georgia, September, 2017 (CCF B)

• [INFOCOM'16] AMIL: Localizing Neighboring Mobile Devices Through a Simple Gesture
  Hao Han, Shanhe Yi, Qun Li, Guobin Shen, Yixun Liu, and Ed Novak
  IEEE Conference on Computer Communications (INFOCOM), San Francisco, CA, April, 2016 (CCF A)

• [INFOCOM'14] Efficiently Collecting Histograms Over RFID Tags
  Lei Xie, Hao Han, Qun Li, Jie Wu, Sanglu Lu
  IEEE Conference on Computer Communications (INFOCOM), Toronto, Canada, 2014 (CCF A)

• [MOBISYS'12] DozyAP: Power-Efficient Wi-Fi Tethering
  Hao Han, Yunxin Liu, Guobin Shen, Yongguang Zhang, and Qun Li
  ACM International Conference on Mobile Systems, Applications, and Services (MOBISYS), Low Wood Bay, UK, June 2012 (CCF B)

• [INFOCOM'11] Defending Against Vehicular Rogue APs
  Hao Han, Fengyuan Xu, Chiu C. Tan, Yifan Zhang, and Qun Li
  IEEE Conference on Computer Communications (INFOCOM), Shanghai, China, April 2011 (CCF A)

• [INFOCOM'10] Counting RFID Tags Efficiently and Anonymously
  Hao Han, Bo Sheng, Chiu C. Tan, Qun Li, Weizhen Mao, and Sanglu Lu
  IEEE Conference on Computer Communications (INFOCOM), San Diego, CA, April 2010 (CCF A)

• [INFOCOM'10] Efficient Tag Identification in Mobile RFID Systems
  Lei Xie, Bo Sheng, Chiu C. Tan, Hao Han, Qun Li, and Daoxu Chen
  IEEE Conference on Computer Communications (INFOCOM), San Diego, CA, April 2010 (CCF A)

• [INFOCOM'09] A Measurement Based Rogue AP Detection Scheme
  Hao Han, Bo Sheng, Chiu C. Tan, Qun Li, and Sanglu Lu
  IEEE Conference on Computer Communications (INFOCOM), Rio de Janeiro, Brazil, April 2009 (CCF A)

Teaching

Undergradute-Level Courses

- Operating Systems（中文）, Spring 2019 - Present
- Principle of Computer’s Composition (English), Fall, 2019 - 2020

Graduate-Level Courses

- Security in Computer System (English), Fall 2020 - Present

Awards of Mentoring Students

- 2022，中国高校计算机大赛网络技术挑战赛，全国总决赛二等奖
- 2022，全国大学生系统能力大赛操作系统设计赛优秀指导教师
- 2022，全国大学生系统能力大赛操作系统设计赛（功能赛），大赛初赛优胜奖
- 2021，全国大学生信息安全竞赛，全国二等奖

Projects

Attacks and Defenses in Connected Autonomous Vehicles

With the development of the automotive industry, the security of connected and autonomous vehicles (CAVs) has become a hot research field in recent years. However, previous studies mainly focus on the threats and defending mechanisms from the networking perspective, while newly emerging attacks are targeting more core components of CAVs such as OS and AI. Therefore, the defense methods against these attacks are urgently needed. In this paper, we revisit emerging attacks and their technical countermeasures for CAVs in a layered inventory, including in-vehicle systems, V2X, and self-driving. This project aims to provide insights into potential new attack vectors and their countermeasures for CAVs. We hope to shed light on future research in this area.

Securing Industrial Control Systems

Industrial control systems generally lack security design from the beginning. The design mainly considers the real-time performance, reliability and stability of the system, sacrificing security for real-time performance. Traditional IT security solutions such as identity authentication, authorization, and encryption are not suitable for industrial control systems. There are a large number of vulnerabilities in industrial devices and protocols. According to the national CNVD statistics, as of September 2021, the number of industrial control system vulnerabilities has exceeded 3,100, while security vendors, hackers and other organizations may have far more vulnerabilities than CNVD statistics. However, key industrial devices are closed and difficult to update. These loopholes may be maliciously exploited at critical moments, resulting in production theft, monitoring, and destruction. Furthermore, the accelerated integration of IT&OT has led to the exposure of more and more security threats since the industrial control systems are changing from close to open, from stand-alone to interconnected, and more and more devices are directly exposed to attackers. This project aims to secure PLC/RTU in industrial control systems. The involved techniques include hardware secure accelerator, device fingerprinting, lightweight identity authentication, etc.

TEE-based Memory Observer with Software Hardending Techniques

Memory corruption vulnerabilities are the root cause of many modern attacks. Numerous defenses have mainly focused on mitigating control-data attacks, leaving modern systems and programs vulnerable to non-control-data attacks. The main drawbacks of existing non-control-data attacks are in three aspects: overhead, compatibility, and soundness. To mitigate the potential risk of software attacks, modern applications such as Chrome browser are designed to follow a multi-process model to quarantine programs into different processes so that memory errors in one process do not directly affect other processes. However, there are no automated solutions to partition legacy programs. This project will investigate the inference of data secrecy and their context and automated binary program partitioning based on binary program analysis and rewriting. This project aims to provide a new solution to defend against memory corruption attacks (especially against non-control-data attacks). The involved techniques include TEE (Trusted Execution Environment), Intel SGX, ARM TrustZone, virtualization, program obfuscation, program analysis & binary rewriting, etc.

Students