Paper List

2024年:

  1. Han Liu, Daoyuan Wu, Yuqiang Sun, Haijun Wang, Kaixuan Li, Yang Liu, Yixiang Chen. Using My Functions Should Follow My Checks: Understanding and Detecting Insecure OpenZeppelin Code in Smart Contracts. 33rd USENIX Security Symposium (USENIX Security 2024)(CCF-A会议).

  2. Kaixuan Li, Yue Xue , Sen Chen, Han Liu , Kairan Sun, Ming Hu, Haijun Wang, Yang Liu, Yixiang Chen. Static Application Security Testing (SAST) Tools for Smart Contracts: How Far Are We?.  ACM International Conference on the Foundations of Software Engineering (FSE 2024). (Distinguished Paper Award) 

  3. Ang Jia, Ming Fan, Xi Xu, Wuxia Jin, Haijun Wang, Ting Liu. Cross-Inlining Binary Function Similarity Detection. IEEE/ACM 46th International Conference on Software Engineering. (ICSE 2024). CCF-A会议

  4. Yuqiang Sun, Daoyuan Wu, Yue Xue, Han Liu, Haijun Wang, Zhengzi XuXiaofei Xie, Yang Liu. GPTScan: Detecting Logic Vulnerabilities in Smart Contracts by Combining GPT with Program Analysis. IEEE/ACM 46th International Conference on Software Engineering. (ICSE 2024)CCF-A会议

  5. Xi Xu, Qinghua Zheng, Zheng Yan, Ming Fan, Ang Jia, Zhaohui Zhou, Haijun Wang, and Ting Liu. PatchDiscovery: Patch Presence Test for Identifying Binary Vulnerabilities Based on Key Basic Blocks. IEEE Transactions on Software Engineering. (TSE)CCF-A期刊JCR 1区)

  6. Maoyi Xie,  Ming Hu, Ziqiao Kong, Cen Zhang, Yebo Feng, Haijun Wang, Yue Xue, Hao Zhang, Ye Liu, Yang Liu. DeFort: Automatic Detection and Analysis of Price Manipulation Attacks in DeFi Application.  ACM SIGSOFT International Symposium on Software Testing and Analysis. (ISSTA 2024).  (CCF-A会议)

  7. Yi Hou, Wuxia Jin, Zhijun Wang, Liuming Wang, Shuguang Chen, Yihan Wang, Lei Sang, Haijun Wang, Ting Liu. ERD-CQC : Enhanced Rule and Dependency Code Quality Check for Java. Internetware 2024.

2023年及以前:

  1. Haijun Wang, Ye Liu, Yi Li, Shang-wei Lin, Cyrille Artho, Lei Ma, Yang Liu. Oracle-Supported Dynamic Exploit Generation for Smart Contracts. IEEE Transactions on Dependable and Secure Computing, 2022, DOI:10.1109/TDSC.2020.3037332CCF-A期刊JCR 1区)
  2. Haijun Wang, Xiaofei Xie, Yi Li, Cheng Wen, Yuekang Li, Yang Liu, Shengchao Qin, Hongxu Chen, Yulei Sui. Typestate-Guided Fuzzer for Discovering Use-after-Free Vulnerabilities. ACM/IEEE 42nd International Conference on Software Engineering. 2020,Pages 9991010.CCF-A会议
  3. Haijun Wang, Yun Lin, Zijiang Yang, Jun Sun, Yang Liu, Jingsong Dong, Qinghua Zheng, Ting Liu. Explaining Regressions via Alignment Slicing and Mending. IEEE Transactions on Software Engineering, 2021, DOI:0.1109/TSE.2019.2949568.CCF-A期刊JCR 1区)
  4. Haijun Wang, Xiaofei Xie, Shang-Wei Lin, Yun Lin, Yuekang Li, Shengchao Qin, Yang Liu and Ting Liu. Locating Vulnerabilities in Binaries via Memory Layout Recovering. 27th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2019, Pages 718-728. (CCF-A会议)
  5. Haijun Wang, Ting Liu, Xiaohong Guan, Chao Shen, Qinghua Zheng, Zijiang Yang. Dependence Guided Symbolic Execution. IEEE Transaction on Software Engineering, 2017, Pages 252-271. (CCF-A期刊JCR 1)
  6. Jianfei Zhou, Tianxing Jiang, Haijun Wang, Meng Wu, and Ting Chen. DAppHunter: Identifying Inconsistent Behaviors of Blockchain-based Decentralized Applications. IEEE/ACM 45th International Conference on Software Engineering: Software Engineering in Practice (ICSE-SEIP). IEEE, 2023: 24-35.
  7. Cheng Wen, Haijun Wang, Yuekang Li, Xiaofei Xie, Hongxu Chen, Shengchao Qin, Yang Liu, Zhiwu Xu and Ting Liu. MemLock: Memory Usage Guided Fuzzing. ACM/IEEE 42nd International Conference on Software Engineering. 2020, Pages 765–777.CCF-A会议, 通讯作者)
  8. Xiaofei Xie, Lei Ma, Haijun Wang, Yuekang Li, Yang Liu, Xiaohong Li.  DiffChaser: Systematic Disagreement Detection of Deep Neural Networks. Twenty-Eighth International Joint Conference on Artificial Intelligence2019Pages 5772-5778CCF-A会议,通讯作者)
  9. Yinxing Xue, Jiaming Ye, Wei Zhang, Jun Sun, Lei Ma, Haijun Wang, Jianjun Zhao. xFuzz: Machine Learning Guided Cross-Contract Fuzzing. IEEE Transactions on Dependable and Secure Computing, 2022, Accepted. (CCF-A期刊JCR 1)
  10. Haijun Wang, Yi Li, Shang-wei Lin, Lei Ma, Yang Liu. VULTRON: Catching Vulnerable Smart Contracts Once and for All. IEEE International Conferences on Software Engineering: New Ideas and Emerging Results, 2019.
  11. Hongxu Chen, Shengjian Guo, Yinxing Xue, Yulei Sui, Cen Zhang, Yuekang Li, Haijun Wang and Yang Liu. MUZZ: Thread-aware Grey-box Fuzzing for Effective Bug Hunting in Multithreaded Programs,29th USENIX Security Symposium,2020,Pages 2325-2342. (CCF-A会议)
  12. Yuekang Li, Yinxing Xue, Hongxu Chen, Xiuheng Wu, Cen Zhang, Xiaofei Xie, Haijun Wang and Yang Liu. Cerebro: Context-aware Adaptive Fuzzing for Effective Vulnerability Detection27th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2019, Pages 533-544. (CCF-A会议)
  13. Yun Lin, Jun Sun, Lyly Tran, Guangdong Bai, Haijun Wang, and Jinsong Dong. Break the Dead End of Dynamic Slicing: Localizing Data and Control Omission Bug. The 33rd IEEE/ACM International Conference on Automated Software Engineering, 2018Pages 509-519. (CCF-A会议)
  14. Yuekang Li, Guozhu Meng, Jun Xu, Cen Zhang, Hongxu Chen, Xiaofei Xie, Haijun Wang and Yang Liu. VALL-NUT: Principled Anti-Greybox-Fuzzing. The 32nd International Symposium on Software Reliability Engineering, 2021. (CCF-B会议)
  15. Haijun Wang, Xiaohong Guan, Qinghua Zheng, Ting Liu, Xiangyang Li, Lechen Yu, Zijiang Yang. Reducing Test Cases with Causality Partitions. 26th International Conference on Software Engineering and Knowledge Engineering, Vancouver, Canada, 2014Pages 223-228.
  16. Haijun Wang, Xiaohong Guan, Qinghua Zheng, Ting Liu, Chao Shen, Zijiang Yang. Directed Test Suite Augmentation via Exploiting Program Dependency. 2014 IEEE International Conference on Software Engineering Workshop on Constraints in Software Testing, Verification, and Analysis, 2014.
  17. Shen Chao, Haodi Xu, Haijun Wang, and Xiaohong Guan. Handedness recognition through keystroke-typing behavior in computer forensics analysis. In Proceedings of 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communication. 2016, Pages 1054-1060.
  18. Ting Liu, Zhiwen Wang, Haijun Wang, Ke Lu. An Entropy-based Method for Attack Detection in Large Scale Network. International Journal of Computers Communications & Control.  2012, 7(3): 509-517
  19. 俞乐晨, 王海军, 郑庆华, 刘烃, 黄小龙, 杨子江, 魏嵬. 基于分支概率引导的回归测试案例生成方法. 中南大学学报(自然科学版), 2013, 44 (S2). 317-322.
  20. 王志文,黄小龙,王海军,刘烃,俞乐晨. 基于程序切片的测试用例生成系统研究与实现. 计算机科学. 2014. Issue (9): 71-74.
  21. Zhenzhou Tian, Qinghua Zheng, Ming Fan, Eryue Zhuang, Haijun Wang, Ting Liu. DBPD: A Dynamic Birthmark-based Software Plagiarism Detection Tool. International Conference on Software Engineering and Knowledge Engineering, Vancouver, Canada, 2014. (Best Demo Award)

Patent List

  1. 傅滢,王海军,邬萌. 智能合约的安全检测方法及装置. 发明专利(ZL2021107492825). 授权公告日:2022517
  2. 王海军,邬萌,傅滢. 一种区块链虚拟机的测试方法和系统. 发明专利 (ZL2021100876078). 授权公告日:20211026.
  3. 王海军,邬萌,蒋海滔. 调用智能合约的方法和装置. 发明专利 (ZL2021101963001). 授权公告日:20220111.
  4. 王海军,邬萌. 确定业务变更关联的程序语句的方法和装置. 发明专利 (ZL2020115155354). 授权公告日:20210326.
  5. 王海军,邬萌,傅滢. 一种区块链智能合约的测试方法和系统. 发明专利 (ZL2020115524363). 授权公告日:20210706.
  6. 邬萌,王海军. 一种智能合约资损测试方法与系统. 发明专利 (ZL2021100867628). 授权公告日:20210924.
  7. 邬萌,王海军. 生成智能合约测试案例的方法和装置. 发明专利(ZL2020110541521. 授权公告日:20210115.
  8. 邬萌,王海军. 智能合约的验证方法和装置. 发明专利(ZL2020114353803. 授权公告日:20210226.
  9. 邬萌,王海军. 生成智能合约测试案例的方法和装置. 发明专利 (ZL2020112830348. 授权公告日:20210226.
  10. Xiaohong Guan, Qinghua Zheng, Ting Liu, Haijun Wang. The Method For Test Case Reduction Based on Program Behavior Slices (美国专利:US009355019B2). 授权公告日:2016531
  11. 管晓宏, 郑庆华, 刘烃, 王海军, 俞乐晨, 黄小龙. 基于程序行为切片的测试案例约减方法. 发明专利 (ZL2013104791958). 授权公告日:20160427
  12. 郑庆华, 刘烃, 王海军, 俞乐晨, 黄小龙. 基于程序控制依赖引导的回归测试案例生成方法. 发明专利 (ZL2013103623033). 授权公告日:20160810
  13. 刘烃, 陈泽华, 王海军, 郑庆华, 管晓宏, 朱海萍.基于切片模型的程序回归错误定位方法. 发明专利 (ZL2016103685550). 授权公告日:20170627

National Standard

  • 国家标准《信息安全技术 区块链技术安全框架》主要起草人: 王小云、穆长春、狄刚、贾珂婷、郭晓雷、王海军、张爽、王海棠、张韧、王宗岳、郁昱、魏普文、段斯斯、潘国振、王博、苏年乐、金涛、龚自洪、昌文婷、荆博、张海滨、何超、王海龙、邱鹏程、陈宇、王安宇、陈平、郭山清、张国艳、任奎、张宇光、孙晓丽、刘健、秦岭月、李克鹏。
  • 国家标准《区块链和分布式记账技术 智能合约生命周期管理技术规范》主要起草人:李鸣、闫莺、彭晋、昌文婷、周平、邱英英、杜宇、郝汉、李克鹏、欧昀、王栋、于秀明、李努锲、杨征、梁志宏、王海军、张雁、张晓蒙、蔡亮、陶立春、王绍刚、王晨辉、王威、谢辉、刘亭杉、劳卫伦、刘天成、阚海斌、笪鸿飞、龚自洪、杨国正、兰春嘉、王义、艾崧溥、相里朋、王文呈、潘妍、张子怡、张亮亮、任凤丽、杨文锋、武杨、任常锐、孙林、陈晓丰、郝玉琨、康信伟、石娜、郁岩生、谭林、黄宇翔、范铭、邬萌、邱炜伟、刘冕宸、金晓娜、梁军、钟礼斌、宋文鹏、杨珍、王鑫、王海龙、田森、包小敏、彭涛、孙琳、种法辉、张小军、曲强、李达、晏海水、杨荣霞、苏庆慧、杜娟、贾祥娟、周钢、张栋、曹建农、王保春、庞伟伟、颜爱军、钱京、樊小毅、陈冬、周子茗、张金伟、马春荃、华崇鑫、魏凯、张奕卉、石竹玉、黄德俊、秦日臻、谢云龙、郭东升、季静婷、陈志列、庞观士。 

Project List

  1. 陕西三秦英才计划. 区块链系统安全评估与防御研究. 2024年6月-2026年5月. 30万. (主持)
  2. 国家自然科学基金面上项目.区块链跨链桥的验证逃逸类安全漏洞检测方法研究. 2024年1月-2027年12月,50万.(主持)
  3. 联通集团横向项目. 2023年中国联通DevOps平台软件物料治理研究.2023年5月-2023年12月,302万.(主持)
  4. 陕西创新项目. 区块链信息服务系统的XXX. 2023年-2026年,100万.(主持)
  5. 蚂蚁集团高校合作项目.区块链跨链交易安全及取证. 2022年12月-2023年12月,50万. (主持)