I am currently involved with the following:
Associate Professor, Director of Cybersecurity Laboratory
Department of Computer Science and Engineering (direction)
The Hongkong University of Science and Technology
Room 3516 (lift 25/26) Tel: (852)23586997 Fax: (852)23581477
If you like programming and care about writing more secure programs, send me emails for Post-Doc and RA positions.
I am currently involved with the following:
|   ||   ||   |
Congrats to Gang in defending his thesis. He is now Dr. Fan! Congratulations to Heqing on his fuzzing work accepted by Oakland! Jeff is now a tenured professor at TAMU! Congratulations to Qingkai on his double ICSE acceptances! Congratulations to Rongxin Wu for joining the CS faculty of Xiamen University! Congratulations to Gang for winning the Distinguished Paper Award on finding memory leaks over large scale software at ICSE 2019! Congratulations to Qirun Zhang for joining Georgia Tech CS as an assistant professor! The Pinpoint paper has been accepted by PLDI 2018. You can play with this simple online version.
My general reseach interest centers around the use of both static and dynamic programm analysis techniques for making complex software systems more secure and reliable. Below are the representative publications:
- The Pinpoint project has been the major research activity of my group for the past four years. The core idea has now been accepted by PLDI 2018. And there is an online demo. You can read the following the paper to get a basic understanding: Qingkai Shi, Xiao Xiao, Rongxin Wu, Jinguo Zhou, Fan Gang and Charles Zhang Pinpoint: Fast and Precise Sparse Value Flow Analysis for Million Lines of Code. In PLDI 2018: the 39th annual ACM SIGPLAN conference on Programming Language Design and Implementation. Philadelphia, USA, June, 2018 Pinpoint is being commercialized by Sourcebrella. We have pushed the core techniques forward for type-state bugs(ICSE 2019), extensibility of the core engine(ICSE 2020a), parallelization of static anlaysis (ICSE 2020b), ....
- Casper is the first ever POPL paper from Hong Kong and the idea is both clever and practical. For instance, Rongxin, the first author has applied the idea to solve debugging problems for the WeChat devlopment team. Rongxin Wu, Xiao Xiao, Shing-Chi Cheung, Hongyu Zhang and Charles Zhang. Casper: An Efficient Approach to Call Trace Collection. In POPL 2016: 43rd ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, St. Petersburg, Florida, January 2016. (paper)
- This invited paper by JCST summarizes well the core dynamic anlaysis work we did, including LEAP (FSE2010), PECAN(ISSTA 2011), LEAN(OOPSLA 2012), and CLAP(PLDI 2013), for finding errors in multithreaded programs. Jeff Huang and Charles Zhang.Debugging Concurrent Software: Advances and Challenges. In Journal of Computer Science and Technology, Vol. 31 (5): 861-868, 2016 (Invited)
- The CLAP paper is the first ever paper award by PLDI to an Asian university and I am very pround of it. Jeff is now a professor at Texas A&M University. (SIGPLAN PLDI Distinguished Paper Award, Nominated for CACM Research Highlights) Jeff Huang, Charles Zhang and Julian Dolby CLAP: Recording Local Executions to Reproduce Concurrency Failures. In PLDI 2013: the 34th annual ACM SIGPLAN conference on Programming Language Design and Implementation. Seattle, USA, June. 2013.(paper)
- Heqing Huang, Peisen Yao, Rongxin Wu, Charles Zhang Pangolin: Incremental Hybrid Fuzzing with Polyhedral Path Abstraction In IEEE S&P:: Proceedings of the 41st IEEE Symposium on Security and Privacy, San Francisco, USA, May, 2020.
- Qingkai Shi, Charles Zhang, Pipelining Bottom-up Data Flow Analysis, In ICSE 2020: The 42nd ACM/IEEE International Conference on Software Engineering, Seoul, Korea, May, 2020
- Qingkai Shi, Rongxin Wu, Gang Fan, Charles Zhang, Conquering the Extensional Scalability Problem for Value-Flow Analysis Frameworks In ICSE 2020:The 42nd ACM/IEEE International Conference on Software Engineering, Seoul, Korea, May, 2020
- (ICSE Distinguished Paper) Gang Fan, Rongxin Wu, Qingkai Shi, Xiao Xiao, Jinguo Zhou, Charles Zhang SMOKE: Scalable Path-Sensitive Memory Leak Detection for Millions of Lines of Code In ICSE 2019: The 41st International Conference on Software Engineering, Montreal, Canada, May, 2019.
- Qingkai Shi, Xiao Xiao, Rongxin Wu, Jinguo Zhou, Fan Gang and Charles Zhang Pinpoint: Fast and Precise Sparse Value Flow Analysis for Million Lines of Code. In PLDI 2018: the 39th annual ACM SIGPLAN conference on Programming Language Design and Implementation. Philadelphia, USA, June, 2018
View all publications
I am fortunate to work with the following students:
In progress:Yikun Hu (Post-Doc), Qingkai Shi (Ph.D), Wensheng Tang (Ph.D), Yongchao Wang (Ph.D), Peisen Yao (Ph.D), Yiyuan Guo (Ph.D), Yushan Zhang (Ph.D), Chengpeng Wang, Yuandao Cai, Maryam Masoudian. Heqing Huang (Ph.D), Anshunkang Zhou(Ph.D), Lingjie Huang (M.Phil),Alumni:
Gang Fan (Ph.D) , Staff Engineer, SourceBrella Inc. Rongxin Wu (Post-Doc), Associate Professor, Xiamen University Yepang Liu (Post-Doc), Assistant Professor, SUSTech Richard Xiao (Ph.D, Post-Doc), SourceBrella Inc. (Founder, CEO) Jinguo(Andy) Zhou (Post-Doc), SourceBrella Inc. (Co-Founder) Qirun Zhang (Post Doc) Assistant Professor, Georgia Tech Peng Liu (Ph.D), Researcher, IBM T.J.Watson Research Lab Jeff Huang (Ph.D), Assitant Professor, Texas A&M University Bin Xu (M.Phil) Software Engineer, Facebook Fan Yu(M.Phil), Software Engineer, Pinduoduo.
COMP4111: Software Engineering Practices
COMP3021: Java Programming (Fall 2015, Spring 2014; Spring, 2013; Spring 2012)
COMP5111: Fundamentals of Software Analysis (Spring 2014; Spring, 2013; Spring 2011; Fall, 2009; Fall, 2008)
COMP3111: Introduction to Software Engineerings (Fall, 2014;Fall, 2011;Fall, 2010; Spring, 2010,Spring 2009)
COMP610: Topics in Engineering Enterprise Middleware Platforms. (Spring, 2009)
IEEE TSE: Associate Editor
ASE: 2018 (TPC),   2016(Demo),    2013 (TPC)
FSE: 2019 (TPC),    2014 (TPC, DS, SRC)     2012 (TPC, NIER)
ICSE:   2014 (TPC)     2012 (Demo, SRC)     2009 (Demo)
ISSTA:    2014 (TPC)     2012 (TPC)
OOPSLA:     2015 (TPC)    2014 (ERC)     2012 (ERC)     2011 (TPC)
ISSTA:    2016 (Doctorla Symposium Co-Chair)
ICSE:    2016 (Proceedings Chair)
PLDI:    2012 (Pacific Publicity Chair)
AOSD:    2013 (Demo Chair)
APSEC:   2012 (Postgraduate Symposium Chair)
InternetWare: 2014 (Co-Chair)
Charles Zhang is an Associate Professor and the director of the Cybersecurity Lab in the Department of Computer Science and Engineering, HKUST. His major research interest is the use of program analysis techniques to improve software reliability. He has published extensively at premium conferences and journals of programming languages and software engineering. He has served as an associate editor of IEEE TSE, in addition to numerous organizational and technical committees of international conferences. His research received many awards including PLDI distinguished paper award, ACM SIGSOFT Doctoral Dissertation Award, and IBM PhD fellowships. His research is supported by Research Grant Council, Innovation and Technology Fund, and grants from Microsoft and IBM. Charles obtained his Ph.D, M.Sc, and B.Sc. with honours, all from University of Toronto.