Profile

Hyungjoon Koo (Kevin)

About | Interests | Publications | Reviews | Work Experiences | Projects | Activities 

I am a postdoctoral researcher at SSLab in Georgia Tech, working with Taesoo Kim. I earned my Ph.D. in Computer Science (CS) from Stony Brook University (adviser: Michalis Polychronakis). I received the M.Sc. degree in Information Security from Korea University, working at the Digital Forensics Lab (DFRC) with Sangjin Lee. I studied computer science in the University of Texas at Austin as an exchange student. I also had worked for Samsung SDS and Shinhan bank in a security team. I am fortunate to have a variety of interesting experiences from both industrial and academic sides in the security field, thanks to the great people who led me.

With the Internet of Things, security matters everywhere by getting more connected each other ever. So I wanted to make this space reserved for writing down stuff (security findings, knowledge I often forget, what I have done for fun and so on). I like dealing with practical security which impacts on human’s life, based upon theory. 

I am actively seeking a job now. 🙂

Contact | Google Scholar | Github | LinkedIn | Facebook | Tweet | CV 

Interests


  • Binary analysis, hardening and protection
  • Software security
  • Digital forensics
  • Anonymity VS Censorship
  • Malware analysis
  • Insider threat and profiling
  • Internet of Things Security
  • Applying machine learning and visualization to security practices

Publications / Patent


Committee / (External) Review Service


    • Frontiers of Information Technology & Electronic Engineering (FITEE) 2020
    • International Journal of Information Security (IJIS) 2020
    • The Network and Distributed System Security Symposium (NDSS) 2020
    • NYU’s CSAW ’19 Program Committee 2019
    • IEEE Access 2019
    • IEEE/ACM Transactions on Networking (TON) 2019
    • IEEE Security & Privacy Magazine (S&P) 2019 

Selected Projects / Presentations


Work Experiences


System / Software Security (Michalis Polychronakis)
Traffic Differentiation / Internet Censorship (Philipa Gill)

      • Intern at Fujitsu Laboratories of America (Jun. – Aug. 2018)
        Fuzzing and concolic execution
      • Intern at Fujitsu Laboratories of America (Jun. – Aug. 2016)
        Automated binary hardening
      • Teaching Assistant at Stony Brook University
        [CSE102] Introduction to Web Design and Programming (Ahmad Esmaili), Fall 2013
        [CSE130] Introduction to Programming in C (Ahmad Esmaili), Fall 2013 
        [CSE312] Legal, Social, and Ethical Issues in Information Systems (Robert Johnson), Spring 2014 
        [CSE408] Network Security (Robert Johnson), Spring 2014
        [CSE508] Network Security for Graduates (Michalis Polychronakis), Fall 2017 
      • Lecturer
        Security Essentials, Korea Productivity Center, July 2013
        Network Security for Rwanda government officials, KISA, Mar 2013 
      • Security Researcher at Shinhan Bank (Jul. 2011 – Sep. 2012)
        Review, deployment, and operation on Advanced Persistent Threat (a.k.a APT) products

        Discovery and analysis on new breed of on-the-fly cyber attacks over company network
        Cryptographic module maintenance for critical customers’ information 
        Up-to-date anti-virus engine deployment to protect 24/7 ATM banking
        Security review for brand-new banking services to comply related regulations
      • Assistant Manager at Samsung SDS and Samsung Networks (Jan. 2006 – Jun. 2011)
        Policy establishment and deployment to decrease botnet activities over company network

        Leading the project to design Security History Information Management System for web apps
        Writing guidelines and education about web application security for developers 
        Penetration testing on Sri-Lanka’s Government Network project (2007)
        I
        ncident response against web/network based attacks
        Review security COTS products including web app firewall, source code analysis tool, etc.
        Performing internal IT audit

Professional Activities


Certifications 


          • EnCE (EnCase® Certified Examiner) by Guidance Software (2010)
          • CHFI (Computer Hacking Forensic Investigator) by EC-Council (2010)
          • RHCT (Red Hat Certified Technician) by RedHat (2009)
          • CC (Common Criteria Evaluation) by NCSC (2009)
          • GCIH (Certified Incident Handler) by GIAC (2008)
          • CISA (Certified Information Systems Auditor ) by ISACA (2008)
          • CISSP (Certified Information Systems Security Professional) by (ISC)2 (2008)
          • SIS (Specialist for Information Security) by KISA (2007)
          • CCNA (Cisco Certified Network Associate) by Cisco (2006)

Last updated (Oct. 2020)