王子成 Zicheng Wang
Senior Operating System Engineer
Email: wangzicheng AT honor.com
[ CV (中文版本) ] [ CV (ver. English) ]
[ Github ] [ Scholar ]

My research focuses on Operating System Kernel Security, specifically in the areas of kernel vulnerabilities prevention and isolation/compartmentalization techniques. Recently I am researching on eBPF—an innovative in-kernel virtual machine—and its integration with AI models, to enhance both the security and performance aspects of the kernel. Currently, I am particularly interested in data-driven performance optimization in operating systems and applying machine learning techniques to improve system performance.

Experience

  1. Honor Device
    2024 ~ present
    Senior Operating System Engineer
  2. Univerisity of Colorado Boulder
    2023 ~ 2024
    Visiting Scholar Computer Science Department
  3. Nanjing University
    2018 ~ 2024
    Ph.D. State Key Lab for Novel Software Technology
    Outstanding Ph.D. Graduate
  4. Jilin University
    2014 ~ 2018
    B.Sc College of Software Engineering
    Cum Laude

Publications

  1. Research on Real-time Defense Against Kernel Vulnerabilities Based on eBPF
    基于eBPF技术的内核漏洞实时防御研究
    Zicheng Wang
    Ph.D. Thesis 2024
    [Awarded 2024 Nanjing University CS Department Outstanding Ph.D Thesis]

  2. SeaK: Rethinking the Design of a Secure Allocator for OS Kernel
    Zicheng Wang, Yicheng Guang, Yueqi Chen, Zhenpeng Lin, Michael Le, Dang K Le, Dan Williams, Xinyu Xing, Zhongshu Gu, Hani Jamjoom
    USENIX Security Symposium (Security) 2024

  3. PET: Prevent Discovered Errors from Being Triggered in the Linux Kernel
    Zicheng Wang, Yueqi Chen, Qingkai Zeng
    USENIX Security Symposium (Security) 2023
    [Awarded 2023 Nanjing University Funding for International Academic Conferences]

  4. BULKHEAD: Secure, Scalable, and Efficient Kernel Compartmentalization with PKS
    Yinggang Guo, Zicheng Wang, Weiheng Bai, Qingkai Zeng, Kangjie Lu
    Network and Distributed System Security (NDSS) 2025
    27th Chinasys Symposium 2024 / Kanxue Summit 2024

  5. Stop! Sandboxing Exploitable Functions and Modules Using In-Kernel Machine Learning
    Qinrun Dai, Tiejin Chen, Zicheng Wang, Hua Wei, Yueqi Chen
    BlackHat USA 2024 Briefing
    Linux Security Summit Europe 2024

  6. An Infrastructure For Preventing Compromise of Operating System Kernels Due to Discovered Errors
    Yueqi Chen, Zicheng Wang
    Provisional US Patent Application No.: 63/464,887

  7. When eBPF Meets Machine Learning: On-the-fly OS Kernel Compartmentalization
    Zicheng Wang, Tiejin Chen, Qinrun Dai, Yueqi Chen, Hua Wei, Qingkai Zeng
    arXiv:2401.05641

  8. Kill Latest MPU-based Protections in Just One Shot: Targeting All Commodity RTOSes
    Minghao Lin, Zicheng Wang, Jiahe Wang, Chaoyang Lin, Minghang Shen, Yueqi Chen
    BlackHat USA 2023 Briefing

  9. HotBPF++: A More Powerful Memory Protection for the Linux Kernel
    Zicheng Wang, Yueqi Chen
    Linux Security Summit North America 2023
    [Awarded Linux Foundation $1,600 Travel Fund]

  10. 基于eBPF的内核堆漏洞动态缓解研究
    Wang Zicheng,Guo Yinggang,Zhong Bingnan,Chen Yueqi,Zeng Qingkai
    软件学报 2023

  11. Formal Modeling and Security Analysis for Intra-level Privilege Separation
    Yinggang Guo, Zicheng Wang, Bingnan Zhong, Qingkai Zeng
    Annual Computer Security Applications Conference (ACSAC) 2022

  12. AttnCall: Refining Indirect Call Targets in Binaries with Attention
    Rui Sun, Yinggang Guo, Zicheng Wang, Qingkai Zeng
    European Symposium on Research in Computer Security (ESORICS) 2023

  13. CryptKSP: A Kernel Stack Protection Model Based on AES-NI Hardware Feature
    Bingnan Zhong, Zicheng Wang, Yinggang Guo, Qingkai Zeng
    ICT Systems Security and Privacy Protection (ICT SEC) 2022

  14. ERA:基于eBPF的内核堆漏洞动态缓解机制
    Zicheng Wang, Yinggang Guo, Yueqi Chen, Qingkai Zeng
    中国Linux内核开发者大会2023 (CLK) 2022
    [[RFC] HotBPF: Prevent Kernel Heap-based Exploitation]

Awards

  1. Nanjing University Outstanding Ph.D. Graduate

  2. Nanjing University Outstanding Graduate Student

  3. 2023 Nanjing University Funding for International Academic Conferences

  4. Awarded Linux Foundation $1,600 Travel Funding

Teaching Assistant

  • Advanced Object Oriented Programming, 2018 Fall

  • Assembly Programming, 2019 Summer

Services

  • Peer Review IEEE Transactions on Information Forensics and Security

Open Source

  1. Seak
    SeaK: Rethinking the Design of a Secure Allocator for OS Kernel

  2. O2C
    On-the-fly compartmentalization for kernel vulnerabilities

  3. ERA-eBPF-assisted-Randomize-Allocator
    An eBPF assisted Randomization Allocator to prevent kernel heap vulnerabilities

  4. PET
    An eBPF framework to prevent discovered error from being triggered

  5. TA-BattleEinsteinChess
    2018 TA project, Einstein Chess Battle Server, support 200+ players.

  6. CCFrank4dblp
    Displays the CCF recommended rank of conferences and journals, commit "ConnectedPapers" support.

last update: 2025-02-26