Peking University, Beijing, March 4, 2009: Recently, Mr. Wang Tielei, the doctoral candidate without a master degree from the Institute of Computer Science and Technology of Peking University (ICST) published his thesis entitled “IntScope: Automatically Detecting Integer Overflow Vulnerability In X86 Binary Using Symbolic Execution” in the 16th Annual Network & Distributed System Security Symposium. The article introduces a new approach to dig bugs in program integer overflows. It is the first time, since the foundation of NDSS 16 years ago, for the institution from mainland China to publish an article in the NDSS as the unit of the first author.

NDSS is one of the two most important conferences held by Internet Soceity and one of the four most highly recognized international conferences in the filed of system security, famous for its insistence upon the applicability of the research and the quality of articles. In 2009, only 11.7% of all the articles were accepted.

Thanks to WANG’s discovery, his team, which is dedicated to analyzing the weakness of software security, has been able to find out over 20 latest bugs in popular software, stimulating international organizations such as CVE and FrSIRT and relevant manufacturers to update their security system. Over the past two years, the team has produced several pioneering researches.

Edited by: Ding Zhilan

Translated by: Lin Jingxian

Source: PKU News (Chinese)