CV

General Information

Full Name Hyungjoon Koo
Job Associate Professor
Email kevin.koo AT skku.edu
Telephone +82-31-299-4958
Languages English, Korean

Education

  • 2013-2019
    Doctor of Philosophy
    Stony Brook University, NY, USA
    • (Major) Computer Science
    • (Adviser) Michalis Polychronakis
    • Dissertation
      • Practical Software Specialization against Code Reuse Attacks
  • 2008-2010
    Master
    Korea University
    • (Major) Information Security
    • (Adviser) Sangjin Lee
    • Thesis
      • Pre-detection Model for Trusted Insider’s Leaks and Manipulation from a Forensic Perspective

Experiences

  • 2019-2020
    Postdoctoral Researcher
    Georgia Tech
    • (Adviser) Taesoo Kim
    • https://gts3.org
  • Summer 2020
    Instructor
    ONR Software Security Summer School (SSSS20)
    • https://www.cerias.purdue.edu/site/ssss20
  • 2014-2019
    Research Assistant
    Stony Brook University
    • Software security
  • Summer 2018
    Intern
    Fujitsu Laboratories of America
    • Fuzzing and concolic execution
  • Summer 2016
    Intern
    Fujitsu Laboratories of America
    • Automated binary hardening
  • 2013-2017
    Teaching Assistant
    Stony Brook University
    • (CSE102) Introduction to Web Design and Programming by Ahmad Esmaili, Fall 2013
    • (CSE130) Introduction to Programming in C by Ahmad Esmaili, Fall 2013
    • (CSE312) Legal, Social, and Ethical Issues in Information Systems by Robert Johnson, Spring 2014
    • (CSE408) Network Security by Robert Johnson, Spring 2014
    • (CSE508) Network Security for Graduates by Michalis Polychronakis, Fall 2017
  • Summer 2013
    Lecturer
    Korea Productivity Center
    • Security Essentials
  • Spring 2013
    Lecturer
    Korea Internet & Security Agency
    • Network Security for Rwanda government officials
  • 2011-2012
    Security Researcher
    Shinhan Bank
    • Review, deployment, and operation on Advanced Persistent Threat (a.k.a APT) products
    • Discovery and analysis on new breed of on the fly cyber attacks over company network
    • Cryptographic module maintenance for critical customers’ information
    • Up to date anti-virus engine deployment to protect 24/7 ATM banking
    • Security review for brand-new banking services to comply related regulations
  • 2006-2011
    Assistant Manager
    Samsung SDS
    • Policy establishment and deployment to decrease botnet activities over company network
    • Leading the project to design Security History Information Management System for web apps
    • Writing guidelines and education about web application security for developers
    • Penetration testing on Sri Lanka’s Government Network project (2007)
    • Incident response against web/network based attacks
    • Review security COTS products including web app firewall, source code analysis tool, etc.
    • Performing internal IT audit

Services

  • Program Committee
    • ACM ASIA Conference on Computer and Communications Security (ASIACCS) 2027
    • General Chair for Information Security Conference (ISC) 2025
    • Workshop on Large AI Systems and Models with Privacy and Security Analysis (LAMPS), collocated with CCS 2025
    • Workshop on Software Understanding and Reverse Engineering (SURE), collocated with CCS 2025
    • Deep Learning Security and Privacy Workshop, collocated with S&P 2025
    • Program Co-chair for Security & Privacy Domain in International Conference on Parallel and Distributed Systems (ICPADS) 2024
    • IEEE Symposium on Security and Privacy (S&P) 2024
    • Annual Computer Security Applications Conference (ACSAC) 2023-26
    • International Symposium on Foundations & Practice of Security (FPS) 2022-25
    • NYU’s CSAW Program Committee 2019-2024
    • World Conference on Information Security Applications (WISA) 2021
  • Organizing Committee
    • Publication Chair for IEEE Secure Development Conference (SecDev) 2024, 2023
  • Session Chair
    • ACM ASIA Conference on Computer and Communications Security (ASIACCS) 2023
    • Workshop on Privacy in the Electronic Society (WPES), collocated with CCS 2021
    • World Conference on Information Security Applications (WISA) 2021
  • Journal Reviewer
    • ACM Computing Surveys (CSUR) 2025
    • The Journal of Supercomputing 2025
    • Korea Institute of Information Security & Cryptology (KIISC) 2024-25
    • ACM Transactions on Software Engineering and Methodology (TOSEM) 2024
    • IEEE Transactions on Software Engineering (TSE) 2024
    • Editor, Journal of Information Processing Systems (JIPS) 2024-25
    • Neurocomputing 2024
    • Information and Software Technology (IST) 2024
    • IEEE Transactions on Dependable and Secure Computing (TDSC) 2022
    • Computers and Security (COSE) 2023, 2021
    • IEEE Internet Computing (IC) 2022
    • International Journal of Information Security (IJIS) 2020-21
    • IEEE Security & Privacy Magazine (S&P) 2019-21, 2024
    • Frontiers of Information Technology & Electronic Engineering (FITEE) 2020, 2024
    • IEEE Access 2019
    • IEEE/ACM Transactions on Networking (TON) 2019

Invited Talks

    • A Decade-long Landscape of Advanced Persistent Threats, AI Security Research Group, KIISC (Dec. 2025)
    • Binary Reversing with AI, ENKI Whitehat (Sep. 2024)
    • AI-assisted Executable Binary Reversing, National Security Research Institute (NSR, Sep. 2024)
    • Executable Binary Analysis with AI, Workshop on Information Security and Cryptography (WISC '23) (Sep. 2023)
    • A Transformer based Function Symbol Name Inference Model from an Assembly Language for Binary Reversing, Kyunghee University Seminar (Aug. 2023)
    • Understanding of Advanced Code Reuse Attacks and Defenses, UNIST Security Seminar (Dec 2022)
    • A Practical Binary Similarity Detection Approach, Sejong Cybersecurity Workshop 0x01 (Oct 2022)
    • Binary Code Representation for Deep Learning and its Applications, Software Convergence Symposium (SWCS, Apr 2022)
    • Semantic-aware Binary Code Representation with Deep Learning, Fall KAIST Security Colloquium (Nov 2021)
    • Executable Binary Code Representation with Deep Learning, KOCSEA Technical Symposium Program (Nov 2021)
    • Crash Course on Deep Learning for Security, Soongsil University (Jul 2021)
    • Toward Better Binary Code Representation with Deep Learning, Seoul National University (Jun 2021)
    • Software Protection via Code Randomization, University of Tennessee (Nov 2020)
    • Practical Software Specialization against Code Reuse Attacks, Sungkyunkwan University (Feb 2019)
    • Practical Software Specialization against Code Reuse Attacks, KAIST (Feb 2019)
    • Practical Software Hardening against Code Reuse Attacks, Georgia Tech (Nov 2018)
    • Software Hardening with Code Diversification, CS Colloquium at SUNY Korea (Jun 2018)
    • Software Hardening with Code Diversification, Korea University (May 2018)
    • Software Hardening with Code Diversification, Samsung Research (May 2018)
    • Software Hardening, Cyber Symposium by the Stony Brook Computing Society (Apr 2018)
    • Elaborate Attacks with Existing Tools, National Computing & Information Agency (May 2013)
    • Anonymizing Yourself with Tor, Korea Internet & Security Agency (Apr 2013)

Patents

  • Device and Method for Program Behavior Generation Using Under-Constrained State Mutation for Automated Root Cause Analysis
    • Younggi Park, Hwiwon Lee, Huykang Kim, and Hyungjoon Koo
    • App No. 10-2025-0065904, South Korea
  • Relative readability index for Decompiled Codes
    • Hyungjoon Koo, Sungjae Hwang, Haeun Eom, Dohee Kim, and Sori Lim
    • App No. 10-2024-0105125, South Korea
  • Apparatus and method for detecting similarity of binary code
    • Sunwoo Ahn, Seonggwan Ahn, Hyungjoon Koo, and Yunheung Paek
    • Patent No. 10-2852624, South Korea
    • App No. 18-596-194, United States
  • Methods and apparatus for inferring function symbols from assembly code in transformer-based executable binary, and recording medium
    • Hyungjoon Koo, Hyunjin Kim, and Jinyeong Bak
    • Patent No. 10-2781464, South Korea
    • App No. 18-674-646, United States
  • Watermarking method for smart contract
    • Hyoungshick Kim, Taeyoung Kim, Yunhee Jang, Chanjong Lee, and Hyungjoon Koo
    • Patent No. 10-2702323, South Korea
    • Patent No. 12399962, United States
  • Method and device of embedding watermark in software
    • Hyungjoon Koo, Sangjin Lee, and Honggu Kang
    • Patent No. 10-2741959, South Korea
    • Patent No. 12517988, United States
  • Method of detecting intrusion for infotainment systems and apparatus thereof
    • Hyungjoon Koo
    • Patent No. 10-2022-0005421, South Korea
  • System and method for responding DDoS offensive
    • 허창열, 구본재, 박봉희, Hyungjoon Koo, 정규태
    • Patent No. 10-2010-0065260, South Korea