报告人
Ming Xu
The National University of Singapore
时间
2025年2月6日 星期四
下午 13:00-14:00
地点
308会议室
Abstract
In an increasingly digital world, usable security and privacy guidelines are critical concerns. However, the data corpus is often chaotic, making it challenging to derive meaningful insights that can guide real-world systems. In this talk, I will present my work on transforming chaotic data into actionable security and usability guidelines and integrating them into practical systems. Focusing on textual passwords and security logs, my talk tackles these challenges with two main goals: 1) Exploring password-specific features and their security implications to create both usable and secure passwords, and 2) Investigating security considerations for building robust real-world systems, such as password strength meters and intrusion detection systems.
Biography
Ming Xu is a Research Fellow at the National University of Singapore, having earned her Ph.D. in 2023 from Fudan University. Her research focuses on data-driven usable security and privacy, highlighting explainable vulnerabilities in password strength meters and the intrusion detection systems. She has published 5 first- and co-first-author papers, including in top-tier conferences such as CCS'21, USENIX Security'23, ASE'24, and two papers in leading security journals IEEE TIFS and TDSC. Her work on textual password security earned second prize at the CCF Annual Award in 2022, highlighting password-specific habits to create usable and secure password guidelines. Ming has also been invited to serve on the organizational and program committees of several conferences, including RAID'25, ICML'25, and NeurIPS'24.
徐铭是新加坡国立大学的博士后研究员,2023年获得复旦大学博士学位。她的研究集中在数据驱动的可用安全性和隐私保护方面,发现口令度量器和入侵检测系统中的可解释的漏洞。她已发表了5篇第一作者和共同第一作者的论文,其中包括在顶级(CCF-A)会议如CCS'21、USENIX Security'23、ASE'24上的论文,以及在顶级(CCF-A)安全期刊IEEE TIFS和TDSC上的2篇论文。她在文本密码安全方面的研究工作获得了2022年CCF年度奖的二等奖,揭示了密码特定习惯,以创建既可用又安全的密码指南。徐铭还应邀担任多个会议的组织和程序委员会成员,包括RAID'25、ICML'25和NeurIPS'24。
