Tong Zhu (祝童)

Department of Computer Science & Engineering
Shanghai Jiao Tong University
800 Dongchuan Rd., Shanghai 200240, China

Lab: Network Security and Privacy Protection (NSEC) Lab
Email: tongzhu AT sjtu.edu.cn
[CV_in_English] [CV_in_Chinese]

Short Bios

I am pursuing my Ph.D. degree at the Department of Computer Science & Engineering of Shanghai Jiao TongUniversity. Previously, I received a Bachelor of Science degree in the field of computer science and technology from University of Electronic Science and Technology of China in June 2019. My current research interests is mobile security and privacy. I published several international conference and journal papers, including: ACM CCS ('21, '24), USENIX Security, IEEE ICDCS, DFRWS, and Digital Investigation. I have identified and reported multiple security vulnerabilities in various systems. I also serve as the reviewer for academic journals including Peer-to-Peer Networking and Applications (PPNA).

Research Interest

Static / dynamic analysis on mobile systems such as Android.
Mobile advertising fraud detection.
Digital forensics.

Education

Ph.D., computer science and Engineering, 2019 - Current
Shanghai Jiao Tong University, Shanghai, China
Advisor: Professor Haojin Zhu
Area of Study: Mobile Security and Privacy
B.S., computer science and Engineering, 2015.09 - 2019.06
University of Electronic Science and Technology of China, Chengdu, China
Advisor: Professor Ting Chen

Honors and Awards

Outstanding Graduate Student of University of Electronic Science and Technology of China, Jun. 2019
Grand Prize Scholarship (Top 3%), Dec. 2018
A-level Certificate of Comprehensive Quality for College Students in Sichuan Province, Oct. 2018
Excellent Student Cadre, May 2017
Second Prize Scholarship, Dec. 2017
Second Prize of Mathematical Contest In Modeling in Sichuan Province, Aug. 2017
First Prize Scholarship, Dec. 2016

Publications

Journal Papers

Xiaodong Lin, Ting Chen,Tong Zhu, Kun Yang, Fengguo Wei. Automated forensic analysis of mobile applications on Android devices[J].Digital Investigation, 2018. 26: p. S59-S66.(The special issue of the DFRWS’18)

Conference Papers

Tong Zhu, Chaofan Shou, Zhen Huang, Guoxing Chen, Xiaokuan Zhang, Yan Meng, Shuang Hao, Haojin Zhu. Unveiling Collusion-Based Ad Attribution Laundering Fraud: Detection, Analysis, and Security Implications[C]. ACM 31st Conference on Computer and Communications Security (ACM CCS'24, CCF-A). ACM, 2024.
Lu Zhou, Chengyongxiao Wei, Tong Zhu, Guoxing Chen, Xiaokuan Zhang, Suguo Du, Hui Cao, Haojin Zhu. POLICYCOMP: Counterpart Comparison of Privacy Policies Uncovers Overbroad Personal Data Collection Practices[C]. The 32nd USENIX Security Symposium(USENIX Security'23, CCF-A). USENIX, 2023.
Tong Zhu, Yan Meng, Haotian Hu, Xiaokuan Zhang, Minhui Xue, Haojin Zhu. Dissecting Click Fraud Autonomy in the Wild[C]. ACM 28th Conference on Computer and Communications Security(ACM CCS’21, CCF-A). ACM, 2021.
Ting Chen, Zihao Li, Yufei Zhang, Xiapu Luo, Ang Chen, Kun Yang, Bin Hu, Tong Zhu, Shifang Deng, Teng Hu, Jiachi Chen, Xiaosong Zhang. Dataether: Data exploration framework for ethereum[C]. IEEE 39th International Conference on Distributed Computing Systems (ICDCS’19, CCF-B). IEEE, 2019, pp.1369-1380.
Xiaodong Lin, Ting Chen, Tong Zhu, Kun Yang, Fengguo Wei. Automated forensic analysis of mobile applications on Android devices[C]. Digital Forensics Research Workshop (DFRWS’18, CCF-C). Elsevier, 2018.

Patent

Haojin Zhu, Tong Zhu, Yan Meng. 2022. Mobile advertising click fraud detection method, system, and terminal based on static analysis. CN (National Invention Patent) CN113191809B, filed May 7, 2021, and issued August 9, 2022

Professional Services

Peer-to-Peer Networking and Applications (PPNA): Reviewer

Teaching Assistant

Network Security, Spring 2021

Other Information

Discovered Vulnerabilities

CNVD-2020-31071, High
CNVD-2020-31516, Medium
CNVD-2020-31517, Medium

Last updated on 06/04/2024: