Publications
[1] LLMThief: Evaluating Configuration Leaking Risks in Commercial LLM App Stores
2026 IEEE Symposium on Security and Privacy (S&P’26)
Pinji Chen, Jinlong Jiang, Jianjun Chen, Feiran Qin, Minghao Zhang, Jiahe Zhang, Haixin Duan, Kaiwen Shen, Hui Jiang
[2] Identifying Logical Vulnerabilities in QUIC Implementations
Proceedings of the 2026 Network and Distributed System Security Symposium (NDSS’26)
Kaihua Wang, Jianjun Chen, Pinji Chen, Jianwei Zhuge, Jiaju Bai, Haixin Duan
[3] Cross-Origin Web Attacks via HTTP/2 Server Push and Signed HTTP Exchange
Proceedings of the 2025 Network and Distributed System Security Symposium (NDSS’25)
Pinji Chen, Jianjun Chen, Mingming Zhang, Qi Wang, Yiming Zhang, Mingwei Xu, Haixin Duan
Presented at Black Hat USA 2025 [Talk Abstract]
[4] The Danger of Packet Length Leakage: Off-path TCP/IP Hijacking Attacks Against Wireless and Mobile Networks
2025 IEEE European Symposium on Security and Privacy (EuroS&P’25)
Guancheng Li*, Minghao Zhang*, Jianjun Chen, Ge Dai, Pinji Chen, Huiming Liu, Yang Yu, Haixin Duan, Zhiyun Qian
[5] More Simplicity for Trainers, More Opportunity for Attackers: Black-Box Attacks on Speaker Recognition Systems by Inferring Feature Extractor
33th USENIX Conference on Security Symposium (USENIX Security’24)
Yunjie Ge*, Pinji Chen*, Qian Wang, Lingchen Zhao, Ningping Mou, Peipei Jiang, Cong Wang, Qi Li, Chao Shen