Zhou (Joe) Li, (李洲)
Assistant Professor
University of California, Irvine
The Henry Samueli School of Engineering
Electrical Engineering & Computer Science
Irvine, CA 92697-2625, USA
Office: 3227 Engineering Hall
My CV. Last updated: 03/15/2019.

RA positions available: I am looking for self-motivated PhD students who have strong interests in system security. If you are interested, please don’t hesitate to contact me! 


–  Mar 2019: Invited to serve program committee of NDSS’21.
–  Mar 2020: One paper accepted by DSN’20.
–  Mar 2020: One paper accepted by AsiaCCS’20.
–  Jan 2020: Chairing SiMLA’20 (Affiliated with ACNS’20) with Kehuan. Please submitting your works in machine learning and security!
–  Jan 2020: IMC’19 paper selected as winner of ANRP’20.

Professional Bio

I am a tenure-track assistant professor in the department of Electrical Engineering & Computer Science at University of California, Irvine, with the focus on system security. I joined UCI EECS in Fall 2018 and I’m also affiliated with UCI Center for Embedded and Cyber-phyiscal Systems (CECS), UCI Cybersecurity Policy & Research Institute (CPRI) and UCI NetSys. Before that, I was a principal research scientist at RSA Laboratories, working on security analytics. My research has been successfully integrated into RSA products. My works have been reported by news media like NYTimes and awarded by research contests like NYU Best Applied Security Paper and IETF ANRP.

Recent Research Areas & Interests

  • Data-driven security analytics. My research in this direction focuses on how to automatically identify cyber-attacks from large-scale operational logs (e.g., web proxy logs within an enterprise). Many machine-learning models have been developed to counter different techniques of cyber-attacks ([DSN’15][SecDev’16][CCS’16][ACSAC’16][RAID’17][ACSAC’18a]).
  • Internet measurement. By leveraging the large-scale Internet data collected passively and actively, my research helps our community gain deeper understanding about the security issues of Internet infrastructure (e.g., DNS [Security’18], domain registration [CCS’17][DSN’18], domain parking [Security’14], online advertising [CCS’12] and residential proxy [S&P’19]) and cyber-criminals’ strategies (e.g., blackhat SEO [Security’16], keyword abuse [S&P’17] and typo-squatting [S&P’15]).
  • Side-channel analysis. I’m interested in discovering security vulnerabilities, in particular regarding how private information (e.g., PIN number) is leaked through software and hardware side-channels. My research discovered new types of leakage inside mobile devices ([S&P’16][Security’17]), wearable devices ([CCS’15]), web applications ([CCS’10][TWC]) and GPU ([PETS’17][DSN’20]).
  • IoT and mobile security. This direction focus on studying the new privacy and security issues introduced by mobile devices and smart-home devices, including software and hardware stacks ([NDSS’19] [AsiaCCS’20]).

Experience & Education

2018-, Assistant Professor at UCI EECS
2013-2018, Principal Research Scientist at RSA Laboratories
2011, Research Intern at Microsoft Research Silicon Valley, Mentor: Yinglian Xie and Fang Yu
2014, Ph.D. in Computer Science, Indiana University Bloomington, Advisor: XiaoFeng Wang
2008, M.Sc. in Computer Science, Wuhan University, China
2006, B.Sc. in Computer Science, Wuhan University, China

Selected Recent Publications (3)

​[Security’18] Who Is Answering My Queries: Understanding and Characterizing Interception of the DNS Resolution Path.
[CCS’17]​ Don’t Let One Rotten Apple Spoil the Whole Barrel: Towards Automated Detection of Shadowed Domains. 
​[Security’17] Picking Up My Tab: Understanding and Mitigating Synchronized Token Lifting and Spending in Mobile Payment.

You can also find me at Google ScholarDBLPResearchGate, LinkedIn and Twitter.