Zhou (Joe) Li, (李洲)
Assistant Professor
University of California, Irvine
The Henry Samueli School of Engineering
Electrical Engineering & Computer Science
Irvine, CA 92697-2625, USA
Office: 3227 Engineering Hall
My CV. Last updated: 11/17/2019.

RA positions available: I am looking for self-motivated PhD students who have strong interests in system security. If you are interested, please don’t hesitate to contact me! 


–  November 2019: Invited to serve program committee of ACM CCS 2020.
–  September 2019: One paper accepted by CoNext 2019.
–  August 2019: One paper accepted by ACSAC 2019.
–  July 2019: One paper accepted by ACM IMC’19.
–  June 2019: Invited to serve the program committee of ICICS 2019. Please consider submitting your works.
–  June 2019: Invited to serve the program committee of DSN 2020. Please consider submitting your works.
–  June 2019: One paper accepted by SecureComm’19.
–  June 2019: Work about DNS interception selected to be presented at ANRW 2019.
–  May 2019: One paper accepted by RAID’19.

Professional Bio

I am a tenure-track assistant professor in the department of Electrical Engineering & Computer Science at University of California, Irvine, with the focus on system security. I joined UCI EECS in Fall 2018 and I’m also affiliated with UCI Center for Embedded and Cyber-phyiscal Systems (CECS), UCI Cybersecurity Policy & Research Institute (CPRI) and UCI NetSys. Before that, I was a principal research scientist at RSA Laboratories, working on security analytics. My research has been successfully integrated into RSA products. My works have been reported by news media like NYTimes and awarded by research contests like NYU Best Applied Security Paper.

Recent Research Areas & Interests

  • Data-driven security analytics. My research in this direction focuses on how to automatically identify cyber-attacks from large-scale operational logs (e.g., web proxy logs within an enterprise). Many machine-learning models have been developed to counter different techniques of cyber-attacks ([DSN’15][SecDev’16][CCS’16][ACSAC’16][RAID’17][ACSAC’18a]).
  • Internet measurement. By leveraging the large-scale Internet data collected passively and actively, my research helps our community gain deeper understanding about the security issues of Internet infrastructure (e.g., DNS [Security’18], domain registration [CCS’17][DSN’18], domain parking [Security’14], online advertising [CCS’12] and residential proxy [S&P’19]) and cyber-criminals’ strategies (e.g., blackhat SEO [Security’16], keyword abuse [S&P’17] and typo-squatting [S&P’15]).
  • Side-channel analysis. I’m interested in discovering security vulnerabilities, in particular regarding how private information (e.g., PIN number) is leaked through software and hardware side-channels. My research discovered new types of leakage inside mobile devices ([S&P’16][Security’17]), wearable devices ([CCS’15]), web applications ([CCS’10][TWC]) and GPU ([PETS’17]).
  • IoT and mobile security. This direction focus on studying the new privacy and security issues introduced by mobile devices and smart-home devices, including software and hardware stacks ([NDSS’19]).

Experience & Education

2018-, Assistant Professor at UCI EECS
2013-2018, Principal Research Scientist at RSA Laboratories
2011, Research Intern at Microsoft Research Silicon Valley, Mentor: Yinglian Xie and Fang Yu
2014, Ph.D. in Computer Science, Indiana University Bloomington, Advisor: XiaoFeng Wang
2008, M.Sc. in Computer Science, Wuhan University, China
2006, B.Sc. in Computer Science, Wuhan University, China

Selected Recent Publications (3)

​[Security’18] Who Is Answering My Queries: Understanding and Characterizing Interception of the DNS Resolution Path.
[CCS’17]​ Don’t Let One Rotten Apple Spoil the Whole Barrel: Towards Automated Detection of Shadowed Domains. 
​[Security’17] Picking Up My Tab: Understanding and Mitigating Synchronized Token Lifting and Spending in Mobile Payment.

You can also find me at Google ScholarDBLPResearchGate, LinkedIn and Twitter.