Insu Yun (윤인수)

Associate Professor (Untenured)

School of Electrical Engineering

KAIST

Biography

Insu Yun is an associate professor (untenured) at KAIST, currently leading Hacking Lab. He is interested in system security in general, especially, binary analysis, automatic vulnerability detection, and automatic exploit generation. His work has been published to the major computer conferences such as IEEE Security & Privacy, USENIX Security, and USENIX OSDI. Particularly, his research won the best paper award from USENIX Security and OSDI in 2018, and he also won DARPA AIxCC with Team Atlanta.

In addition to research, he has been participating in several hacking competitions as a hacking expert. In particular, he won Pwn2Own 2020 by compromising Apple Safari and won DEFCON CTF in 2015 and 2018, which is the world hacking competition.

Prior to joining KAIST, he received his Ph.D. degree in Computer Science from Georgia Tech in 2020.

Interests

Information Security
Software Security
Hacking

Education

Ph.D. in Computer Science, 2020
Georgia Institute of Technology
B.S. in Computer Science & Mathematical Science, 2015
KAIST

Courses

Software Hacking Practice and Theory (EE517): 2025S/2024S/2023S/2022S/2021S
Information Security Laboratory (IS521): 2024F
Advanced Programming Techniques for EE (EE309): 2024F/2023F
Programming Structures for EE (EE209): 2022F/2021F

Recent Publications

Jihee Park, Insu Yun, Sukyoung Ryu (2025). Bridging the Gap between Real-World and Formal Binary Lifting through Filtered-Simulation (to appear). Proceedings of the ACM SIGPLAN International Conference on Object-Oriented Programming, Systems, Languages, and Applications (OOPSLA) 2025.

Dongok Kim, Juhyun Song, Insu Yun (2025). CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel (to appear). Proceedings of the 32nd ACM Conference on Computer and Communications Security (CCS).

Dong-uk Kim, JunYoung Park, Sanghak Oh, Hyoungshick Kim, Insu Yun (2025). Windows plays Jenga: Uncovering Design Weaknesses in Windows File System Security (to appear). Proceedings of the 32nd ACM Conference on Computer and Communications Security (CCS).

Tuan Dinh Hoang, Taekkyung Oh, CheolJun Park, Insu Yun, Yongdae Kim (2025). LLFuzz: An Over-the-Air Dynamic Testing Framework for Cellular Baseband Lower Layers (to appear). Proceedings of the 34th USENIX Security Symposium (Security).

Taisic Yun, Suhwan Jeong, Yonghwa Lee, Seungjoo Kim, Hyoungshick Kim, Insu Yun, Yongdae Kim (2025). Too Much of a Good Thing: (In-)Security of Mandatory Security Software for Financial Services in South Korea (to appear). Proceedings of the 34th USENIX Security Symposium (Security).

See all publications

Contact

insuyun@kaist.ac.kr
042-350-7469
Room 812, N1, Korea Advanced Institute of Science and Technology (KAIST), Daejeon, South Korea