Insu Yun (윤인수)

Insu Yun (윤인수)

Associate Professor (Untenured)

School of Electrical Engineering

KAIST

Biography

Insu Yun is an associate professor (untenured) at KAIST, currently leading Hacking Lab. He is interested in system security in general, especially, binary analysis, automatic vulnerability detection, and automatic exploit generation. His work has been published to the major computer conferences such as IEEE Security & Privacy, USENIX Security, and USENIX OSDI. Particularly, his research won the best paper award from USENIX Security and OSDI in 2018, and he also won DARPA AIxCC with Team Atlanta.

In addition to research, he has been participating in several hacking competitions as a hacking expert. In particular, he won Pwn2Own 2020 by compromising Apple Safari and won DEFCON CTF in 2015 and 2018, which is the world hacking competition.

Prior to joining KAIST, he received his Ph.D. degree in Computer Science from Georgia Tech in 2020.

Interests

  • Information Security
  • Software Security
  • Hacking

Education

  • Ph.D. in Computer Science, 2020

    Georgia Institute of Technology

  • B.S. in Computer Science & Mathematical Science, 2015

    KAIST

Courses

Recent Publications

(2025). Bridging the Gap between Real-World and Formal Binary Lifting through Filtered-Simulation (to appear). Proceedings of the ACM SIGPLAN International Conference on Object-Oriented Programming, Systems, Languages, and Applications (OOPSLA) 2025.

(2025). CROSS-X: Generalized and Stable Cross-Cache Attack on the Linux Kernel (to appear). Proceedings of the 32nd ACM Conference on Computer and Communications Security (CCS).

(2025). Windows plays Jenga: Uncovering Design Weaknesses in Windows File System Security (to appear). Proceedings of the 32nd ACM Conference on Computer and Communications Security (CCS).

(2025). LLFuzz: An Over-the-Air Dynamic Testing Framework for Cellular Baseband Lower Layers (to appear). Proceedings of the 34th USENIX Security Symposium (Security).

(2025). Too Much of a Good Thing: (In-)Security of Mandatory Security Software for Financial Services in South Korea (to appear). Proceedings of the 34th USENIX Security Symposium (Security).

Contact