HomePage-Ying Zhang

About me

I obtained my Ph.D. degree from the Department of Computer Science, Virginia Tech. My advisor is Prof. Na Meng . My research interests lie in the intersection of software engineering, programming language, and software security, My research focus on creating an effective framework that can accurately locate API vulnerabilities, offer to fix guidance to developers, and demonstrate the vulnerabilities. I received my M.S degree from the Missouri S&T Computer Science department in 2018, and my bachelor's degree from Northeastern University, China, in 2016.

[Resume] [Google Scholar]

Recent News

Our paper on "Glitch Tokens in Large Language Models: Categorization Taxonomy and Effective Detection" was accepted by FSE'24

[01/2024] Our paper on "Broadly Enabling KLEE to Effortlessly Find Unrecoverable Errors in Rust" was accepted by ICSE SEIP'24

[11/2023] Our paper on "MASTERKEY: Automated Jailbreaking of Large Language Model Chatbots" was accepted by NDSS'24

Industry Experience

Anti-Abuse, Trust Engineer @ Linkedin

Oct 2023 -

Talent Insight Team @ Linkedin

May 2022 - August 2022

Application Security Team @ ByteDance

May 2021 - August 2021

Ongoing Research Projects

Automatic Security Test Generation

Vulnerability demonstration for Large Language Models

Selected Publications

Glitch Tokens in Large Language Models: Categorization Taxonomy and Effective Detection [link to paper]

Yuxi Li, Yi Liu, Gelei Deng, Ying Zhang, Wenjia Song, Ling Shi, Kailong Wang, Yuekang Li, Yang Liu and Haoyu Wang

The ACM International Conference on the Foundations of Software Engineering (FSE), 2024

Broadly Enabling KLEE to Effortlessly Find Unrecoverable Errors in Rust [link to paper]

Ying Zhang, Peng Li, Yu Ding, Wang Lingxiang, Dan Williams, and Na Meng

46th International Conference on Software Engineering (ICSE), SEIP, 2024

MASTERKEY: Automated Jailbreak Across Multiple Large Language Model Chatbots [link to paper]

Gelei Deng, Yi Liu, Yuekang Li, Kailong Wang, Ying Zhang, Zefeng Li, Haoyu Wang, Tianwei Zhang, and Yang Liu

The Network and Distributed System Security Symposium (NDSS)2024

Example-Based Vulnerability Detection and Repair in Java Code [link to paper]

Ying Zhang, Ya Xiao, Mahir Kabir, Danfeng (Daphne)Yao, and Na Meng

30th IEEE/ACM International Conference on Program Comprehension (ICPC) 2022

Automatic Detection of Java Cryptographic API Misuses: Are We There Yet? [link to paper]

Ying Zhang, Mahir Kabir, Ya Xiao, Danfeng (Daphne)Yao, and Na Meng

Transactions on Software Engineering (TSE) 2022