Yuxiang Yang

Yuxiang Yang

Ph.D Student

Tsinghua University

Biography

Yuxiang Yang is currently a 4th-year Ph.D student at the Department of Computer Science and Technology, Tsinghua University, advised by Professor Ke Xu. He belongs to the Internet Architecture & Security Lab. His research focuses on network security, particularly, protocol security, Internet measurement, network & protocol fuzzing, network vulnerability discovery & attack. He has published many research papers at top network and security journals/conferences like ToN, S&P, NDSS, IWQoS. He has obtained over 43 CVE/CNVD vulnerability numbers for a variety of influential protocol vulnerabilities, which have impacted over 20 router vendors, VPN providers, and cloud manufactures.

πŸ“°Recent News

  • [10/2025] (Award) I won the Special Excellence Scholarship of Zhongguancun Laboratory.
  • [07/2025] (Pre) I presented updated drafts of ICMP challenge-confirm mechanism at IETF 123 in Madrid, Spain!
  • [06/2025] (Paper) Our extended work of TCP attacks was accepted by IEEE/ACM ToN. Congrats to myself!
  • [03/2025] (Pre) I presented our drafts of ICMP challenge-confirm mechanism at IETF 122 in Bangkok, Thailand!
  • [02/2025] (Pre & Award) I presented three papers at ISOC NDSS 2025 and one paper titled “ReDAN: An Empirical Study on Remote DoS Attacks against NAT Networks” won the Distinguished Paper Award.
  • [10/2024] (Award) I won the National Scholarship.
  • [07/2024] (Paper) Our WiFi side channel paper was accepted by ISOC NDSS 2025. Congrats, Ziqiang!
  • [07/2024] (Paper) Our NAT DoS paper was accepted by ISOC NDSS 2025. Congrats to Xuewei and myself!
  • [04/2024] (Paper) Our Linux’s IPID measurement paper was accepted by IEEE IWQoS 2024. Congrats, Ao!
  • [03/2024] (Pre) I gave an invited talk in the 2nd Huawei Vulnerability Singularity Security Salon in Shenzhen!
  • [02/2024] (Pre) I presented our TCP hijacking work at ISOC NDSS 2024!
  • [09/2023] (Pre & Award) I presented our TCP hijacking work at the Open Week of CS Student Achievements and won the Longfor Scholarship 2023 (Got the only five As from the judges)!
  • [08/2023] (Paper) Our TCP Hijacking paper was accepted by ISOC NDSS 2024. Congratulations to myself!
  • [07/2023] (Paper) Our WiFi Traffic Hijacking paper was accepted by ACM TURC 2023. Congrats, Xuewei!
  • [05/2023] (Pre) I presented our WiFi MitM paper at the IEEE S&P (Oakland) 2023 (on-line)!
  • [03/2023] (Paper) Our TCP Chain Verification paper was accepted by Journal of Software. Congrats, Xuewei!
  • [09/2022] (Paper) Our WiFi MitM paper was accepted by IEEE S&P (Oakland) 2023. Congrats, Xuewei!

πŸ… Awards

  • Outstanding Student Cadre, Tsinghua University, 2025
  • Excellent Comprehensive Scholarship (First-Class), Tsinghua University, 2025.
  • Special Excellence Scholarship, Zhongguancun Laboratory, 2025.
  • Distinguished Paper Award, ISOC NDSS, 2025.
  • National Scholarship, Ministry of Education of P.R. China, 2024.
  • Outstanding Cadre of the Graduate Youth League Committee of the Department of Computer Science, Tsinghua University, 2024.
  • Excellent Comprehensive Scholarship (First-Class), Tsinghua University, 2023.
  • LongFor Scholarship, Tsinghua University, 2023.
  • Outstanding Member of the Graduate Youth League Committee of the Department of Computer Science, Tsinghua University, 2023.
Interests
  • Network Security
  • Protocol Security
  • Network & Protocol Fuzzing
  • Network Vulnerability Discovery & Attack
Education

  • Ph.D in Computer Science and Technology

    2022 -- Present, Tsinghua University

  • B.E in Computer Science and Technology

    2018 -- 2022, Tsinghua University

Publications

Yuxiang Yang, Ao Wang, Xuewei Feng, Qi Li, Ke Xu (2026). XXXXX. In XXXX (Under Review).

Cite

Xuewei Feng, Ziqiang Wang, Yuxiang Yang, Yunlong Xing, Ganqiu Du, Ziqian Liu, Ke Xu (2026). XXXXXXX. In XXXX (Under Review).

Cite

Yifan Wu, Xuewei Feng, Yuxiang Yang, Ke Xu (2025). Uncovering Gaps Between RFC Updates and TCP/IP Implementations: LLM-Facilitated Differential Checks on Intermediate Representations. In arXiv 2510.24408.

PDF Cite

Yuxiang Yang, Xuewei Feng, Qi Li, Kun Sun, Ziqiang Wang, Ao Wang, Ke Xu (2025). Off-Path TCP Hijacking in NAT-Enabled Wi-Fi Networks. In IEEE/ACM Transactions on Networking.

Cite

Ziqiang Wang, Xuewei Feng, Qi Li, Kun Sun, Yuxiang Yang, Mengyuan Li, Ke Xu, Jianping Wu (2025). Off-Path TCP Hijacking in Wi-Fi Networks: A Packet-Size Side Channel Attack. In NDSS 2025, San Diego, California, 23–28 February, 2025.

PDF Cite Code

Xuewei Feng, Yuxiang Yang, Qi Li, Xingxiang Zhan, Kun Sun, Ziqiang Wang, Ao Wang, Ganqiu Du, Ke Xu (2025). ReDAN: An Empirical Study on Remote DoS Attacks against NAT Networks. In NDSS 2025, San Diego, California, 24–28 February, 2025. [Distinguished Paper Award].

PDF Cite Code

Ao Wang, Xuewei Feng, Qi Li, Yuxiang Yang, Ke Xu (2024). A Horizontal Study on the Mixed IPID Assignment Vulnerability in the Linux Ecosystem. In IWQoS 2024, Guangzhou, China, June 19 – 21, 2024.

PDF Cite

Yuxiang Yang, Xuewei Feng, Qi Li, Kun Sun, Ziqiang Wang, Ke Xu (2024). Exploiting Sequence Number Leakage: TCP Hijacking in NAT-Enabled Wi-Fi Networks. In NDSS 2024, San Diego, California, 27 February – 3 March, 2024.

PDF Cite Code Video

Xuewei Feng, Qi Li, Kun Sun, Yuxiang Yang, Ke Xu (2023). Traffic Hijacking in Wi-Fi Networks via ICMP Redirects. In TURC 2023, Wuhan, China, July 28 - 30, 2023.

PDF Cite

Xuewei Feng, Qi Li, Kun Sun, Yuxiang Yang, Ke Xu (2023). Man-in-the-Middle Attacks without Rogue AP: When WPAs Meet ICMP Redirects. In S&P 2023, San Francisco, CA, MAY 22-26, 2023.

PDF Cite Video Source Document

See all publications

Activities

IETF 123 Hackathon and Meeting
In the IETF 123 Hackathon and meeting, We presented our IETF draft titled “Enhancing ICMP/ICMPv6 Error Message Authentication Using Challenge-Confirm Mechanism”.
Jul 15, 2025 1:00 PM — Mar 21, 2025 3:00 PM Melia Castilla, Madrid, Spain
IETF 123 Hackathon and Meeting
IETF 122 Hackathon and Meeting
In the IETF 122 Hackathon and meeting, I presented our IETF draft titled “Enhancing ICMP/ICMPv6 Error Message Authentication Using Challenge-Confirm Mechanism”.
Mar 15, 2025 1:00 PM — Mar 21, 2025 3:00 PM Marriot Marquis Queen's Park, Bangkok, Thailand
IETF 122 Hackathon and Meeting
NDSS 2025 Presentation
In the 2025 32nd Annual Network and Distributed System Security (NDSS) Symposium, I presented three papers. “ReDAN: An Empirical Study on Remote DoS Attacks against NAT Networks”, “Off-Path TCP Hijacking in Wi-Fi Networks: A Packet-Size Side Channel Attack”, and “Time-varying Bottleneck Links in LEO Satellite Networks: Identification, Exploits, and Countermeasures”.
Feb 24, 2025 1:00 PM — Feb 28, 2025 3:00 PM Wyndham San Diego Bayside, San Diego, California, USA
NDSS 2025 Presentation
Presentation at the 2nd Huawei Terminal Vulnerability Singularity Security Salon!
In the 2nd Huawei Terminal Vulnerability Singularity Security Salon, I gave a presentation about network security problems of Huawei products.
Mar 28, 2024 1:00 PM — 3:00 PM Shenzhen, China
Presentation at the 2nd Huawei Terminal Vulnerability Singularity Security Salon!
NDSS 2024 Presentation
In the 2024 31st Annual Network and Distributed System Security (NDSS) Symposium, I presented our paper “Exploiting Sequence Number Leakage: TCP Hijacking in NAT-Enabled Wi-Fi Networks”
Feb 28, 2024 1:00 PM — 3:00 PM Catamaran Resort Hotel & Spa San Diego, California, USA
PDF Video
NDSS 2024 Presentation
See all events

Misc

πŸ”– Patents

🐞 CVE / CNVD

Contact