Bonan Ruan
Scholar

Bonan Ruan

Google Scholar ID: uYAzh-gAAAAJ
National University of Singapore
System SecuritySoftware SecurityAgent Security
HomepageGoogle Scholar
Citations & Impact
All-time
Citations
63
 
H-index
3
 
i10-index
2
 
Publications
8
 
Co-authors
11
list available
Contact
Emailbonan.ruan@u.nus.eduCVOpen ↗GitHubOpen ↗
Publications
6 items
DevOps-Gym: Benchmarking AI Agents in Software DevOps Cycle
2026
Cited
1
TraceAegis: Securing LLM-Based Agents via Hierarchical and Behavioral Anomaly Detection
2025
Cited
0
When MCP Servers Attack: Taxonomy, Feasibility, and Mitigation
2025
Cited
0
A Large-Scale Evolvable Dataset for Model Context Protocol Ecosystem and Security Analysis
2025
Cited
0
An Accurate and Efficient Vulnerability Propagation Analysis Framework
2025
Cited
0
Fuzzing the PHP Interpreter via Dataflow Fusion
arXiv.org · 2024
Cited
0
Resume (English only)
Academic Achievements
  • 1. Will serve on the USENIX Security 2026 Artifact Evaluation Committee (AEC).
  • 2. Work on 'VPSS: Propagation-Based Vulnerability Impact Assessment for Software Supply Chains' accepted at ASE 2025.
  • 3. 'FlowFusion' wins the Distinguished Paper Award at USENIX Security 2025.
  • 4. MCP dataset (MCPCorpus) accepted at ASE 2025 Tool Demonstrations.
  • 5. Passed the Qualifying Exam and became a Ph.D. candidate.
  • 6. 'KernJC' presented at BlackHat Asia 2025.
  • 7. Work on 'PHP vulnerability detection with fuzzing (FlowFusion)' accepted at USENIX Security 2025.
  • 8. 'KernJC' wins the Best Practical Paper Award at RAID 2024.
  • 9. Vulnerability intelligence dataset (VulZoo) accepted at ASE 2024 Tool Demonstrations.
  • 10. Work on 'kernel vulnerability reproduction (KernJC)' accepted at RAID 2024.
Research Experience
  • Worked as a security researcher in the Xingyun Lab of NSFOCUS from 2019 to 2022.
Education
  • Ph.D. student at School of Computing, National University of Singapore (advised by Prof. Zhenkai Liang); Master of Computing degree from NUS; B.E. degree in Information Security from Tongji University (advised by Prof. Zhijun Ding)
Background
  • Research interests: Interactions of system security, program analysis, and AI, with a focus on developing practical and effective solutions to improve the security of various real-world systems. Specifically, his work centers around vulnerability intelligence, including vulnerability discovery, analysis, assessment, and defense, by leveraging and advancing various techniques, such as program analysis, fuzzing, and AI. He also has a strong interest in interdisciplinary research that bridges technical and societal perspectives, such as AI governance and social implications of cybersecurity risks and incidents.
Miscellany
  • Motto: Life is like carrying a heavy burden on a long journey; one must not be hasty.
Co-authors
11 total
Jiahao Liu
Jiahao Liu
Ph.D. Student, National University of Singapore
Zhenkai Liang
Zhenkai Liang
School of Computing, National University of Singapore
Kui Ren
Kui Ren
Professor and Dean of Computer Science, Zhejiang University, ACM/IEEE Fellow
Wenbo Shen
Wenbo Shen
Zhejiang University
Zhiwei Lin
Zhiwei Lin
National University of Singapore
Yuancheng Jiang
Yuancheng Jiang
National University of Singapore
Manuel Rigger
Manuel Rigger
National University of Singapore
Roland Yap
Roland Yap
National University of Singapore