沈晴霓

  • 博士,教授,博士生导师
  • 北京大学/软件与微电子学院/网络软件与系统安全系 副系主任(2016~)

  • Email: 该Email地址已收到反垃圾邮件插件保护。要显示它您需要在浏览器中启用JavaScript。
  • Tel: 010-61273624
 

是我国自主研发“结构化保护级安胜安全操作系统”的主要完成人之一。主要研究方向包括:操作系统与虚拟化安全,云计算和大数据安全与隐私,可信计算,区块链安全等。负责和参加了20多项国家级、省部级和企业合作科研项目,包括:国家基金重点/面上、核高基重大、国家863等国家项目;中科院知识创新工程,北京市自然科学基金、深圳市科技攻关等省部项目;华为、IBM、Intel、AWS、八分量等企业合作项目等。发表学术论文80多篇,其中70多篇SCI/EI检索,包括CCS, ACSAC, RAID, ICWS, IPDPS, AsiaCCS, ICICS, SecureComm, COMPSAC, TrustCom, ICC, CLOUD, HPCC, NPC等高质量国际会议。申请发明专利30多项(其中已授权中国专利22项、美国专利1项、欧洲专利1项),登记软件著作权13项。编著《操作系统安全设计》(北京市精品教材、北京大学精品教材)与《操作系统安全》(第2版)(十一五国家规划教材),主讲的“操作系统与虚拟化安全”课程被评为国家精品在线开放课程。2013年度获北京大学“杨芙清-王阳元院士优秀教学科研奖”,2016年度获北京大学教学优秀奖。

 
  • 1992.9-1994.7

    获中国科学院长春光学精密机械与物理研究所工学硕士学位

  • 2002.9-2006.7

    获中国科学院软件研究所工学博士学位

  • 1994.7-2002.8

    北京理工大学电子工程系教师 先后在计算机应用基础教研室、信息安全与对抗技术实验室从事教研工作

  • 2006.9-

    北京大学软件与微电子学院教师 先后担任信息安全系副系主任、软件技术与服务工程学科组副组长

 

 
  1.   《操作系统与虚拟化安全》(国家精品在线开放课程
    全球慕课平台:  https://www.coursera.org/course/os-virtsecurity
    华文慕课平台: http://www.chinesemooc.org/mooc/4391

  2.   《网络空间安全导论》(通识课)

  3. 《大数据与云安全专题》

  4. 《大数据安全与隐私保护》

 

 
  1. 操作系统与虚拟化安全
  2. 云计算和大数据安全与隐私
  3. 可信计算等  
 
 
    1.北大软微-八分量协同创新实验室项目“区块链安全关键技术研究” ,负责人,2018-2020

2.国家自然科学基金面上项目“构建高可信云操作系统的若干关键技术研究” (61672062),负责人,2017-2020

3.国家自然科学基金重点项目“云存储的隐私保护与安全保障机制” (61232005),副组长,2013-2017

4.国家高技术研究发展计划863课题,“云安全的可信服务及示范应用”,副组长,2015-2017

5.AWS合作研发项目“基于AWS的教育云课堂安全与隐私”,负责人,2016-2017

6.深圳科技计划项目“大数据信息安全的关键技术研发”,副组长,2014-2016

7.国家自然科学基金面上项目“面向可信云服务的广义虚拟可信计算平台关键技术研究”(61073156),负责人,2011-2013

8.国家自然科学基金面上项目“以应用安全为核心的可信虚拟监控器安全机制研究” (60873238),负责人,2009-2011

9.国家自然科学基金面上项目“可信操作系统的基本理论与关键技术研究” (60970135),参与,2010-2012

10.国家自然科学基金面上项目“高安全等级安全操作系统关键技术研究”(60573042),参与,2006-2008

11.“核高基”国家重大专项 “面向新型网络应用模式的网络化操作系统”(2009ZX01039-001-001),参与,2009-2010

12.“核高基”国家重大专项“国产操作系统参考实现”,参与,2009-2011

13.国家十一五预研项目,子课题负责人,2006-2009.

14.国家科技支撑计划重大项目 (2008BAH33B02)子课题“安胜安全操作系统应用”,副组长,2008-2010

15.IBM SUR共享大学研究项目“Security Services of Private Storage Cloud” 负责人之一,2009-2011

16.Intel UPO大学项目“Virtualization Security Curriculum”, 负责人,2012-2013

17.华为合作研究项目“众核OS管理系统”负责人,2012-2013

18.2009华为高校科技基金项目“电信网络环境下云计算服务平台安全体系”,负责人,2009-2010

19.2008华为高校科技基金项目“广义可信虚拟计算平台安全体系结构研究”,负责人,2008-2009

20.华为委托合作项目“可信计算平台TPM在某系统中的应用”,负责人,2008-2009

21.北京市自然科学基金项目“高安全等级操作系统若干前沿问题研究” (4052016),参与,2006-2008

22.全国信息安全标准化技术委员会专项“基于可信计算平台的安全操作系统及相关标准研究”参与,2006

23.全国信息安全标准化技术委员会专项“高安全等级操作系统关键安全技术与规范”参与,2006

24.全国信息安全标准化技术委员会专项“可信计算跟踪研究”参与人,2005

25.中国科学院软件研究所预先研究项目“最高等级安全操作系统形式化方法研究”参与,2004-2006

    26.中国科学院知识创新工程方向性项目“结构化保护级安全操作系统设计”参与,2002-2005   
 
 

1.        罗杨,沈晴霓,吴中海. 一种基于元模型的访问控制策略描述语言, 软件学报,已录用(to appear 

2.        吴鹏飞,沈晴霓,秦嘉,钱文君,李聪,吴中海. 不经意随机访问机研究综述,软件学报,. 2018,29(9):2753-2777

3.         罗杨,沈晴霓,吴中海. 一种新的访问控制策略描述语言及其权限划分方法. 计算机学报, 2017.1140(152).

4.        Cong Li, Yuejian Fang*, Xing Zhang, Cancan Jin, Qingni Shen, Zhonghai Wu. A Practical Construction for Large Universe Hierarchical Attribute-Based Encryption[J], Concurrency and Computation: Practice and Experience (CCPE) (SCI Indexed), 2016.

5.         郭畅,沈晴霓,吴中海. 一种防止数据泄露的云存储优化模型,电子科技大学学报, 2016, 45(1): 118-122.

6.         罗杨, 张齐勋, 沈晴霓, 刘宏志, 吴中海. 多层次的Android系统权限控制方法. 软件学报, 2015, 26(Suppl.(2)): 263-271.

7.         张星, 文子龙, 沈晴霓, 方跃坚, 吴中海. 可追责并解决密钥托管问题的属性基加密方案. 计算机研究与发展, 2015, 52(10): 2293-2303.

8.         沈晴霓, 李卿. 云计算环境中的虚拟机同驻安全问题综述. 集成技术, 2015 (5): 5-17.

9.         沈晴霓,卿斯汉,吴中海,张力哲,杨雅辉. 基于动态域划分的安全冗余调度策略,通信学报,201435(1): 34-46, 2014

10.     方跃坚,沈晴霓,吴中海,一种超椭圆曲线密码处理器并行结构设计,计算机研究与发展,201350(11)2383-2388 

11.     Qingni Shen,Yahui Yang, Zhonghai Wu, etc. Securing Data Services: A Security Architecture Design of Private Storage Cloud Based on HDFS, International Journal of Grid and Utility Computing , Volume 4, No.4,:242-254, 2013

12.     沈晴霓,杜虹,卿斯汉. 虚拟可信平台层次化安全体系结构设计. 北京工业大学学报. 20105期:36(5): 605-610

13.     Anbang Ruan, Qingni Shen*, Li Wang, etc. Towards a Source-Code Oriented Attestation. China Communications, Nov. 2009. Vol.6 No.4, pp: 82-87. (中英双稿) (SCI: WOS: 000272423100010)

14.     沈晴霓, 卿斯汉, 贺也平,李丽萍 一种支持动态调节的最小特权安全策略架构, 电子学报 2006, 34(10): 61~66.

15.     沈晴霓, 杜虹,文汉, 卿斯汉. 一种基于完整性度量架构的数据封装方法. 计算机研究与发展. 2012, 49(1):210-216.

16.     卿斯汉, 李丽萍, 何建波, 沈晴霓. 基于DTE策略的安全域隔离Z形式模型. 计算机研究与发展, 2007, 44(11): 1881-1888

17.     沈晴霓, 卿斯汉, 李丽萍, 一种多层次的特权控制机制的设计与实现, 计算机研究与发展 , 2006, 43 (3): 423428

18.     沈晴霓, 卿斯汉, 贺也平, 沈建军, 多策略适应的一种POSIX权能遗传算法, 通信学报, 2006, 27(2): 6672  

19.     李丽萍, 卿斯汉, 贺也平, 沈晴霓, 基于访问控制空间的多策略安全体系结构, 通信学报, 2006, 27(2):107~112 

 

 

<Big data and Cloud Security & Privacy>

1.         Pengfei Wu, Qingni Shen*, Robert H. Deng, Ximeng Liu, Yinghui Zhang, Zhonghai Wu*: ObliDC: An SGX-based Oblivious Distributed Computing Framework with Formal Proof. The 14th ACM Asia Conference on Computer and Communications Security (AsiaCCS 2019) : 86-99, Auckland, New Zealand, July 09-12

2.         Mengyu Zhang, Hecan Zhang, Yahui Yang, Qingni Shen, PTAD: Provable and Traceable Assured Deletion in Cloud Storage. IEEE Symposium on Computers and communications (ISCC2019). Barcelona, Spain. June 2019.

3.         Lijing Cheng, Qingni Shen*, Chuntao Dong: Invader Job: A Kind of Malicious Failure Job on Hadoop YARN. The 54th IEEE International Conference on Communications (ICC 2018) , 20-24 May 2018 // Kansas City, MO, USA

4.         Tong Hui, Yahui Yang, Qingni Shen, Zhonghai Wu: Towards Real-Time Privacy Preservation: A Streaming Location Anonymous Method Based on Distributed Framework. The 54th IEEE International Conference on Communications (ICC 2018) , 20-24 May 2018 // Kansas City, MO, USA

5.         Yazhen Tian, Qingni Shen*, Ziyao Zhu, Yahui Yang, Zhonghai Wu: Non-Authentication Based Checkpoint Fault-tolerant Vulnerability in Spark Streaming. IEEE Symposium on Computers and communications (ISCC 2018): 783-786, 25-28 June, 2018, Natal, Brazil

6.         Yizhe Yang, Qingni Shen*, Wu Xin, Wenjun Qian, Yahui Yang, Zhonghai Wu: Memory Cache Attacks on Alluxio Impede High Performance Computing. 16th IEEE International Symposium on Parallel and Distributed Processing with ApplicationsISPA 2018: 407-414, Melbourne, Australia, December 11-13, 2018.

7.         Yang Luo, Tian Puyang, Xiaoning Sun, Qingni Shen, Yahui Yang, Anbang Ruan, Zhonghai Wu*. RestSep: Towards a Test-Oriented Privilege Partitioning Approach for RESTful API. The 24rd International Conference on Web Services (ICWS 2017), June 25 - June 30, 2017, Honolulu, Hawaii, USA.

8.         Tian Puyang, Qingni Shen*, Yang Luo, Wu Luo, Zhonghai Wu. Making Least Privilege the Low-Hanging Fruit in Clouds, 53th IEEE International Conference on Communications (ICC 2017), Paris, France, 21-25 May, 2017. 

9.          Xinyu Feng, Cancan Jin, Cong Li, Yuejian Fang, Qingni Shen*, Zhonghai Wu. Practical Large Universe Attribute-Set Based Encryption in the Standard Modelthe 19th International Conference on Information and Communications Security(ICICS 2017), December 6-8, 2017, Beijing, China.

10.     Xinyu Feng, Cancan Jin, Cong Li, Yuejian Fang, Qingni Shen*. Fully Secure Hidden Ciphertext-Policy Attribute-based Proxy Re-encryption, the 19th International Conference on Information and Communications Security(ICICS 2017), December 6-8, 2017, Beijing, China.

11.     Wenjun Qian, Qingni Shen*, Yizhe Yang, Yahui Yang, Zhonghai Wu. Statically Defend Network Consumption against Acker Failure Vulnerability in Storm, the 19th International Conference on Information and Communications Security (ICICS 2017), December 6-8, 2017, Beijing, China.

12.     Ziyao Zhu, Qingni Shen*, Yahui Yang, Zhonghai Wu. MCS: Memory Constraint Strategy for Unified Memory Manager in Spark, The 23rd IEEE International Conference on Parallel and Distributed Systems (ICPADS 2017), 15-17 December 2017, Shenzhen, China.

13.      Wu Xin, Qingni Shen, Yahui Yang, Zhonghai Wu*. SeEagle: Semantic-Enhanced Anomaly Detection for Securing Eagle, 9th EAI International Conference on Digital Forensics & Cyber Crime(ICDF2C2017)October 9-11 2017, Prague, Czech Republic, pp: 221-227

14.     Yang Luo, Hongbo Zhou, Qingni Shen, Anbang Ruany, Zhonghai Wu*. RestPL: Towards a Request-Oriented Policy Language for Arbitrary RESTful APIs, The 23rd International Conference on Web Services (ICWS 2016), June 27 - July 2, 2016, San Francisco, USA.

15.     Yang Luo, Wu Luo, Tian Puyang, Qingni Shen, Anbang Ruan, Zhonghai Wu: OpenStack Security Modules: A Least-Invasive Access Control Framework for the Cloud. 9th IEEE International Conference on Cloud Computing (CLOUD 2016): 51-58, San Francisco, CA, USA, June 27 - July 2, 2016.

16.     Yang Luo, Tian Puyang, Wu Luo, Qingni Shen, Anbang Ruan, Zhonghai Wu*. MultiPol: Towards a Multi-policy Authorization Framework for RESTful Interfaces in the Cloud, the 18th International Conference on Information and Communications Security (ICICS 2016):214-226, Singapore, Singapore, Nov. 29–Dec. 2, 2016.

17.     Chuntao Dong, Qingni Shen*, Lijin Cheng, Yahui Yang, Zhonghai Wu. SECapacity: A Secure Capacity Scheduler in YARN, the 18th International Conference on Information and Communications Security (ICICS 2016) :184-194, Singapore, Singapore, Nov. 29–Dec. 2, 2016.

18.     Wenjun Qian, Qingni Shen*, Jia Qin, Dong Yang, Yahui Yang, Zhonghai Wu. S-Storm: A Slot-aware Scheduling Strategy for Even Scheduler in Storm, The 18th IEEE International Conference on High Performance Computing and Communications(HPCC 2016), Sydney, Australia, December 12 - 14, 2016. IEEE, pp.623-630, 2016.

19.     Jin Cancan, Feng Xinyu, Shen Qingni. Fully secure hidden ciphertext policy attribute-Based Encryption with short ciphertext size, The 6th International Conference on Communication and Network Security (ICCNS 2016), Singapore, 2016.

20.     Wenting Li, Qingni Shen*, Chuntao Dong, Yahui Yang and Zhonghai Wu. DDHCS: Distributed Denial-of-service Threat to YARN Clusters Based on Health Check Service. 2nd International Conference on Information Systems Security and Privacy (ICISSP 2016) , Feb 19-21, 2016, Roman, Italy. 2016: 146-156.

21.     Zhang X, Jin C, Li C, Wen Z, Shen Q, Fang Y, Wu Z. Ciphertext-policy attribute-based encryption with user and authority accountability, in Proc. of the 11th International ICST Conference on Security and Privacy in Communication Networks (SecureComm’15) :500-518, Oct 26-29, 2015, Dallas, USA.

22.     Fang Y, Wen Z, Shen Q, et al. POSTER: Ciphertext-Policy Attribute-Based Encryption Method with Secure Decryption Key Generation and Outsourcing Decryption of ABE Ciphertexts, in Proc. of the 11th International ICST Conference on Security and Privacy in Communication Networks (SecureComm’15): 585-589, Oct 26-29, 2015, Dallas, USA.

23.     Chang Guo, Qingni Shen, Zhonghai Wu. UserRank: A User Influence-based Data Distribution Optimization Method, Chang Guo, 39th Annual International Computers, Software & Applications Conference Workshops(COMPSAC 2015) , pp.104-109, July 1-5, 2015, Tai chung, Tai wan.

24.     Zizhou Sun, Yahui Yang, Qingni Shen, Zhonghai Wu, Xiaochen Li. MB-DDIVR: A Map-based Dynamic Data Integrity Verification and Recovery scheme in Cloud Storage. The 17th International Conference on Information and Communications Security (ICICS 2015): 312-318, Dec 9-11, Beijing, China

25.     Zhang Xing, Jin Cancan, Wen Zilong, Shen Qingni, Fang Yuejian, Wu Zhonghai. Attribute-based encryption without key escrow. International Conference on Cloud Computing and Security (ICCCS’15): 74-87.

26.     Chuntao Dong, Qingni Shen*, Wenting Li, Yahui Yang, Zhonghai Wu. Eavesdropper: A Framework for Detecting the Location of the Processed Result in Hadoop. The Seventeenth International Conference on Information and Communications Security (ICICS 2015): 429-435, Dec 9-11, Beijing, China

27.     Ying Chen, Qingni Shen*,Pengfei Sun,Yangwei Li, Sihan Qing etc. Reliable Migration Module in Trusted Cloud based on Security Label-Design and Implementation. In Proc. of the 26th IEEE International Parallel & Distributed Processing Symposium Workshops (IEEE IPDPS 2012). May 21-25, 2012, Shanghai, China.

28.     Qingni Shen,Yahui Yang, Zhonghai Wu, Xin Yang, Lizhe Zhang, Xi Yu, Zhenmin Lao,Dandan Wang, Min Long. SAPSC: Security Architecture of Private Storage Cloud Based on HDFS. In Proc. of the 26th IEEE International Conference on Advanced Information Networking and Applications Workshops (WAINA-2012),Fukuoka, Japan, March 26-29, 2012

29.     Pengfei Sun, Qingni Shen*,Ying Chen,Zhonghai Wu, Cong Zhang, Anbang Ruan, Liang Gu. POSTER: LBMS: Load Balancingbased on Multilateral Security in the Cloud. In Proc. of the 18th ACM Conference on Computer and Communications Security (ACM CCS 2011):861-864, October 17–21, 2011, Chicago, Illinois, USA.

30.     Xin Yang, Qingni Shen*, Yahui Yang, Sihan Qing. A Way of Key Management in Cloud Storage Based on Trusted Computing. In Proc. of the 8th IFIP International Conference on Network and Parallel Computing (IFIP NPC2011): 135-145, Changsha, China. 2011.10

31.     Qingni Shen, Xin Yang, Xi Yu, Yahui Yang, Zhonghai Wu. Towards Data Isolation and Collaboration in Storage Cloud. In Proc. of the 2011 IEEE Asia-Pacific Services Computing Conference (APSCC2011): 139-146. December 12-15, 2011,Jeju, Korea.

32.     Qingni Shen, Lizhe Zhang, Xin Yang, Yahui Yang, Zhonghai Wu, Ying Zhang. SecDM:Securing Data Migration Between Cloud Storage Systems. In Proc. of 2011 Ninth IEEE International Conference on Dependable, Autonomic and Secure Computing (CDAS2011): 636-641. December 12-14, Sydney, Australia.

33.     Song Luo, Qingni Shen*, Yongmei Jin,Zhong Chen. A Variant of Boyen-Waters Anonymous IBE Scheme. In Proc. of 13th International Conference on Information and Communication Security (ICICS2011): 42-56. Beijing, China, Nov.24-26, 2011. 

34.     Song Luo, Qingni Shen*,Zhong Chen,Fully Secure Unidirectional Identity-Based Proxy Re-encryption. In Proc. of the 14th International Conference on Information Security and Cryptology (ICISC 2011), Nov 30-Dec 2, 2011, Seoul, Korea.

35.   Cong Tang, Yonggang Wang,Hu Xiong, Tao Yang, Jianbin Hu, Qingni Shen, etc, Need For Symmetry: Addressing Privacy Risks in Online Social Networks, In Proc. of the 25th International Conference on Advanced Information Networking and Applications (AINA 2011), Biopolis, Singapore, March 22-25,2011

<Operating System & Virtualization Security>

1.         Zhi Zhang, Yueqiang Cheng, Surya Nepal, Dongxi Liu, Qingni Shen, Fethi A. Rabhi: KASR: A Reliable and Practical Approach to Attack Surface Reduction of Commodity OS Kernels. The 21st International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2018): 691-710. 10-12 September 2018 - Heraklion, Crete, Greece

2.         Yuchen Wong, Qingni Shen*: Secure Virtual Machine Placement and Load Balancing Algorithms with High Efficiency. 16th IEEE International Symposium on Parallel and Distributed Processing with ApplicationsISPA 2018: 613-620, Melbourne, Australia, December 11-13, 2018.

3.         Yuqing Qiu, Qingni Shen*, Yang Luo, Cong Li, Zhonghai Wu. A Secure Virtual Machine Deployment Strategy to Reduce Co-residency in Cloud, The 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom 2017), Sydney, Australia, 1-4 August, 2017.  

4.         Yang Luo, Wu Luo, Xiaoning Sun, Qingni Shen, Anbang Ruan, Zhonghai Wu*. Whispers Between the Containers: High-capacity Covert Channel Attacks in Docker, The 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom 2016), Tianjin, China, 23-26 August, 2016.

5.         Qian Sun, Qingni Shen*, Cong Li, Zhonghai Wu. SeLance: Secure Load Balancing of Virtual Machines in Cloud, The 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom 2016), Tianjin, China, 23-26 August, 2016.

6.         Cong Li, Qingni Shen*, Kang Chen, Yahui Yang, Zhonghai Wu. Whisper in the CloudA Covert Channel Using the Result of Creating a Virtual Machine. 2016 International Conference on Information Systems Security and Privacy (ICISSP 2016) , Feb 19-21, 2016, Roma Italy. 2016: 380-387.

7.         Kang Chen, Qingni Shen*, Cong Li, Yang Luo, Yahui Yang, Zhonghai Wu. Sift: An Efficient Method for Co-residency Detection on Amazon EC2. 2016 International Conference on Information Systems Security and Privacy (ICISSP 2016) , Feb 19-21, 2016, Roma Italy. 2016: 423-431.

8.         Chen Y, Li Q, Yu M, Ding X and Shen Q. SuperCall: A Secure Interface for Isolated Execution Environment to Dynamically Use External Services, in Proc. of the 11th International ICST Conference on Security and Privacy in Communication Networks (SecureComm’15): 193-211, Oct 26-29, 2015, Dallas, USA.

9.         Yang Luo, Qingni Shen, Cong Li, Kang Chen, Zhonghai Wu. Probing the Scheduling Algorithms in the Cloud Based on OpenStack. 2015 International Conference on Cloud Computing and Security (ICCCS 2015): 510-520.

10.     Qingni Shen, Mian Wan,Zhuangzhuang Zhang, Sihan Qing, Zhonghai Wu. A Covert Channel Using Event Channel State on Xen Hypervisor. 15th International Conference on Information and Communication Security (ICICS 2013). Beijing, China, Nov 20-22, pp:125-134, 2013(EI)

11.     Yangwei Li, Qingni Shen*,Pengfei Sun,Cong Zhang, Ying Chen. A Covert Channel Using Core Alternation In Proc. of the 26th IEEE International Conference on Advanced Information Networking and Applications Workshops (WAINA-2012), Fukuoka, Japan, March 26-29, 2012

12.     Ennan Zhai, Qingni Shen*, Yonggang Wang, Tao Yang, Liping Ding, Sihan Qing. SecGuard: Secure and Practical Integrity Protection Model for Operating Systems. In Proc. of the 13th Asia-Pacific Web Conference (APWeb 2011). pp:370-375, Beijing, China,April 18-20, 2011.EI 

13.     Sihan Qing, Qingni Shen, Qingguang Ji, Yeping He, A Dynamically Modified Privilege Control Policy, In Proc. of the 7th IEEE Annual Information Assurance Workshop (IAW2006), pp: 340-347, USMA, West Point, NY, USA, June 21-23, 2006.

14.     Jianjun Shen, Sihan Qing, Qingni Shen, Design of a Micro-kernel Based Secure System Architecture, In Proc. of 7th IEEE Annual Information Assurance Workshop (IAW2006), pp: 384- 385, USMA, West Point, NY, USA, June 21-23, 2006.

15.     Jianjun Shen, Sihan Qing, Qingni Shen,Liping Li: Covert Channel Identification Founded on Information Flow Analysis. In Proc. of the 2005 International Conference on Computational Intelligence and Security(CIS'2005): 381-387.

 

16.     Jianjun Shen, Sihan Qing, Qingni Shen,Liping Li: Optimization of Covert Channel Identification. In Proc. of the IEEE Security in Storage Workshop 2005(SISW2005): 95-108.

<Trusted Computing>

1.         Wu Luo, Qingni Shen, Yutang Xia, Zhonghai Wu Container-IMA: A privacy-preserving Integrity Measurement Architecture for Containers. The 22nd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2019), September 23-25, 2019, Beijing, China(to appear)

2.         Wu Luo, Anbang Ruan, Qingni Shen, Zhonghai Wu: TProv: Towards a Trusted Provenance-Aware Service Based on Trusted Computing. ICWS 2018: 67-83

3.         Wu Luo, Wei Liu, Anbang Ruan, Qingni Shen, Zhonghai Wu*. Partial Attestation: Towards Cost-Effective and Privacy-Preserving Remote Attestations, The 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom 2016), Tianjin, China, 23-26 August, 2016.

4.         Liang Gu, Yao Guo, Anbang Ruan, Qingni Shen, Hong Mei. SCOBA: Source Code Based Attestation on Custom Software. In Proc. of the 26th Annual Computer Security Applications Conference (ACSAC 2010), pp: 337-346. Austin, Texas, December 6–10, 2010 (EI: 20110413614189)  

5.         Liang Gu, Anbang Ruan, Yao Guo, Qingni Shen, Xiangqun Chen. Practical Property-based Attestation on Free Software, in Proc. of the 25th Annual Computer Security Applications Conference (ACSAC 2009), HawaiiUSA, 7-11 December, 2009 (poster)

6.         Anbang Ruan, Qingni Shen*, Liang Gu, Li Wang, Lei Shi, YahuiYang, ZhongChen. Trusted Isolation Environment: An Attestation Architecture with Usage Control model. In Proc. of 11th International Conference on Information and Communication Security (ICICS 2009). pp: 226-240. Beijing, China, Dec.14-17, 2009.

 7.       Anbang Ruan, Qingni Shen*, Yuanyou Yin. A Generalized Trusted Virtualized Platform Architecture. In Proc. of the Young Computer Sciencists, 2008 (ICYCS2008): 2340-2346Zhangjiajie, China, Nov.18-21, 2008. 

 
 

1.       Qingni Shen, Lanfang Ren,Shaobin Wang, Yuanyou Jin, et al. Method, Apparatus And System for Virtual Machine Migration Decision. European Patent No: EP2352088, Sep.7, 2016.

2.       Qingni Shen, Lanfang Ren,Shaobin Wang, Yuanyou Jin, etc. Method, Apparatus and System for Making a Decision about Virtual Machine Migration. United States Patent No: US8413147B2,Apr. 2, 2013

3.       沈晴霓,钱文君,杨雅辉,吴中海等。一种工作槽感知的Storm平台作业均分调度方法,授权专利号:ZL20161040461982019.7.4

4.       沈晴霓,孙茜李聪,吴中海等。一种云环境中虚拟机负载均衡安全调度方法,授权号:ZL201610407666.8, 2019.7.2

5.       沈晴霓,董春涛,杨雅辉,吴中海等。一种面向大数据平台的基于用户分级的安全调度方法,授权专利号:ZL201610373850.52019.5.21

6.       沈晴霓,李聪,杨雅辉,吴中海等。一种云环境下抗同驻的虚拟机部署方法, 授权专利号:ZL201610371375.8, 2019.3.22

7.       沈晴霓,张智,陈康等。一种云环境下基于隐蔽通道的虚拟机同驻检测方法,授权号:ZL201410218538X, 2018.4.10

8.       沈晴霓,韩笑,方跃坚,吴中海。一种适用于移动端位置隐私保护的空间匿名化方法, 授权专利号:ZL2014102677666, 2018.1.5

9.       沈晴霓,李文婷,杨雅辉,吴中海等。一种面向大数据平台的拒绝服务检测方法,授权专利号:ZL201610075208.92018.11.13

10.   沈晴霓,李才,郭明宇等。线程创建方法、业务请求处理方法及相关设备, 授权专利号:ZL201310733930.32018.6.15

11.   沈晴霓,万冕, 卿斯汉等,一种适用于移动云的客户端动态认证方法,中国,专利号:ZL201310227082.9, 2016-02-10

12.   沈晴霓,李扬威,卿斯汉等,基于多核处理器的通信方法及其检测方法和控制方法,中国,专利号:ZL201110220307.9, 2015-12-09

13.   沈晴霓,杨雅辉,禹熹,张力哲等,适用于存储云内的数据隔离方法. 中国,专利号:ZL201110175541.4, 2015-02-25

14.   沈晴霓,杨雅辉,杨欣等,一种基于可信计算的密钥生成、备份和迁移方法及系统,中国,专利号:ZL201110205512.8, 2014-11-05

15.   杨雅辉,黄海珍,沈晴霓,吴中海。基于增量式GHSOM 神经网络模型的入侵检测方法,中国,ZL 201210206778.9, 2014.11

16.   沈晴霓, 张力哲,杨雅辉,吴中海. 一种基于MapReduce机制的任务调度方法和系统. 国家知识产权局发明专利. 专利授权号:ZL CN2012102280313, 201485 

17.   杨雅辉,阳时来,沈晴霓,黄海珍。一种基于半监督神经网络模型的网络入侵检测方法,中国,ZL 201210074813.6, 2014.7

18.   沈晴霓 孙鹏飞 李扬威 魏何. 一种解决虚拟化平台多边冲突的方法及系统. . 国家知识产权局发明专利. 专利授权号:ZL CN201110228801.X, 2014416 

19.   沈晴霓, 任兰芳 王绍斌 靳远游 魏磊 李钊 阮安邦 石磊. 一种虚拟机迁移决策方法、装置及系统. 国家知识产权局发明专利. 专利授权号:ZL CN 200910108609.X, 2013116 

20.   杨雅辉 沈晴霓 张力哲 禹熹 吴尉泷 王丹丹 龙敏, 适用于存储云间数据安全迁移的方法, . 国家知识产权局发明专利. 专利授权号:ZL CN201110101646.5, 2013114 

21.   沈晴霓, 杨雅辉,劳振明, 禹熹, 吴尉泷, 王丹丹, 龙敏, 适用于存储云内数据安全迁移的方法. 国家知识产权局发明专利. 专利授权号:ZL CN201110144862.8, 2013626 

22.   沈晴霓, 阮安邦,靳远游,魏磊,王绍斌. 一种虚拟机的管理方法、装置和系统. 国家知识产权局发明专利. 专利授权号:ZL CN200810180626.X, 2013612 

23.   杨雅辉,姜电波,沈晴霓,夏敏,张英,何家胜,一种基于生长型分级自组织映射神经网络的入侵检测方法. 国家知识产权局发明专利. 专利授权号:ZL CN201010228750.6, 2012118

24.   卿斯汉,沈晴霓, 李丽萍, 唐柳英, 季庆光. 一种安全操作系统中实现最小特权控制的策略和方法. 国家知识产权局发明专利. 专利授权号:ZL , CN100401223, 200879 

 

 
  1. 沈晴霓,卿斯汉,操作系统安全设计,机械工业出版社(华章分社)(北京市精品教材).2013.9
  2. 卿斯汉,沈晴霓,操作系统安全(第2版)(国家十一五规划教材),清华大学出版社. 2011.6

 

 

1.       IEEE会员、ACM会员、中国计算机学会高级会员 

2.       中国计算机学会计算机安全专委会委员 

3.       国家自然科学基金委同行评议专家 

4.       《信息安全实用全书》编委 

5.       担任ICICS 2019(http://icics.cn)大会主席,ICICS2017宣传委员会主席,ICICS 2013组织委员会主席,多次担任ICICS , TrustCom等国际学术会议程序委员会成员等 

6.       学术期刊和会议审稿:计算机学报,通信学报,计算机研究与发展,电子与信息学报(中英文)等,以及 ICICS, Trust, IFIP/SEC, ATC, TrustCom