About SoS Lab

The Security of Software Lab at Lehigh University, or SoS Lab, is a research laboratory that focuses on software security. We do research on various techniques and solutions that help build secure and reliable software.


Native code in large software systems or type-safe programming languages always opens security holes. The GoNative research project looks for hidden threats in native code and investigates security solutions.

Among different foreign function interfaces, I mainly work on the Java Native Interface (JNI), which allows Java programs to include native components, but simultaneously defeats Java's security. I have been designing and building several security frameworks to enhance the security of native code on various platforms.


Bringing Java's Wild Native World under Control. M. Sun, G. Tan, J. Siefers, B. Zeng, and G. Morrisett.
To Appear in ACM Transactions on Information and System Security (TISSEC)

JVM-Portable Sandboxing of Java's Native Libraries. M. Sun and G. Tan.
Proceedings of the 17th European Symposium on Research in Computer Security (ESORICS '12)