Publications

Below is a selected list of my peer-reviewed publications in web and mobile security.

International Conferences Link to heading

SPCA: Stream Parser Confusion Attack for Web Application Firewall Evasion in HTTP/2 Link to heading

Kyungrok Choi*, Woonghee Lee*, Junbeom Hur

In Proceedings of The ACM Web Conference (TheWebConf 2026), Apr 13–17, 2026, Dubai, United Arab Emirates.

*These authors contributed equally to this work.

Deep Dive into In-app Browsers: Uncovering Hidden Pitfalls in Certificate Validation Link to heading

Woonghee Lee, Junbeom Hur, Hyunsoo Kwon

In Proceedings of the ACM Conference on Computer and Communications Security (CCS), 2025. PDF

Beneath the Phishing Scripts: A Script-Level Analysis of Phishing Kits and Their Impact on Real-World Phishing Websites Link to heading

Woonghee Lee, Junbeom Hur, Doowon Kim

In Proceedings of the 19th ACM Asia Conference on Computer and Communications Security (ASIACCS), 2024. PDF

PhishinWebView: Analysis of Anti-Phishing Entities in Mobile Apps with WebView Targeted Phishing Link to heading

Yoonjung Choi*, Woonghee Lee*, Junbeom Hur

In Proceedings of The ACM Web Conference (TheWebConf/WWW), 2024. PDF

*These authors contributed equally to this work.

Below is a total list of my publications.

International Conference Link to heading

  • SPCA: Stream Parser Confusion Attack for Web Application Firewall Evasion in HTTP/2
    Kyungrok Choi*, Woonghee Lee*, Junbeom Hur
    The ACM Web Conference (TheWebConf 2026), Apr 13–17, 2026, Dubai, United Arab Emirates.

    *These authors contributed equally to this work.

  • Deep Dive into In-app Browsers: Uncovering Hidden Pitfalls in Certificate Validation
    Woonghee Lee, Junbeom Hur, Hyunsoo Kwon
    ACM Conference on Computer and Communications Security (CCS 2025), October 13–17, 2025, Taipei, Taiwan.

  • Analyzing DoS Attack Using Middlebox Amplification on CAPTCHA Server
    Hyejin Lee, Woonghee Lee, Kyungrok Choi, Junbeom Hur
    The 16th International Conference on Ubiquitous and Future Networks (ICUFN 2025), July 8–11, 2025, Lisbon, Portugal.

  • Towards Secure and Efficient Practical Consensus Protocols in Quantum Internet
    Woonghee Lee, Donghee Kim, Jumbeom Hur
    International Conference on ICT Convergence (ICTC 2024), October 16–18, 2024, Jeju Island, Korea.

  • Beneath the Phishing Scripts: A Script-Level Analysis of Phishing Kits and Their Impact on Real-World Phishing Websites
    Woonghee Lee, Junbeom Hur, Doowon Kim
    ACM Asia Conference on Computer and Communications Security (ASIACCS 2024), July 1–5, 2024, Singapore.

  • PhishinWebView: Analysis of Anti-Phishing Entities in Mobile Apps with WebView Targeted Phishing
    Yoonjung Choi*, Woonghee Lee*, Junbeom Hur
    The ACM Web Conference (TheWebConf 2024), May 13–17, 2024, Singapore.

    *These authors contributed equally to this work.

  • A Honey postMessage, but a Heart of Gall: Exploiting Push Service in Service Workers Via postMessage
    Yeomin Jeong, Woonghee Lee, Junbeom Hur
    The 18th ACM Asia Conference on Computer and Communications Security (ASIACCS 2023), July 10–14, 2023, Melbourne, Australia.

Domestic Journal Link to heading

  • TLS기반 패킷 검사 우회 표준 기술 분석 및 미래 전술네트워크 운용 가능성 연구
    이웅희, 허준범

    한국통신학회논문지, Vol. 47, No. 9, pp. 1370–1380, September 2022.

Domestic Conference Link to heading

  • 브라우저 렌더링 파이프라인 기반 동일 사이트 자원고갈 공격의 실험적 분석
    변수민, 이웅희, 허준범
    국내 학술대회 발표, 곤지암 리조트, November 27–28, 2025.

  • Middlebox Amplification 기법을 이용한 CAPTCHA 서버 기반 DoS 공격 분석
    이혜진, 이웅희, 최경록, 허준범
    한국통신학회 하계종합학술발표회, 제주 신화월드, June 18–21, 2025.

  • 양자인터넷에서 운용하는 고전인터넷 구성요소와 공격 연구 동향
    이웅희, 허준범
    제33회 통신정보 합동학술대회 (JCCI 2023), 여수, April 26–28, 2023.

  • 네트워크 피싱 은닉 기술과 데이터 유출 방법 분석
    이웅희, 허준범
    한국정보보호학회 하계학술대회, 부산 벡스코, June 16–17, 2022.