Welcome to Qingkai's Homepage

Short Bio

Qingkai Shi is an associate professor in the School of Computer Science at Nanjing University. His research focuses on the use of compiler techniques, especially formal program analysis, to rigorously ensure software and network security. He has published extensively at premium venues of programming languages (PLDI, OOPSLA), cybersecurity (SP, CCS), and software engineering (ICSE, ESEC/FSE). His research has received four ACM SIGPLAN or SIGSOFT Distinguished Paper Awards, one Google Research Paper Award, and the Hong Kong Ph.D. Fellowship.
Qingkai obtained his Ph.D. from the Hong Kong University of Science and Technology. He co-founded Sourcebrella LLC, where his research was commercialized. He then moved to Ant Group, which acquired Sourcebrella. Qingkai also enjoyed a wonderful period as a postdoctoral researcher at Purdue University, West Lafayette, the United States.

Software Security Analysis

Static bug scanners automatically detect coding errors and security flaws in software systems before execution. Pinpoint, an industrial-strength bug scanner developed by the group, has found numerous vulnerabilities with many CVEs in mature systems . It was successfully commercialized at Sourcebrella LLC, which was acquired by Ant Group for improving the quality of many products such as Alipay, a digital payment app with over a billion monthly active users. Interested readers can refer to Qingkai's doctoral dissertation and follow-up works, particularly, on path-sensitive sparse dataflow analysis (PLDI'18, ICSE'20a, ICSE'20b, PLDI'21, OOPSLA'22a, PLDI'24, ) as well as approaches to detecting specific bug types (OOPSLA'21, OOPSLA'22b, SP'24, ICSE'25, OOPSLA'25, ). Two ACM Distinguished Paper Awards were awarded for these studies.

Keywords: path-sensitive and sparse analysis, memory safety analysis, taint analysis.

Network Security Analysis

Ensuring network security is vital to safeguarding network systems and preventing cyberattacks. On the foundation of program-analysis-powered fuzz testing (SP'20, SP'22, ) and binary reverse engineering (SP'23, ESEC/FSE'23, ISSTA'23, ), the research group deeply explores the security aspects of diverse network protocols, including but not limited to communication protocols like TCP and routing protocols like OSPF (CCS'23, SEC'23, OOPSLA'24, ISSTA'25, CCS'25, ). Related techniques from the group have detected both general memory safety issues , such as memory leaks and buffer overruns, and, in particular, silent domain-specific network breaches that do not cause apparent symptoms at runtime . Two ACM Distinguished Paper Awards and a Google Research Paper Award, were received for these studies.

Keywords: network protocols, fuzzing, reverse engineering, automated validation.