I am currently a Ph.D. candidate at USSLab, Zhejiang University, co-supervised by Prof. Wenyuan Xu and Prof. Xiaoyu Ji. I received my B.S. degree in Automation at College of EE, Zhejiang University in 2022.

My research interests include: (1) Speech security and privacy, particularly focusing on speech anonymization and voice deepfake detection; (2) Sensor security and privacy, which focuses on physical signal attacks and defense against sensors in cyber-physical systems (CPS) and sensor-based privacy protecion.

🔥 News

• 2026.02:   🎉 Our paper “VoltSiren: Exploiting Power Supply Vulnerabilities to Control IoT Devices” got accepted by Internet of Things Journal (IoTJ)!
• 2025.11:   🎉 Our paper “PhyFuzz: Detecting Sensor Vulnerabilities with Physical Signal Fuzzing” got accepted by NDSS 2026!
• 2025.11:   🎉 Our paper “Phantom Menace: Exploring and Enhancing the Robustness of VLA Models against Physical Sensor Attacks” got accepted by AAAI 2026!
• 2025.08:   🎉 Our paper “SoK: Understanding the Fundamentals and Implications of Sensor Out-of-band Vulnerabilities” got accepted by NDSS 2026!
• 2025.08:   🎉 Our paper “Exploring the Robustness of Vision-Language-Action Models against Sensor Attacks” got accepted by CCS-LAMPS 2025 !
• 2024.06:   🎉 Our paper “IoT Data Privacy Protection by Birth” got accepted by Nature Review Electrical Engineering!
• 2023.12:   🔥 I attended the ACM CCS 2023 and present our work “MicPro” in person.
• 2023.05:   🎉 Our paper “MicPro: Microphone-based Voice Privacy Protection” got accepted by CCS 2023!
• 2023.03:   🎉 Our paper “Volttack: Control IoT Devices by Manipulating Power Supply Voltage” got accepted by S&P 2023!
• 2022.12:   🎉 Our paper “Private Eye: On the Limits of Textual Screen Peeking via Eyeglass Reflections in Video Conferencing” got accepted by S&P 2023!

📝 Publications

NDSS 2026

SoK: Understanding the Fundamentals and Implications of Sensor Out-of-band Vulnerabilities

Shilin Xiao, Wenjun Zhu, Yan Jiang, Kai Wang, Peiwang Wang, Chen Yan, Xiaoyu Ji, Wenyuan Xu. To appear in NDSS 2026 (CCF-A, Big4).

We provide a systematic analysis on sensor out-of-band vulnerabilities. We identify the physical principles and limitations that contribute to OOB vulnerabilities, categorize known attacks and evaluate their practicality, and analyze how CPS features such as sensor fusion, closed-loop control, and intelligent perception impact the exposure and mitigation of OOB threats. Our findings offer a foundational understanding of sensor hardware security and provide guidance and future directions for sensor designers, security researchers, and system developers aiming to build more secure sensors and CPS.

CCS 2023

MicPro: Microphone-based Voice Pirvacy Protecion [Code]

Shilin Xiao, Xiaoyu Ji, Chen Yan, Zhicong Zheng, Wenyuan Xu. CCS 2023 (CCF-A, Big4).

We propose the first privacy-enhanced microphone module (i.e., MicPro) that can produce anonymous audio recordings with biometric information suppressed while preserving speech quality for human perception or linguistic content for speech recognition. MicPro transforms formants, which are distinct for each person due to the unique physiological structure of the vocal organs, and formant transformations are done by modifying the linear spectrum frequencies (LSFs) provided by a popular codec (i.e., CELP) in low-latency communications.

• VoltSiren: Exploiting Power Supply Vulnerabilities to Control IoT Devices.

  Kai Wang, Shilin Xiao, Pengzhan Chen, Xiaoyu Ji, Chen Yan, Ruochen Zhou, Kaixiang Zhang, Wenyuan Xu. IoTJ 2026

• PhyFuzz: Detecting Sensor Vulnerabilities with Physical Signal Fuzzing.

  Zhicong Zheng*, Jinghui Wu*, Shilin Xiao*, Yanze Ren, Chen Yan, Xiaoyu Ji, Wenyuan Xu. NDSS 2026 (CCF-A, Big4) (*: Co-first authors)

• Phantom Menace: Exploring and Enhancing the Robustness of VLA Models against Physical Sensor Attacks.

  Xuancun Lu, Jiaxiang Chen, Shilin Xiao, Zizhi Jin, Zhangrui Chen, Hanwen Yu, Bohan Qian, Ruochen Zhou, Xiaoyu Ji, Wenyuan Xu. AAAI 2026 (CCF-A)

• Exploring the Robustness of Vision-Language-Action Models against Sensor Attacks.

  Xuancun Lu, Jiaxiang Chen, Shilin Xiao, Zizhi Jin, Ruochen Zhou, Xiaoyu Ji, Wenyuan Xu. CCS-LAMPS 2025.

• IoT Data Privacy Protection by Birth.

  Xiaoyu Ji, Wenjun Zhu, Shilin Xiao, Wenyuan Xu. Nature Review Electrical Engineering 2024.

• Volttack: Control IoT Devices by Manipulating Power Supply Voltage.

  Kai Wang, Shilin Xiao, Xiaoyu Ji, Chen Yan, Chaohao Li, Wenyuan Xu. S&P 2023 (CCF-A, Big4).

• Private Eye: On the Limits of Textual Screen Peeking via Eyeglass Reflections in Video Conferencing.

  Yan Long, Chen Yan, Shilin Xiao, Shivan Prasad, Wenyuan Xu, Kevin Fu. S&P 2023 (CCF-A, Big4).

🎖 Honors and Award

• Honor for Graduates–Excellence in Academic Innovation, awarded on 2024-2025
• Award of Honor for Graduate, awarded on 2023-2024
• Award of Honor for Graduate, awarded on 2022-2023
• Sifang Automation Scholarship, awarded on 2022-2023
• Edison Honors Class@ZJU, Outstanding Graduate Award, 2022
• Second-Class Scholarship of Zhejiang University, awarded on 2020-2021
• Tianheyun Energy Scholarship, awarded on 2020-2021
• Third-Class Scholarship of Zhejiang University, awarded on 2019-2020
• Yishite Scholarship, awarded on 2019-2020
• Zhejiang Provincial Government Scholarship, awarded on 2018-2019
• Third-Class Scholarship of Zhejiang University, awarded on 2018-2019

📖 Educations

• 2022.09 - Present, Ph.D., USSLAB, Zhejiang University, Hangzhou, China.
• 2018.09 - 2022.06, Undergraduate, College of Electrical Engineering, Zhejiang University, Hangzhou, China.
• 2015.09 - 2018.06, Northeast Yucai School, Shenyang, China.

💬 Invited Talks

• 2023.12, ACM CCS 2023 at Copenhagen, Denmark.

🗺️ Visitor Map