Tianming Liu

Tianming Liu

Postdoc@HUST

🎃 About Me

I am a postdoctoral researcher in the School of Cyber Science and Engineering at Huazhong University of Science and Technology (HUST), where I work in the Security PRIDE Research Group led by Prof. Haoyu Wang, my collaborating supervisor. I received my Ph.D. from Monash University in 2025, under the supervision of Prof. Li Li. Prior to that, I received my bachelor’s and master’s degrees from Beijing University of Posts and Telecommunications (BUPT) in 2017 and 2020, respectively.

My research interests lie at the intersection of software security and software engineering, with a particular focus on mobile security. I am especially interested in mobile app security, including app analysis, compliance checking, and ecosystem-wide characterization; as well as the emerging area of mobile agent security, including its attack surfaces and defenses. My work aims to improve the security, privacy, and trustworthiness of the mobile ecosystem at scale.

If you would like to reach me, please send an email to tmliu AT hust.edu.cn

📝 Publications

[# Co-first Author, * Corresponding Author, (s) Student I advised/co-advised during the work]

  1. An Empirical Analysis of Rust Integration in Android Open Source Project
    Yinte Fan, Chao Wang, Zikan Dong, Tianming Liu, Haoyu Wang
    FSE 2026 Industry Track  Paper
  2. NotDec: WebAssembly Decompilation With Inter-Procedural Type Recovery
    Jikai Wang, Ningyu He, Tianming Liu, Junhai Wang, Haoyu Wang
    ICSE 2026  Paper
  3. Doxing-as-a-Service: Demystifying the Chinese Online Doxing Ecosystem
    Yiran Gao, Pengcheng Xia, Liu Wang*, Tianming Liu*, Haoyu Wang
    WWW 2026  Paper
  4. LLMDroid: Enhancing Automated Mobile App GUI Testing Coverage with Large Language Model Guidance
    Chenxu Wang(s)#, Tianming Liu#, Yanjie Zhao, Minghui Yang, Haoyu Wang
    FSE 2025  Paper
  5. Walls Have Ears: Demystifying Notification Listener Usage in Android Apps
    Jiapeng Deng(s)#, Tianming Liu#, Yanjie Zhao, Chao Wang, Lin Zhang, Haoyu Wang
    ISSTA 2025  Paper
  6. Beyond App Markets: Demystifying Underground Mobile App Distribution Via Telegram
    Yanhui Guo, Dong Wang(s), Liu Wang, Yongsheng Fang(s), Chao Wang, Minghui Yang, Tianming Liu*, Haoyu Wang*
    SIGMETRICS 2025  Paper
  7. Are iOS Apps Immune to Abusive Advertising Practices?
    Tianming Liu, Jiapeng Deng(s), Yanjie Zhao, Xiao Chen, Xiaoning Du, Li Li, Haoyu Wang
    FSE 2025 Industry Track  Paper
  8. Mobile App Analysis in the New Era: Challenges and the Road Ahead
    Jiale Wu(s), Yanjie Zhao, Tianming Liu, Haoyu Wang
    2030 Software Engineering Workshop, co-located with FSE 2025  Paper
  9. The Arts and Crafts of Android Adware Across a Decade
    Chao Wang(s)#, Tianming Liu#, Yanjie Zhao, Lin Zhang, Xiaoning Du, Li Li, Haoyu Wang
    Automated Software Engineering (ASE Journal)  Paper
  10. Exploring Covert Third-party Identifiers through External Storage in the Android New Era
    Zikan Dong#, Tianming Liu#, Jiapeng Deng, Haoyu Wang, Li Li, Minghui Yang, Meng Wang, Guosheng Xu, Guoai Xu
    USENIX Security 2024  Paper
  11. Same App, Different Behaviors: Uncovering Device-specific Behaviors in Android Apps
    Zikan Dong, Yanjie Zhao, Tianming Liu, Chao Wang, Guosheng Xu, Guoai Xu, Lin Zhang, Haoyu Wang
    ASE 2024 Industry Track  Paper
  12. Towards Demystifying Android Adware: Dataset and Payload Location
    Chao Wang(s)#, Tianming Liu#, Yanjie Zhao, Lin Zhang, Xiaoning Du, Li Li, Haoyu Wang
    A-Mobile 2024, co-located with ASE 2024  Paper
  13. A First Look at LLM-powered Smartphones
    Liangxuan Wu, Yanjie Zhao, Chao Wang, Tianming Liu, Haoyu Wang
    A-Mobile 2024, co-located with ASE 2024  Paper
  14. ChatGPT Chats Decoded: Uncovering Prompt Patterns for Superior Solutions in Software Development Lifecycle
    Liangxuan Wu, Yanjie Zhao, Xinyi Hou, Tianming Liu, Haoyu Wang
    MSR 2024 Mining Challenge Track  Paper
  15. WalletRadar: Towards Automating the Detection of Vulnerabilities in Browser-based Cryptocurrency Wallets
    P. Xia, Y. Guo, Z. Lin, J. Wu, P. Duan, N. He, K. Wang, Tianming Liu, Y. Yue, G. Xu, H. Wang
    Automated Software Engineering (ASE Journal)  Paper
  16. Are Mobile Advertisements in Compliance with App's Age Group?
    Yanjie Zhao#, Tianming Liu#, Haoyu Wang, Yepang Liu, John Grundy, Li Li
    WWW 2023  Paper
  17. Promal: Precise Window Transition Graphs for Android via Synergy of Program Analysis and Machine Learning
    Changlin Liu, Hanlin Wang, Tianming Liu, Diandian Gu, Yun Ma, Haoyu Wang, Xusheng Xiao
    ICSE 2022  Paper
  18. ATVHunter: Reliable Version Detection of Third-party Libraries for Vulnerability Identification in Android Applications
    Xian Zhan, Lingling Fan, Sen Chen, Feng We, Tianming Liu, Xiapu Luo, Yang Liu
    ICSE 2021,  🏅ACM SIGSOFT Distinguished Paper Award  Paper
  19. Research on Third-party Libraries in Android Apps: A Taxonomy and Systematic Literature Review
    Xian Zhan, Tianming Liu, Lingling Fan, Li Li, Sen Chen, Xiapu Luo, Yang Liu
    IEEE Transactions on Software Engineering (TSE)  Paper
  20. A Systematic Assessment on Android Third-party Library Detection Tools
    Xian Zhan, Tianming Liu, Yepang Liu, Yang Liu, Li Li, Haoyu Wang, Xiapu Luo
    IEEE Transactions on Software Engineering (TSE)  Paper
  21. MadDroid: Characterising and Detecting Devious Ad Content for Android Apps
    Tianming Liu, Haoyu Wang, Li Li, Xiapu Luo, Feng Dong, Yao Guo, Liu Wang, Tegawende F. Bissyande, Jacques Klein
    WWW 2020  Paper
  22. Automated Third-party Library Detection for Android Applications: Are We There Yet?
    Xian Zhan, Lingling Fan, Tianming Liu, Sen Chen, Li Li, Haoyu Wang, Yifei Xu, Xiapu Luo, Yang Liu
    ASE 2020  Paper
  23. DaPanda: Detecting Aggressive Push Notification in Android Apps
    Tianming Liu, Haoyu Wang, Li Li, Guangdong Bai, Yao Guo, Guoai Xu
    ASE 2019  Paper
  24. FraudDroid: Automated Ad Fraud Detection for Android Apps
    Feng Dong, Haoyu Wang, Li Li, Yao Guo, Tegawende F. Bissyande, Tianming Liu, Guoai Xu, Jacques Klein
    ESEC/FSE 2018  Paper

💼 Services

  • PC: Internetware 2026

  • Reviewer: CHI 2026, ACM Computing Surveys (CSUR), TSE, TOSEM, Computers & Security (COSE), Journal of Systems and Software (JSS), Information and Software Technology (IST)

  • Sub-reviewer: I have also served as a sub-reviewer for more than 50 papers over the years, covering venues including S&P, CCS, USENIX Security, ICSE, FSE, ASE, ISSTA, WWW, IMC, TDSC, and more

Last Updated: 2026-03-31