×
Dongkwan Kim

Dongkwan Kim

Postdoctoral Fellow [at] Georgia Tech

756 W Peachtree St NW S0980, Atlanta, GA, US, 30308
Korean, English

Background


Bio

Bio

I am a security engineer and researcher with a deep interest in uncovering inter-domain security threats in AI, IoT, mobile networks, and cyber-physical systems. My work spans beyond device-level vulnerabilities, focusing on how security issues impact business logic, service architectures, and user privacy.

Currently, I'm exploring:
  • AI for Security – Developing AI-driven vulnerability discovery and exploitation tools as a finalist in DARPA's AIxCC competition at Georgia Tech.
  • Securing AI Systems – Formerly at Samsung Security Center, where I worked on enterprise and on-device AI security.
What I Do
  • Identify and exploit security vulnerabilities across diverse domains
  • Research and build solutions to secure AI-integrated infrastructures
  • Reverse-engineer firmware, basebands, and embedded systems
  • Collaborate with cross-functional teams to mitigate security risks
Achievements
  • 5x DEFCON Finalist | Multiple hacking competition awards
  • 9 publications in top-tier security venues (USENIX Security, CCS, NDSS, TSE, TMC)
  • 7 patents in cybersecurity and AI security domains
  • 17+ industry and government projects in security research & engineering
I thrive in hands-on security research, bridging the gap between theory and practice, and working alongside experts to push the boundaries of cybersecurity.

If you're interested in my work or want to discuss security challenges, feel free to connect with me or explore more on this site.
Research Interests

Research Interests

  • AI System Security

    Prompt InjectionInformation LeakResponsible ModelSafety Filtering
  • Software Security

    ReversingBinary Code Similarity AnalysisAutomatic Exploit Generation
  • Cellular Network Security

    Baseband ExploitControl PlaneIMSCharging BypassCore Network
  • Cyber-Physical System Security

    Drone HijackingCar HackingWearable DevicesSensor SpoofingEMI InjectionRobots
Work Experience

Work Experience

  • Postdoctoral Fellow, School of Cybersecurity and Privacy, Georgia Tech

    Feb, 2025 - Present1 month

    Participating in AIxCC run by DARPA, a competition that leverages AI to find vulnerabilities and patch them fully automatically.
    • Manager: Prof. Taesoo Kim
  • Senior Engineer, Advanced Penetration Testing Group, Samsung Security Center, Samsung SDS

    Aug, 2022 - Dec, 20242 years 5 months

    Worked at the Samsung Security Center, carrying out Red Team efforts to proactively prevent security threats to products and services of all Samsung affiliates: Integrated AI service systems, IoT/embedded devices, Android applications, kernel-level mitigations, and many more.
  • Postdoctoral Researcher, KAIST

    Mar, 2022 - Jul, 20225 months

    Continued collaboration research on 1) sensor spoofing and EMI injection against drones, 2) finding logic bugs in smartphone baseband software
    • Manager: Prof. Yongdae Kim
  • Research Intern, Pinion Industries

    Dec, 2013 - Feb, 20143 months

    An automotive software and security start-up. Analyzed various components in a car including network systems, AVN, telematics, smartkey, and ECUs.
  • Student Senior, KAIST CERT

    Sep, 2010 - Dec, 20122 years 4 months

    Investigated security incidents. In one case, successfully identified the culprit leading to their apprehension by the police.
    • Student Team Leader (2011. 9. 1 ~ 2012. 8. 31)
Education

Education

  • Electrical Engineering,  Ph.D.,  KAIST

    Mar, 2016 - Feb, 2022

  • Electrical Engineering,  M.S.,  KAIST

    Mar, 2014 - Feb, 2016

  • Software and System Security,  Visiting Scholar,  EURECOM

    Jun, 2014 - Jul, 2014

  • Computer Science,  Bachelor,  KAIST

    Feb, 2010 - Feb, 2014

Recent Talks (Selected)
Publications

Publications

Awards

Awards

  • Finalist to Defcon 27 CTF (team. KaisHack GoN)

    Aug 09, 2019

  • Finalist to Defcon 26 CTF (team. KaisHack+PLUS+GoN)

    Aug 09, 2018

  • HDCON CTF 1st Prize $20,000 (team. maxlen)

    Organized by Ministry of Science and ICT

    Nov 30, 2017

  • Whitehat Contest 2017 1st Prize $30,000 (team. Old GoatskiN)

    Organized by Ministry of National Defense

    Nov 27, 2017

  • Codegate CTF 3rd Prize $5,000 (team. Old GoatskiN)

    Organized by Ministry of Science, ICT and Future Planning of Korea

    Apr 12, 2017

  • Finalist to Defcon 24 CTF (team. KaisHack GoN)

    Aug 05, 2016

  • Whitehat Contest 2014 1st Prize $20,000 (team. Syssec)

    Organized by Ministry of National Defense and National Intelligence Service of Korea

    Nov 18, 2014

  • Finalist to Defcon 22 CTF (team. KAIST GoN)

    Aug 08, 2014

  • HDCON CTF Silver Prize $2,000 (team. GoN)

    Organized by Korea Internet & Security Agency (KISA)

    Dec 04, 2013

  • Whitehat Contest 2013 1st Prize $20,000 (team. KAIST GoN)

    Organized by Ministry of National Defense and National Intelligence Service

    Oct 02, 2013

  • Finalist to Defcon 20 CTF (team. KAIST GoN)

    Jul 27, 2012

  • HDCON CTF Silver Prize $2,000 (team. KAIST GoN)

    Organized by Korea Internet & Security Agency (KISA)

    Jul 11, 2012

  • Codegate YUT CTF 3rd Prize $5,000 (team. KAIST GoN)

    Organized by Ministry of Science, ICT and Future Planning of Korea

    Apr 03, 2012

  • ISEC CTF 1st Prize $10,000 (team. GoN)

    Organized by Ministry of the Interior and Safety

    Sep 21, 2011

  • PADOCON CTF 1st Prize $1,000 (team. GoN)

    Organized by PAraDOx CONference (union of undergraduate hacking groups)

    Jan 31, 2011

References

References

  • Dr. Yongdae Kim [www]

    Director, Cyber Security Research Center (CSRC), KAIST and Professor, School of Electrical Engineering and Graduate School of Information Security, KAIST
    yongdaek@kaist.ac.kr

  • Dr. Taesoo Kim [www]

    Professor, School of Cybersecurity and Privacy (SCP) and Computer Science (SCS), Georgia Tech
    taesoo@gatech.edu

  • Dr. Sang Kil Cha [www]

    Director, Cyber Security Research Center (CSRC), KAIST and Associate Professor, School of Computing and Graduate School of Information Security, KAIST
    sangkilc@kaist.ac.kr

  • Dr. Sooel Son [www]

    Associate Professor, School of Computing and Graduate School of Information Security, KAIST
    sl.son@kaist.ac.kr

  • Dr. Yeongjin Jang [www]

    Principal Software Engineer, Samsung Research America
    y.jang1@samsung.com

  • Dr. Insu Yun [www]

    Associate Professor, School of Electrical Engineering, KAIST
    insuyun@kaist.ac.kr