Taichung City, Taiwan
Hello, my name is Yu-Sheng Chang, and I am a soon-to-graduate graduate student majoring in Information Security at the Department of Computer Science and Engineering, National Sun Yat-sen University.
During my studies, I have been particularly impressed by courses such as "Digital Signature Schemes and Applications" and "Secure Cryptographic Protocols," which deepened my understanding of cryptographic principles. Additionally, in courses like "Hack Technology & Computer Forensic" and "Network Security," I learned about cybersecurity attack and defense concepts, including CTF challenges and IDS implementation.
In my multi-national laboratory, led by my Indian doctoral advisor, I collaborated with team members from diverse backgrounds on research into authentication mechanisms. This experience enhanced my problem-solving, communication, and teamwork skills. As a secondary contributor, I helped produce a paper on Multi-Factor Authentication (MFA), presented at SECRYPT 2023. Currently, my research focuses on applied cryptography, with an extension of MFA mechanisms as the topic of my master's thesis.
Recognizing the importance of staying ahead in cybersecurity, I am curious about new technologies and proactive in self-development. I actively attend seminars like "CYBERSEC" and "HITCON" and pursue self-learning through platforms like EC-Council and Coursera. I completed ITRI training, earned the intermediate "iPAS Information Security Engineer Certification," and hold the "(ISC)² Certified in Cybersecurity (CC)" credential. These achievements showcase my dedication to continuous learning and expertise in cybersecurity management, risk assessment, and vulnerability management.
I believe practical experience is crucial for applying theoretical knowledge. During a summer internship at Moxa Technology Co., Ltd., I gained insights into cybersecurity considerations in both IT and OT fields and acquired hands-on experience in identifying network device vulnerabilities. I successfully achieved internship goals, including operating Nessus vulnerability scanning tools and performing compliance verification. Throughout this process, I enhanced my proficiency in network protocols and cybersecurity tools, actively contributed to technical team meetings and project management discussions, and engaged with the SSDLC process, making meaningful contributions to its implementation.
In summary, my academic and practical experiences have equipped me with a strong foundation in Information Security, and I am eager to apply my skills in real-world settings. Thank you.
July 2023 - September 2023
- IEC-62443-4-2 FR-1 Compliance Verification.
- Nessus Operation and Vulnerability Analysis.
- Historical IPV Vulnerability Reproduction Learning.
March 2022 - June 2022
- Built responsive websites with Bootstrap, HTML, CSS, basic JavaScript, and Laravel/PHP.
- Utilized GitHub for team projects and version control.
- Collaborated on UI/UX design and mockups with Figma.
2022 - 2024
Master's student
Research Focus: Applied Cryptography, Multi-Factor Authentication, Authentication and Key Agreement Protocol, Security and Privacy, Lightweight Cryptography.