👋 I am currently an Algorithm Expert at Ant Group and a Joint Postdoctoral Researcher with Tsinghua University and Ant Group. I received my Ph.D. in June 2025 from the Institute for Network Sciences and Cyberspace, Tsinghua University, under the supervision of Prof. Qi Li, and was fortunate to also receive mentorship from Profs. Jianping Wu, Ke Xu, and Mingwei Xu.

✨ My research interests lie in LLM/Agent security (e.g., privacy preservation and security enhancement) and network traffic analysis (e.g., website fingerprinting and network attack detection). I have published papers in leading conferences and journals, including S&P, CCS, NDSS, KDD, WWW, INFOCOM, TIFS and ToN.

📮 I actively collaborate with researchers across institutions. For potential collaborations, please feel free to contact me at dengxinhao@tsinghua.edu.cn.

📝 Papers

📌 2026

• [Preprint] Xinhao Deng, Yixiang Zhang, Jiaqing Wu, Jiaqi Bai, Sibo Yi, Zhuoheng Zou, Yue Xiao, Rennai Qiu, Jianan Ma, Jialuo Chen, Xiaohu Du, Xiaofang Yang, Shiwen Cui, Changhua Meng, Weiqiang Wang, Jiaxing Song, Ke Xu, Qi Li.
  Taming OpenClaw: Security Analysis and Mitigation of Autonomous LLM Agent Threats.
  [PDF]

• [Preprint] Xinhao Deng, Jiaqing Wu, Miao Chen, Yue Xiao, Ke Xu, Qi Li.
  Automating Agent Hijacking via Structural Template Injection.
  [PDF]

• [ToN’26] Xinhao Deng, Xiyuan Zhao, Qilei Yin, Zhuotao Liu, Qi Li, Mingwei Xu, Ke Xu, Jianping Wu.
  Towards Robust Multi-tab Website Fingerprinting.
  IEEE/ACM Transactions on Networking (ToN), 2026.

• [WWW’26] Xiyuan Zhao, Xinhao Deng, Tianyu Cui, Yixiang Zhang, Ke Xu, Qi Li.
  Robust LLM-Based Website Fingerprinting under Dynamic Real-World Conditions.
  ACM Web Conference (WWW), 2026.

• [INFOCOM’26] Yifei Cheng, Yujia Zhu, Baiyang Li, Xinhao Deng, Yitong Cai, Yaochen Ren, Qingyun Liu.
  STAR: Semantic-Traffic Alignment and Retrieval for Zero-Shot HTTPS Website Fingerprinting.
  IEEE INFOCOM, 2026

• [NDSS’26] Xinhao Deng, Yixiang Zhang, Qi Li, Zhuotao Liu, Yabo Wang, Ke Xu.
  Enhancing Website Fingerprinting Attacks against Traffic Drift.
  Network and Distributed System Security Symposium (NDSS), 2026.

📌 2025

• [Preprint] Yixiang Zhang, Xinhao Deng, Zhongyi Gu, Yihao Chen, Ke Xu, Qi Li, Jianping Wu.
  Exposing LLM User Privacy via Traffic Fingerprint Analysis: A Study of Privacy Risks in LLM Agent Interactions.
  [PDF]

• [TST’25] Xinhao Deng, Jingyou Chen, Linxiao Yu, Yixiang Zhang, Zhongyi Gu, Changhao Qiu, Xiyuan Zhao, Ke Xu, Qi Li.
  Beyond a Single Perspective: Towards a Realistic Evaluation of Website Fingerprinting Attacks.
  Tsinghua Science and Technology (TST), 2025.
  [PDF]

• [CCS’25] Yuqi Qing, Qilei Yin, Xinhao Deng, Xiaoli Zhang, Peiyang Li, Zhuotao Liu, Kun Sun, Ke Xu, Qi Li.
  Training Robust Classifiers for Classifying Encrypted Traffic under Dynamic Network Conditions.
  ACM SIGSAC Conference on Computer and Communications Security (CCS), 2025.

• [WWW’25] Yifei Cheng, Yujia Zhu, Baiyang Li, Peishuai Sun, Yong Ding, Xinhao Deng, Qingyun Liu.
  HOLMES & WATSON: A Robust and Lightweight HTTPS Website Fingerprinting through HTTP Version Parallelism.
  ACM Web Conference (WWW), 2025.

• [KDD’25] Li Gao, Chuanpu Fu, Xinhao Deng, Ke Xu, Qi Li.
  Wedjat: Detecting Sophisticated Evasion Attacks via Real-time Causal Analysis.
  ACM SIGKDD Conference on Knowledge Discovery and Data Mining (KDD), 2025.

📌 2024

• [Preprint] Tianyu Cui, Yanling Wang, Chuanpu Fu, Yong Xiao, Sijia Li, Xinhao Deng, Yunpeng Liu, Qinglin Zhang, Ziyi Qiu, Peiyang Li, Zhixing Tan, Junwu Xiong, Xinyu Kong, Zujie Wen, Ke Xu, Qi Li.
  Risk Taxonomy, Mitigation, and Assessment Benchmarks of Large Language Model Systems.
  [PDF]

• [CCS’24] Xinhao Deng, Qi Li, Ke Xu.
  Robust and Reliable Early-Stage Website Fingerprinting Attacks via Spatial-Temporal Distribution Analysis.
  ACM SIGSAC Conference on Computer and Communications Security (CCS), 2024.
  [PDF] | [Code]
  Artifact Evaluation: 🏅Available · 🏅Reusable · 🏅Reproduced

• [CCS’24] Xiyuan Zhao*, Xinhao Deng* (Equal Contribution), Qi Li, Yunpeng Liu, Zhuotao Liu, Kun Sun, Ke Xu.
  Towards Fine-Grained Webpage Fingerprinting at Scale.
  ACM SIGSAC Conference on Computer and Communications Security (CCS), 2024.
  [PDF] | [Code]
  Artifact Evaluation: 🏅Available · 🏅Functional · 🏅Reproduced

• [TNSM’24] Xinhao Deng, Mingwei Xu, Qi Li, Weijie Wu, Yuan Yang, Menghao Zhang, Yu Zhou, Jianping Wu.
  Exploring Dynamic Rule Caching Under Dependency Constraints for Programmable Switches: Theory, Algorithm, and Implementation.
  IEEE Transactions on Network and Service Management (TNSM), 2024.
  [PDF]

• [NDSS’24] Yuqi Qing, Qilei Yin, Xinhao Deng, Yihao Chen, Zhuotao Liu, Kun Sun, Ke Xu, Jia Zhang, Qi Li.
  Low-Quality Training Data Only? A Robust Framework for Detecting Encrypted Malicious Network Traffic.
  Network and Distributed System Security Symposium (NDSS), 2024.
  [PDF] | [Code]

📌 Before 2024

• [S&P’23] Xinhao Deng, Qilei Yin, Zhuotao Liu, Xiyuan Zhao, Qi Li, Mingwei Xu, Ke Xu, Jianping Wu.
  Robust Multi-tab Website Fingerprinting Attacks in the Wild.
  IEEE Symposium on Security and Privacy (S&P), 2023.
  [PDF] | [Code] | [Dataset]

• [SecureComm’23] Guoqiang Zhang, Jiahao Cao, Mingwei Xu, Xinhao Deng.
  Unsupervised and Adaptive Tor Website Fingerprinting.
  EAI SecureComm, 2023.
  [PDF]

• [TIFS’22] Qi Li, Xinhao Deng, Zhuotao Liu, Yuan Yang, Xiaoyue Zou, Mingwei Xu, Jianping Wu.
  Dynamic Network Function Enforcement via Joint Flow and Function Scheduling.
  IEEE Transactions on Information Forensics and Security (TIFS), 2022.
  [PDF]

• [Computers & Security’22] Jie Sun, Lingchen Zhao, Zhuotao Liu, Qi Li, Xinhao Deng, Qian Wang, Yong Jiang.
  Practical Differentially Private Online Advertising.
  Computers & Security, 2022.
  [PDF]

• [TNSM’19] Shu Yang, Laizhong Cui, Xinhao Deng, Qi Li, Yulei Wu, Mingwei Xu, Jianping Wu.
  FISE: A Forwarding Table Structure for Enterprise Networks.
  IEEE Transactions on Network and Service Management (TNSM), 2019.
  [PDF]

🎖 Honors and Awards

• Outstanding Doctoral Dissertation of Tsinghua University 2025. (清华大学优秀博士学位论文)
• Science and Technology Award, Chinese Institute of Electronics. 2024.（中国电子学会科技进步一等奖）
• Student Travel Grant of ACM CCS 2024.
• 1st-class Scholarship of Tsinghua University. 2024 & 2022.（清华大学一等奖学金）
• Tsinghua-Longfor Scholarship. 2023.（清华-龙湖奖学金）
• China National Scholarship. 2019.（国家奖学金）

📑 Academic Services

• Conference Reviewer: SecureComm’23, ACSAC’22, ACSAC’20.
• Journal Reviewer: TIFS, TNSM.
• Artifact Evaluation Committee: Security’25, CCS’24, ACSAC’22.
• External Reviewer: S&P’25, CCS’24, NDSS’24, Security’23, WWW’23.