TonTon H.-D. Huang Ph.D. | AI × Cyber-Security

關於痛痛 (About TonTon)

TonTon has over a decade of experience at the intersection of AI and cybersecurity, specializing in computer vision, natural language processing, speech processing, and x86/Android malware analysis. He has led the adoption of AI solutions and the deployment of cybersecurity R&D in the financial insurance and telecommunications sectors, strengthening operational intelligence and cyber resilience. He has also presented his work at international conferences such as DEF CON, OWASP AppSec USA, RuxCon, and HITCON, and authored multiple academic publications.

He earned his Ph.D. in Computer Science and Information Engineering from National Cheng Kung University, with a dissertation titled “Deep Learning-based Anomaly Analysis in Cyber Threats.” During his doctoral studies, he participated in Taiwan–France and Taiwan–UK collaborative research programs, conducting research at Inria (France) and the University of Essex (UK). He is the founder of Taiwan’s early AI communities, Deep Learning 101 and the Taiwan AI Society, fostering industry–academia collaboration and knowledge sharing in AI and cybersecurity.

TonTon 長期投入人工智慧與網路安全領域，擁有多年的研發與跨域整合經驗，專長涵蓋圖像識別、自然語言處理、語音處理，以及x86/Android惡意程式分析等AI與資安整合應用。他於金融壽險與電信等產業推動AI導入與資安研發落地，強化產業智慧化與資安韌性；並陸續於DEF CON、OWASP AppSec USA、RuxCon與HITCON等國際研討會發表技術研究，亦發表多篇學術論文。

TonTon 畢業於國立成功大學資訊工程學系，博士論文主題為「基於深度學習的網路威脅異常分析」；期間參與「台法聯合團隊交流計畫」及「台灣與英國頂尖大學前期合作研究計畫」，先後赴法國國家信息與自動化研究所與英國艾賽克斯大學進行學術研究合作。他亦為台灣早期人工智慧社群Deep Learning 101與台灣人工智慧社團之發起人，推動AI與資安領域的產學交流與技術推廣。

AI 精選文章 (Featured AI Articles)

用 AI 懂 AI (Understanding AI with AI)

AI 技術體驗/分享 (AI Tech Deep Dive)

AI 技術開源/試用 (Open Source / Demos)

Senior Manager (協理)

Technology & Transformation - Cyber

2025/07/07 ~ Now | Taipei, Taiwan

TBD

LLM/GenAI Cyber AI-Read-Team

📱 Manager / Department Head (部經理)

Telecommunications Service Provider

2023/12/11 ~ 2024/07/05 | Taipei, Taiwan

Responsible for developing information systems tailored for AI and cybersecurity, spanning machine learning, deep learning, and other advanced computational techniques. Projects include dark web threat intelligence platforms, ASR error correction, accounting document OCR, large language & multimodal models, and multi-agent workflow automation systems.

開發專為人工智慧與資安領域量身打造的資訊系統，涵蓋機器學習、深度學習及其他先進運算技術。專案包括暗網威脅情報平台、自動語音辨識錯誤校正、會計憑證 OCR、大型語言與多模態模型，以及多智能體與流程自動化系統。

威脅情報 / Threat Intelligence: 暗網監控與分析平台 / Dark web monitoring and threat intelligence platform.
ASR 錯誤校正 / ASR Error Correction: 提升語音辨識準確度 / Improved ASR accuracy.
會計憑證 OCR / Accounting OCR: 自動化財務單據辨識 / Automated document recognition.
大型語言與多模態模型 / LLM & Multimodal Models: 應用於多元商業場景 / Applied to diverse business use cases.
多智能體與工作流程系統 / Multi-agent & Workflow Systems: 流程自動化設計 / Workflow automation design.

Threat Intelligence ASR OCR LLM Multimodal Multi-agent

💳 Senior AI Technical Architect (資深 AI 技術架構師)

Digital, Data and Technology (DDT) / 數位數據暨科技發展中心 (數數發)

Cathay Financial Holdings (國泰金融控股股份有限公司)

2022/07/04 ~ 2023/12/11 | Taipei, Taiwan

AI architecture and solution development focusing on natural language processing, OCR, and speech recognition.

人工智慧架構與解決方案開發，專注於自然語言處理、光學字元辨識與語音識別。

命名實體識別與事件擷取 / NER & Event Extraction: 醫療診斷書分析與日期擷取 / Medical diagnosis analysis & time extraction.
OCR / OCR: 文本、表格偵測與關鍵資訊擷取 / Text, table detection, and key information extraction.
語音識別與去噪 / Speech Recognition & Noise Reduction: 遠距投保與客服語音質檢工具 / QA tools for remote insurance and customer service speech interactions.
bbc.com 專訪: Taiwan's front-line battle against mobile phone fraud.

NLP OCR Speech Recognition NER

博士 — 國立成功大學資訊工程學系 (Ph.D., NCKU CSIE)

2010/09/15 ~ 2019/01

論文：基於深度學習的網路威脅異常分析 (Deep learning based anomaly analysis in cyber threats)

指導教授：高宏宇博士（IKM Lab）

ScholarGPS | 學術發表 (Publications) | Google Scholar

TonTon H.-D. Huang* and Hung-Yu Kao, "C-3PO: Click-sequence-aware DeeP Neural Network (DNN)-based Pop-uPs RecOmmendation", Soft Computing, Vol. 23, no. 22, pp. 11793–11799, 2019.
TonTon H.-D. Huang* and Hung-Yu Kao, "R2-D2: Color-inspired Convolutional Neural Network (CNN)-based Android Malware Detections", IEEE International Conference on Big Data 2018 (IEEE Big Data 2018), Seattle, WA, USA, Dec 10-13, 2018.
TonTonH.-D. Huang, "Hunting the ethereum smart con-tract:Color-inspired inspection of potential attacks", arXiv preprint, arXiv:1807.01868, 2018.
TonTon H.-D. Huang*, Chia-Mu Yu, and Hung-Yu Kao, "Data-Driven and Deep Learning Methodology for Deceptive Advertising and Phone Scams Detection", 2017 Conference on Technologies and Applications of Artificial Intelligence (TAAI 2017), Taipei, Taiwan, Dec. 1-3, 2017.
TonTon H.-D. Huang* and Chia-Mu Yu, "Poster: Adaptive Data-Driven and Region-Aware Detection for Deceptive Advertising", IEEE Symposium on Security and Privacy 2016 (IEEE S&P 2016), San Jose, CA, USA, May 23-25, 2016.
TonTon H.-D. Huang*, C.-S. Lee, M.-H. Wang, and Hung-Yu Kao, "IT2FS-based ontology with soft-computing mechanism for malware behavior analysis," Soft Computing, vol. 18, no. 2, pp. 267-284, 2014.
TonTon H.-D. Huang*, C.-S. Lee, M.-H. Wang, and Hung-Yu Kao, "IT2FLS-based Malware Analysis Mechanism: Malware Analysis Network in Taiwan (MiT)", in Proceeding of the 2013 IEEE International Conference on Systems, Man, and Cybernetics (IEEE SMC 2013), Manchester, United-Kingdom, Oct. 13-16, 2013.
TonTon H.-D. Huang*, C.-S. Lee, H. Hagras, and Hung-Yu Kao, "TWMAN+：A Type-2 Fuzzy Ontology Model for Malware Behavior Analysis," in Proceeding of the 2012 IEEE International Conference on Systems, Man, and Cybernetics (IEEE SMC 2012), COEX, Seoul, Korea, Oct. 14-17, 2012.
TonTon H.-D. Huang*, G. Acampora, V. Loia, C.-S. Lee, H. Hagras, M.-H. Wang, Hung-Yu. Kao, and J.-G. Chang, “Fuzzy markup language for malware behavioral analysis,” in G. Acampora, C. S. Lee, M. H. Wang, and V. Loia (editors), On the Power of Fuzzy Markup Language, Springer-Verlag, Germany, 2012, pp. 113-131.
TonTon H.-D. Huang*, G. Acampora, V. Loia, C.-S. Lee, and Hung-Yu Kao, "Applying FML and Fuzzy Ontologies to Malware Behavioral Analysis," in Proceeding of the 2011 IEEE International Conference on Fuzzy Systems (FUZZ-IEEE 2011), Taipei, Taiwan, June. 27-30, 2011.
TonTon H.-D. Huang*, C.-S. Lee, Hung-Yu Kao, Y.-L. Tsai, and J.-G. Chang, "Malware Behavioral Analysis System: TWMAN," in Proceeding of the 2011 IEEE Symposium on Computational Intelligence for Intelligent Agent (IEEE SSCI 2011), Paris, France, Apr. 11-15, 2011.
TonTon H.-D. Huang*, T.-Y. Chuang, Y.-L. Tsai, and C.-S. Lee, "Ontology-based intelligent system for malware behavioral analysis," in Proceeding of the 2010 IEEE World Congress on Computational Intelligence (WCCI 2010), Barcelona, Spain, Jul. 18-23, 2010.

🐆 Senior Technical Expert and Team Lead (資深技術專家 / 資訊安全與人工智慧)

Leopard Mobile (Cheetah Mobile TW Agency) / 台灣雪豹科技 (獵豹移動台灣總代理)

2015/12/28 ~ 2021/03/21 | Taiwan

Led the design and deployment of machine learning (ML) and deep learning (DL) products, including algorithm development, requirements analysis, architecture design, proprietary dataset creation, model quantization, and optimization, achieving millisecond-level inference latency while reducing model size and enhancing precision.

In cybersecurity, specialized in malware detection, blockchain vulnerability assessment, and cryptocurrency ranking, with research presented at international security conferences such as Defcon, RuxCon, OWASP Appsec, and HITCON.

AI expertise covered speech processing, NLP, and computer vision, with a focus on speech separation, enhancement, speaker recognition, and speech recognition, integrating NER, classification, similarity analysis, and machine reading comprehension to enhance AI assistants’ ability to understand and respond to human intent.

負責規劃與建置機器學習（ML）與深度學習（DL）產品，涵蓋演算法設計、需求分析、技術架構、數據集構建、模型量化與優化，並將模型推論速度優化至毫秒級，同時減少模型大小與提升精準度。

在資安領域，專注於惡意程式檢測、區塊鏈漏洞分析與加密貨幣評級，並於 Defcon, RuxCon, OWASP Appsec, HITCON 等國際安全會議發表研究成果。

人工智慧應用涵蓋語音處理、自然語言處理與電腦視覺，專精於語音分離、語音增強、聲紋辨識與語音識別，並結合 NER、文本分類、相似度分析與機器閱讀理解，讓 AI 機器人能更精確理解與回應人類意圖。

智慧服務型機器人與 AI 助理 / Intelligent Service Robots & AI Assistants
Built ML/DL applications for image, NLP, and speech processing to enhance interactive experiences.
開發影像、自然語言處理與語音處理應用，全面提升互動體驗。
惡意廣告與騷擾電話識別 / Malicious Ad & Spam Call Detection
Applied DL models to detect malicious messages, significantly improving accuracy.
採用深度學習模型有效偵測惡意訊息，顯著提升準確度。
聲紋識別與語音去噪 / Speaker Recognition & Speech Denoising
Integrated SincNet, Kaldi, and Facebook Denoiser, optimized with aishell and ESC-50 datasets, achieving 0.94 speaker recognition accuracy for service robots.
整合 SincNet、Kaldi 與 Facebook Denoiser，並利用 aishell、ESC-50 數據集優化，使聲紋辨識準確率達 0.94，應用於服務型機器人。
語音分割 / Speech Segmentation
Enhanced speech separation with RNN/CNN architectures, self-supervised models, and multi-resolution feature downsampling.
結合 RNN/CNN 結構、自監督模型與多解析度特徵下採樣，提升語音分離效果。
自然語言處理與機器閱讀理解 / NLP & Machine Reading Comprehension
Optimized BERT and developed custom annotation tools, supporting SQuAD 1.0/2.0 and DRCD to improve semantic understanding accuracy.
優化 BERT 模型並建立數據標註工具，支援 SQuAD 1.0/2.0 與 DRCD，提升語義理解精準度。
文本糾錯與相似度分析 / Text Correction & Similarity Analysis
Leveraged ConvSeq2Seq and BERT to improve inference speed and accuracy for semantic identification.
基於 ConvSeq2Seq 與 BERT，提升推論速度與準確率，加強語意識別。
命名實體識別與文本分類 / NER & Text Classification
Integrated pinyin-based classification for marketplace data, improving recognition accuracy and containerized API inference performance.
整合拼音與分類機制，應用於商場數據，提升識別精準度與 API 推論效率。
支援台灣防疫技術，提升聲紋辨識正確率 (科技抗疫: 提高聲紋辨識正確率，添防疫新利器)。
Enhanced speaker recognition accuracy for Taiwan’s pandemic prevention technologies.
作為 NVIDIA 開發者，應用 AI 提升行動應用程式通知的頻率與品質。
As an NVIDIA Developer, applied AI to improve the frequency and quality of mobile app notifications.
受媒體專訪，列入Career「十大熱門人才」系列報導。
Featured in Career’s “Top 10 In-demand Talents” series.
DEFCON 26: "Hunting the Ethereum Smart Contract"
Ruxcon 2017: "Large Scale Ransomware Detection with Naked Eye"
OWASP AppSec USA 2017: "R2-D2: CNN-based Android Malware Detection"

ML/DL Malware Detection Blockchain NLP Speech Processing BERT

🎯 Senior Security Engineer (資深資安工程師)

Verint Systems (以色列商台灣威瑞特系統)

2014/07/07 ~ 2015/12/14 | Taipei, Taiwan

Developed Android security architecture, specializing in malicious program analysis and detection with in-depth research in cybersecurity. Key achievement: APKProbe — a hybrid Android malware probing system combining semantic-based static analysis to bypass code obfuscation and physical cluster-based dynamic analysis to evade anti-sandboxing techniques. Additional responsibilities included delivering custom training, designing solution architectures, conducting cybersecurity research, providing product education and client support, monitoring security equipment, performing incident analysis and response, and conducting digital forensics.

負責開發 Android 安全架構，專注於惡意程式分析與偵測，並深入資安領域研究。核心成果包括 APKProbe：混合式 Android 惡意程式探測系統，結合基於語義的靜態分析以破解代碼混淆，並運用實體叢集機器的動態分析技術以規避反沙箱檢測。其他工作內容涵蓋客製化教育訓練、資安解決方案架構設計與研究、資安產品培訓與客戶維護、資安設備監控、事件分析與應變，以及數位鑑識。

APKProbe Malware Probing System
Created a hybrid probing framework for Android applications integrating static and dynamic analysis to improve malware detection accuracy.
創建針對 Android 應用程式的混合式探測架構，整合靜態與動態分析技術，提升惡意程式偵測準確度。

資安教育與培訓 / Cybersecurity Education & Training
Designed and delivered enterprise-level security training to strengthen client protection capabilities.
設計並提供企業級資安教育課程，提升客戶端防護能力。

事件分析與數位鑑識 / Incident Analysis & Digital Forensics
Monitored security systems, investigated incidents, and performed digital forensic analysis.
監控資安設備、分析異常事件並執行數位鑑識作業。

TonTon H.-D. Huang, "New Mindset for Malware Battlefield: Bytecode Analysis and Physical Machine-based for Android", Hacks in Taiwan Conference (HITCON) CMT, Taipei, Taiwan, 2015. (Keynote Speech, link)

TonTon H.-D. Huang, "Building Adaptive Heterogeneous Architecture for Malware Behavior Analysis: MAN in Taiwan", Hacks in Taiwan Conference (HITCON) PLG, Taipei, Taiwan, 2014. (link)

Android Security Malware Analysis Digital Forensics

💻 Senior Security Engineer (資深資安工程師)

Acer Cyber Security (安碁資訊)

2014/01/20 ~ 2014/07/04 | Taipei, Taiwan

Developed Acer Cyber Evidence, a cluster-based digital forensics toolkit integrated with Arcsight to enhance threat detection and evidence collection capabilities. Focused on network threat analysis, malware research, and digital forensics technology development. Responsibilities included delivering custom training, product maintenance, solution planning, monitoring security systems, incident analysis and response, and performing digital forensics operations.

開發 Acer Cyber Evidence 數位鑑識叢集服務工具，並與 Arcsight 整合，以強化威脅偵測與證據收集能力。專注於網路威脅分析、惡意程式研究與數位鑑識技術開發，負責客製化教育訓練、產品維護、解決方案規劃，以及資安設備監控、事件分析與應變、數位鑑識作業。

Acer Cyber Evidence 開發 / Acer Cyber Evidence Development
Designed and implemented a cluster-based digital forensics service integrated with Arcsight, improving threat detection efficiency and forensic capability.
設計與實作數位鑑識叢集服務，結合 Arcsight 提升威脅偵測效率與取證能力。
網路威脅與惡意程式分析 / Network Threat & Malware Analysis
Developed tools for threat analysis and malware research, enhancing forensic accuracy and response time.
開發威脅分析與惡意程式研究工具，提升鑑識準確性與反應速度。
資安教育與解決方案規劃 / Cybersecurity Training & Solution Design
Delivered enterprise-level security training, product maintenance, and solution planning.
提供企業資安教育訓練、產品維護與解決方案規劃。

Digital Forensics Arcsight Threat Analysis

學術交流 (Visiting Scholar)

2012 台法(NSC-INRIA)聯合團隊人員交流計畫
Visiting Scholar, TAO, an Inria Saclay-IDF team, Univ. Paris-Sud

Funding support "Intelligent Decision Making Mechanisms with Hidden Information and Application to Electricity Generation" under the framework of the NSC-INRIA International Program from Taiwan National Science Council (NSC)
2010 台灣與英國頂尖大學前期合作研究計畫
Visiting Scholar, University of Essex, School of Computer Science and Electronic Engineering

Funding support "Type-2 Fuzzy Ontology Model and Its Applications" under the framework of the 2010 Initiative Research Cooperation among Top Universities between UK and Taiwan from Taiwan National Science Council (NSC)

🖥️ Assistant Researcher (助理研究員)

National Center for High-Performance Computing (國家高速網路與計算中心)

2008/11 ~ 2011/09/28 | Tainan, Taiwan

Integrated Diskless Remote Boot in Linux (DRBL) to develop TWMAN, an open-source automated malware behavior analysis toolkit for Windows platforms. Responsible for cybersecurity research, developing malware analysis techniques, and managing operations of the Southern Taiwan Academic Network. Additional duties included delivering custom training, conducting security solution research, and providing technical support.

整合 Linux 無碟遠端啟動（DRBL）技術，開發 TWMAN（抬丸郎） —— 基於 Windows 平台的開源自動化惡意程式行為分析工具。負責資安研究與惡意程式分析技術開發，並管理南部學術網路的維運。工作內容包含客製化教育訓練、資安解決方案研究與技術支援。

TWMAN 惡意程式分析工具 / TAIWAN Malware Analysis Network
Developed an open-source automated malware behavior analysis toolkit for Windows, integrating DRBL to improve analysis efficiency and scalability.
開發基於 Windows 的開源自動化惡意程式行為分析工具，整合 DRBL 提升分析效率與可擴充性。
惡意程式分析與資安研究 / Malware Analysis & Security Research
Developed behavior analysis and forensic techniques to strengthen cybersecurity capabilities.
研發行為分析與鑑識技術，強化資安防護能力。
南部學術網路維運 / Southern Taiwan Academic Network Operations
Managed network infrastructure ensuring high availability and security.
管理網路基礎架構並確保高可用性與安全性。

DRBL Malware Analysis Network Operations

碩士 & 學士 (Master's & Bachelor's)

碩士 — 國立臺南大學數位學習科技系 (M.S., NUTN)
2006/09 ~ 2008/06
指導教授：李健興博士（OASE Lab）, 共同指導教授：莊宗嚴博士
學士 — 立德大學資訊工程系 (B.S., Leader University)
2002/09 ~ 2006/06
嘉南藥理科技大學（工業安全與衛生學系） | 2001/09 ~ 2002/06
輔仁大學夜間部（會計系） | 2000/09 ~ 2001/06
力行升大學保證班 | 1999/09 ~ 2000/06
高雄市私立復華中學，三年三班 | 1999/02 ~ 1999/05
國立岡山高級中學，三年六班 | 1998/09 ~ 1999/01
高雄市立左營高級中學，一年十班，二年四班 | 1996/09 ~ 1998/06

TonTon (痛痛) H.-D. Huang Ph.D.

關於痛痛 (About TonTon)

AI 精選文章 (Featured AI Articles)

工作經歷 & 學術/教育背景