{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,14]],"date-time":"2026-01-14T18:06:20Z","timestamp":1768413980341,"version":"3.49.0"},"publisher-location":"Cham","reference-count":19,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031877599","type":"print"},{"value":"9783031877605","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-87760-5_8","type":"book-chapter","created":{"date-parts":[[2025,7,26]],"date-time":"2025-07-26T09:48:25Z","timestamp":1753523305000},"page":"96-107","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Stateful Fuzzing of\u00a0OPC UA"],"prefix":"10.1007","author":[{"given":"Cristian","family":"Daniele","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mark","family":"Fijneman","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Erik","family":"Poll","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2025,7,27]]},"reference":[{"key":"8_CR1","unstructured":"Libfuzzer. https:\/\/llvm.org\/docs\/LibFuzzer.html"},{"key":"8_CR2","unstructured":"open62541. OPC UA Foundation. https:\/\/reference.opcfoundation.org\/Core\/Part6\/v105\/docs\/7.1.3"},{"key":"8_CR3","unstructured":"Peach fuzzer (2004). https:\/\/gitlab.com\/peachtech\/peach-fuzzer-community"},{"key":"8_CR4","doi-asserted-by":"crossref","unstructured":"Andarzian, S.B., Daniele, C., Poll, E.: On the (in) efficiency of fuzzing network protocols. Annals of Telecommunications (2024)","DOI":"10.21203\/rs.3.rs-3959296\/v1"},{"key":"8_CR5","unstructured":"Cheremushkin, P., Temnikov, S.: OPC UA security analysis. Kaspersky Lab ICS CERT (2018). https:\/\/ics-cert.kaspersky.com\/publications\/reports\/2018\/05\/10\/opc-ua-security-analysis\/"},{"key":"8_CR6","unstructured":"Gappmeier, D., Pl\u00f6b, Z., St\u00f6rtkuhl, F.: OPC UA security analysis. BSI (2017). https:\/\/www.bsi.bund.de\/SharedDocs\/Downloads\/DE\/BSI\/Publikationen\/Studien\/OPCUA\/OPCUA.pdf"},{"key":"8_CR7","unstructured":"Daniele, C.: Is stateful fuzzing really challenging? arXiv preprint arXiv:2406.07071 (2024)"},{"issue":"9","key":"8_CR8","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3648468","volume":"56","author":"C Daniele","year":"2024","unstructured":"Daniele, C., Andarzian, S.B., Poll, E.: Fuzzers for stateful systems: Survey and research directions. ACM Comput. Surv. 56(9), 1\u201323 (2024)","journal-title":"ACM Comput. Surv."},{"key":"8_CR9","unstructured":"vom Dorp, J., Merschjohann, S., Meier, D., Patzer, F., Karch, M., Haas, C.: OPC UA security analysis. BSI (2022). https:\/\/www.bsi.bund.de\/SharedDocs\/Downloads\/DE\/BSI\/Publikationen\/Studien\/OPCUA\/OPCUA_2022.html"},{"key":"8_CR10","doi-asserted-by":"crossref","unstructured":"Eceiza, M., Flores, J.L., Iturbe, M.: Fuzzing the internet of things: A review on the techniques and challenges for efficient vulnerability discovery in embedded systems. IEEE Internet of Things J. 10390\u201310411 (2021)","DOI":"10.1109\/JIOT.2021.3056179"},{"issue":"1","key":"8_CR11","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1186\/s42400-022-00123-y","volume":"5","author":"M Eisele","year":"2022","unstructured":"Eisele, M., Maugeri, M., Shriwas, R., Huth, C., Bella, G.: Embedded fuzzing: a review of challenges, tools, and solutions. Cybersecurity 5(1), 18 (2022)","journal-title":"Cybersecurity"},{"key":"8_CR12","doi-asserted-by":"crossref","unstructured":"Erba, A., M\u00fcller, A., Tippenhauer, N.O.: Security analysis of vendor implementations of the OPC UA protocol for industrial control systems. In: Proceedings of the 4th Workshop on CPS & IoT Security and Privacy. ACM (2022)","DOI":"10.1145\/3560826.3563380"},{"key":"8_CR13","doi-asserted-by":"crossref","unstructured":"M\u00fchlbauer, N., Kirdan, E., Pahl, M.O., Carle, G.: Open-source OPC UA security and scalability. In: IEEE International Conference on Emerging Technologies and Factory Automation (ETFA) (2020)","DOI":"10.1109\/ETFA46521.2020.9212091"},{"key":"8_CR14","unstructured":"Pereyda, J.: Boofuzz. https:\/\/github.com\/jtpereyda\/boofuzz"},{"key":"8_CR15","doi-asserted-by":"crossref","unstructured":"Pham, V.T., B\u00f6hme, M., Roychoudhury, A.: Aflnet: A greybox fuzzer for network protocols. In: Conference on Software Testing, Validation and Verification (ICST) (2020)","DOI":"10.1109\/ICST46399.2020.00062"},{"key":"8_CR16","unstructured":"Serebryany, K.: OSS-Fuzz - Google\u2019s continuous fuzzing service for open source software. USENIX (2017)"},{"key":"8_CR17","doi-asserted-by":"crossref","unstructured":"Tran\u00a0Van, A., Levillain, O., Debar, H.: Mealy verifier: an automated, exhaustive, and explainable methodology for analyzing state machines in protocol implementations. In: International Conference on Availability, Reliability and Security (2024)","DOI":"10.1145\/3664476.3664506"},{"issue":"7","key":"8_CR18","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3538644","volume":"55","author":"J Yun","year":"2022","unstructured":"Yun, J., Rustamov, F., Kim, J., Shin, Y.: Fuzzing of embedded systems: a survey. ACM Comput. Surv. 55(7), 1\u201333 (2022)","journal-title":"ACM Comput. Surv."},{"issue":"13","key":"8_CR19","doi-asserted-by":"publisher","first-page":"2904","DOI":"10.3390\/electronics12132904","volume":"12","author":"Z Zhang","year":"2023","unstructured":"Zhang, Z., Zhang, H., Zhao, J., Yin, Y.: A survey on the development of network protocol fuzzing techniques. Electronics 12(13), 2904 (2023)","journal-title":"Electronics"}],"container-title":["Lecture Notes in Computer Science","Innovative Security Solutions for Information Technology and Communications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-87760-5_8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,8]],"date-time":"2025-09-08T04:38:48Z","timestamp":1757306328000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-87760-5_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783031877599","9783031877605"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-87760-5_8","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"27 July 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SecITC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Technology and Communications Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Bucharest","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Romania","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 November 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"23 November 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"17","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"itc2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/secitc.eu\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}