{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,25]],"date-time":"2026-02-25T17:10:46Z","timestamp":1772039446169,"version":"3.50.1"},"publisher-location":"Cham","reference-count":40,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319752075","type":"print"},{"value":"9783319752082","type":"electronic"}],"license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-319-75208-2_1","type":"book-chapter","created":{"date-parts":[[2018,1,25]],"date-time":"2018-01-25T11:34:39Z","timestamp":1516880079000},"page":"1-21","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":17,"title":["Opening Pandora\u2019s Box: Effective Techniques for Reverse Engineering IoT Devices"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-8913-0607","authenticated-orcid":false,"given":"Omer","family":"Shwartz","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yael","family":"Mathov","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Michael","family":"Bohadana","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yuval","family":"Elovici","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0423-802X","authenticated-orcid":false,"given":"Yossi","family":"Oren","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,1,26]]},"reference":[{"key":"1_CR1","unstructured":"crypt(3) Man Page: Linux Programmer\u2019s Manual. http:\/\/man7.org\/linux\/man-pages\/man3\/crypt.3.html"},{"key":"1_CR2","unstructured":"Firmware-mod-kit Github Repository. https:\/\/github.com\/mirror\/firmware-mod-kit"},{"key":"1_CR3","unstructured":"Hashcat Password Recovery Tool. https:\/\/hashcat.net\/"},{"key":"1_CR4","unstructured":"John the Ripper Password Cracker. http:\/\/www.openwall.com\/john\/"},{"key":"1_CR5","unstructured":"Mirai Github Repository. https:\/\/github.com\/jgamblin\/Mirai-Source-Code"},{"key":"1_CR6","doi-asserted-by":"crossref","unstructured":"Alqassem, I., Svetinovic, D.: A taxonomy of security and privacy requirements for the internet of things (IoT). In: 2014 IEEE International Conference on Industrial Engineering and Engineering Management, IEEM 2014, Selangor Darul Ehsan, Malaysia, 9\u201312 December 2014, pp. 1244\u20131248. IEEE (2014). https:\/\/doi.org\/10.1109\/IEEM.2014.7058837","DOI":"10.1109\/IEEM.2014.7058837"},{"key":"1_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"125","DOI":"10.1007\/BFb0028165","volume-title":"Security Protocols","author":"R Anderson","year":"1998","unstructured":"Anderson, R., Kuhn, M.: Low cost attacks on tamper resistant devices. In: Christianson, B., Crispo, B., Lomas, M., Roe, M. (eds.) Security Protocols 1997. LNCS, vol. 1361, pp. 125\u2013136. Springer, Heidelberg (1998). https:\/\/doi.org\/10.1007\/BFb0028165"},{"key":"1_CR8","doi-asserted-by":"crossref","unstructured":"Anonymous: The author\u2019s github repository. Details omitted for anonymous submission (2017)","DOI":"10.5194\/tc-2017-108-AC1"},{"key":"1_CR9","unstructured":"Atmel Corporation: ATtiny13A Datasheet, May 2012. http:\/\/www.atmel.com\/images\/doc8126.pdf"},{"issue":"2","key":"1_CR10","first-page":"114","volume":"7","author":"R Bodenheim","year":"2014","unstructured":"Bodenheim, R., Butts, J., Dunlap, S., Mullins, B.E.: Evaluation of the ability of the Shodan search engine to identify internet-facing industrial control devices. IJCIP 7(2), 114\u2013123 (2014). https:\/\/doi.org\/10.1016\/j.ijcip.2014.03.001","journal-title":"IJCIP"},{"key":"1_CR11","doi-asserted-by":"crossref","unstructured":"Chen, D.D., Woo, M., Brumley, D., Egele, M.: Towards automated dynamic analysis for Linux-based embedded firmware. In: NDSS (2016)","DOI":"10.14722\/ndss.2016.23415"},{"key":"1_CR12","unstructured":"Costin, A., Zaddach, J., Francillon, A., Balzarotti, D.: A large-scale analysis of the security of embedded firmwares. In: Fu, K., Jung, J. (eds.) Proceedings of the 23rd USENIX Security Symposium, San Diego, CA, USA, 20\u201322 August 2014, pp. 95\u2013110. USENIX Association (2014). https:\/\/www.usenix.org\/conference\/usenixsecurity14\/technical-sessions\/presentation\/costin"},{"key":"1_CR13","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"57","DOI":"10.1007\/978-3-319-54669-8_4","volume-title":"Smart Card Research and Advanced Applications","author":"F Courbon","year":"2017","unstructured":"Courbon, F., Skorobogatov, S., Woods, C.: Reverse engineering flash EEPROM memories using scanning electron microscopy. In: Lemke-Rust, K., Tunstall, M. (eds.) CARDIS 2016. LNCS, vol. 10146, pp. 57\u201372. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-54669-8_4"},{"key":"1_CR14","unstructured":"Cui, A., Costello, M., Stolfo, S.J.: When firmware modifications attack: a case study of embedded exploitation. In: 20th Annual Network and Distributed System Security Symposium, NDSS 2013, San Diego, California, USA, 24\u201327 February 2013. The Internet Society (2013). http:\/\/internetsociety.org\/doc\/when-firmware-modifications-attack-case-study-embedded-exploitation"},{"issue":"1","key":"1_CR15","doi-asserted-by":"crossref","first-page":"50","DOI":"10.1109\/TETC.2014.2304492","volume":"2","author":"J DaRolt","year":"2014","unstructured":"DaRolt, J., Das, A., Natale, G.D., Flottes, M., Rouzeyre, B., Verbauwhede, I.: Test versus security: past and present. IEEE Trans. Emerging Topics Comput. 2(1), 50\u201362 (2014). https:\/\/doi.org\/10.1109\/TETC.2014.2304492","journal-title":"IEEE Trans. Emerging Topics Comput."},{"key":"1_CR16","unstructured":"Davis, R., Merriam, N., Tracey, N.: How embedded applications using an RTOS can stay within on-chip memory limits. In: 12th EuroMicro Conference on Real-Time Systems, pp. 71\u201377 (2000)"},{"key":"1_CR17","unstructured":"Gartner: Gartner says 4.9 Billion Connected \u201cThings\u201d will be in Use in 2015. Gartner.com (2014). http:\/\/www.gartner.com\/newsroom\/id\/2905717"},{"key":"1_CR18","unstructured":"Gordon Lyon: Nmap Security Scanner. https:\/\/nmap.org\/"},{"key":"1_CR19","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"177","DOI":"10.1007\/978-3-319-31271-2_11","volume-title":"Smart Card Research and Advanced Applications","author":"L Goubet","year":"2016","unstructured":"Goubet, L., Heydemann, K., Encrenaz, E., De Keulenaer, R.: Efficient design and evaluation of countermeasures against fault attacks using formal verification. In: Homma, N., Medwed, M. (eds.) CARDIS 2015. LNCS, vol. 9514, pp. 177\u2013192. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-31271-2_11"},{"issue":"7","key":"1_CR20","doi-asserted-by":"crossref","first-page":"1645","DOI":"10.1016\/j.future.2013.01.010","volume":"29","author":"J Gubbi","year":"2013","unstructured":"Gubbi, J., Buyya, R., Marusic, S., Palaniswami, M.: Internet of things (IoT): a vision, architectural elements, and future directions. Future Gener. Comput. Syst. 29(7), 1645\u20131660 (2013). https:\/\/doi.org\/10.1016\/j.future.2013.01.010","journal-title":"Future Gener. Comput. Syst."},{"issue":"5","key":"1_CR21","doi-asserted-by":"crossref","first-page":"91","DOI":"10.1145\/1506409.1506429","volume":"52","author":"JA Halderman","year":"2009","unstructured":"Halderman, J.A., Schoen, S.D., Heninger, N., Clarkson, W., Paul, W., Calandrino, J.A., Feldman, A.J., Appelbaum, J., Felten, E.W.: Lest we remember: cold-boot attacks on encryption keys. Commun. ACM 52(5), 91\u201398 (2009). http:\/\/doi.acm.org\/10.1145\/1506409.1506429","journal-title":"Commun. ACM"},{"key":"1_CR22","volume-title":"Embedded Linux: Hardware, Software, and Interfacing","author":"C Hollabaugh","year":"2002","unstructured":"Hollabaugh, C.: Embedded Linux: Hardware, Software, and Interfacing. Addison-Wesley, Boston (2002)"},{"key":"1_CR23","unstructured":"Krebs, B.: Krebsonsecurity Hit with Record DDoS. https:\/\/krebsonsecurity.com\/2016\/09\/krebsonsecurity-hit-with-record-ddos\/"},{"key":"1_CR24","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/978-3-319-16763-3_1","volume-title":"Smart Card Research and Advanced Applications","author":"J-L Lanet","year":"2015","unstructured":"Lanet, J.-L., Bouffard, G., Lamrani, R., Chakra, R., Mestiri, A., Monsif, M., Fandi, A.: Memory forensics of a java card dump. In: Joye, M., Moradi, A. (eds.) CARDIS 2014. LNCS, vol. 8968, pp. 3\u201317. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-16763-3_1"},{"key":"1_CR25","doi-asserted-by":"crossref","first-page":"1899","DOI":"10.1109\/JIOT.2017.2707465","volume":"4","author":"Z Ling","year":"2017","unstructured":"Ling, Z., Luo, J., Xu, Y., Gao, C., Wu, K., Fu, X.: Security vulnerabilities of internet of things: a case study of the smart plug system. IEEE Internet Things J. 4, 1899\u20131909 (2017)","journal-title":"IEEE Internet Things J."},{"key":"1_CR26","series-title":"Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","doi-asserted-by":"publisher","first-page":"722","DOI":"10.1007\/978-3-319-59608-2_40","volume-title":"Security and Privacy in Communication Networks","author":"M Liu","year":"2017","unstructured":"Liu, M., Zhang, Y., Li, J., Shu, J., Gu, D.: Security analysis of vendor customized code in firmware of embedded device. In: Deng, R., Weng, J., Ren, K., Yegneswaran, V. (eds.) SecureComm 2016. LNICST, vol. 198, pp. 722\u2013739. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-59608-2_40"},{"key":"1_CR27","unstructured":"Lund, D., MacGillivray, C., Turner, V., Morales, M.: Worldwide and regional internet of things (IoT) 2014\u20132020 forecast: a virtuous circle of proven value and demand. International Data Corporation (IDC), Technical report (2014)"},{"key":"1_CR28","doi-asserted-by":"crossref","unstructured":"Mahmoud, R., Yousuf, T., Aloul, F.A., Zualkernan, I.A.: Internet of Things (IoT) security: current status, challenges and prospective measures. In: 10th International Conference for Internet Technology and Secured Transactions, ICITST 2015, London, United Kingdom, 14\u201316 December 2015, pp. 336\u2013341. IEEE (2015). https:\/\/doi.org\/10.1109\/ICITST.2015.7412116","DOI":"10.1109\/ICITST.2015.7412116"},{"key":"1_CR29","unstructured":"Nest Labs: Nest Learning Smart Thermostat. https:\/\/nest.com\/thermostat\/meet-nest-thermostat\/"},{"key":"1_CR30","doi-asserted-by":"crossref","unstructured":"Obermaier, J., Hutle, M.: Analyzing the security and privacy of cloud-based video surveillance systems. In: Proceedings of the 2nd ACM International Workshop on IoT Privacy, Trust, and Security, pp. 22\u201328. ACM (2016)","DOI":"10.1145\/2899007.2899008"},{"key":"1_CR31","doi-asserted-by":"crossref","unstructured":"Patton, M.W., Gross, E., Chinn, R., Forbis, S., Walker, L., Chen, H.: Uninvited connections: a study of vulnerable devices on the Internet of Things (IoT). In: IEEE Joint Intelligence and Security Informatics Conference, JISIC 2014, The Hague, The Netherlands, 24\u201326 September 2014, pp. 232\u2013235. IEEE (2014). https:\/\/doi.org\/10.1109\/JISIC.2014.43","DOI":"10.1109\/JISIC.2014.43"},{"key":"1_CR32","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"280","DOI":"10.1007\/978-3-642-21040-2_20","volume-title":"Information Security Theory and Practice. Security and Privacy of Mobile Devices in Wireless Communication","author":"M Pedro San","year":"2011","unstructured":"San Pedro, M., Soos, M., Guilley, S.: FIRE: fault injection for reverse engineering. In: Ardagna, C.A., Zhou, J. (eds.) WISTP 2011. LNCS, vol. 6633, pp. 280\u2013293. Springer, Heidelberg (2011). https:\/\/doi.org\/10.1007\/978-3-642-21040-2_20"},{"key":"1_CR33","unstructured":"Philips: Philips In.Sight Wireless HD Baby Monitor. http:\/\/www.philips.co.uk\/c-p\/B120N_10\/in.sight-wireless-hd-baby-monitor\/overview"},{"issue":"1","key":"1_CR34","doi-asserted-by":"crossref","first-page":"36","DOI":"10.1109\/MDT.2010.9","volume":"27","author":"K Rosenfeld","year":"2010","unstructured":"Rosenfeld, K., Karri, R.: Attacks and defenses for JTAG. IEEE Design Test Comput. 27(1), 36\u201347 (2010). https:\/\/doi.org\/10.1109\/MDT.2010.9","journal-title":"IEEE Design Test Comput."},{"key":"1_CR35","unstructured":"Shodan: Shodan is the world\u2019s first search engine for internet-connected devices. https:\/\/www.shodan.io\/"},{"key":"1_CR36","doi-asserted-by":"crossref","first-page":"146","DOI":"10.1016\/j.comnet.2014.11.008","volume":"76","author":"S Sicari","year":"2015","unstructured":"Sicari, S., Rizzardi, A., Grieco, L.A., Coen-Porisini, A.: Security, privacy and trust in internet of things: the road ahead. Comput. Netw. 76, 146\u2013164 (2015). https:\/\/doi.org\/10.1016\/j.comnet.2014.11.008","journal-title":"Comput. Netw."},{"key":"1_CR37","doi-asserted-by":"crossref","unstructured":"Tellez, M., El-Tawab, S., Heydari, H.M.: Improving the security of wireless sensor networks in an IoT environmental monitoring system. In: Systems and Information Engineering Design Symposium (SIEDS), pp. 72\u201377. IEEE (2016)","DOI":"10.1109\/SIEDS.2016.7489330"},{"key":"1_CR38","unstructured":"Vlasenko, D.: BusyBox: The Swiss Army Knife of Embedded Linux. https:\/\/busybox.net\/"},{"key":"1_CR39","unstructured":"Yu, T., Sekar, V., Seshan, S., Agarwal, Y., Xu, C.: Handling a trillion (unfixable) flaws on a billion devices: Rethinking network security for the Internet-of-Things. In: de Oliveira, J., Smith, J., Argyraki, K.J., Levis, P. (eds.) Proceedings of the 14th ACM Workshop on Hot Topics in Networks, Philadelphia, PA, USA, 16\u201317 November 2015, pp. 5:1\u20135:7. ACM (2015). http:\/\/doi.acm.org\/10.1145\/2834050.2834095"},{"key":"1_CR40","doi-asserted-by":"crossref","unstructured":"Zhang, Z., Cho, M.C.Y., Wang, C., Hsu, C., Chen, C.K., Shieh, S.: IoT security: ongoing challenges and research opportunities. In: 7th IEEE International Conference on Service-Oriented Computing and Applications, SOCA 2014, Matsue, Japan, 17\u201319 November 2014, pp. 230\u2013234. IEEE Computer Society (2014). https:\/\/doi.org\/10.1109\/SOCA.2014.58","DOI":"10.1109\/SOCA.2014.58"}],"container-title":["Lecture Notes in Computer Science","Smart Card Research and Advanced Applications"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-75208-2_1","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,8,13]],"date-time":"2022-08-13T05:14:58Z","timestamp":1660367698000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-75208-2_1"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"ISBN":["9783319752075","9783319752082"],"references-count":40,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-75208-2_1","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018]]}}}