{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T23:00:08Z","timestamp":1740178808511,"version":"3.37.3"},"reference-count":19,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2017,3,1]],"date-time":"2017-03-01T00:00:00Z","timestamp":1488326400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by\/4.0"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J Hardw Syst Secur"],"published-print":{"date-parts":[[2017,3]]},"DOI":"10.1007\/s41635-017-0002-5","type":"journal-article","created":{"date-parts":[[2017,4,7]],"date-time":"2017-04-07T10:33:48Z","timestamp":1491561228000},"page":"38-55","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["Security Assurance Guidance for Third-Party IP"],"prefix":"10.1007","volume":"1","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-8047-2814","authenticated-orcid":false,"given":"Brent","family":"Sherman","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mike","family":"Borza","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Brian","family":"Rosenberg","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Charles","family":"Qi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,4,7]]},"reference":[{"key":"2_CR1","unstructured":"Lenovo Security Advisory: LEN-2015-010, Retrieved from \n                        https:\/\/support.lenovo.com\/us\/en\/product_security\/superfish"},{"key":"2_CR2","unstructured":"BIOS vulnerability targets gigabyte motherboards, hot for security, Retrieved from \n                        https:\/\/www.hotforsecurity.com\/blog\/bios-vulnerability-targets-gigabyte-motherboards-14689.html"},{"key":"2_CR3","unstructured":"Dell knowledge base, eDellroot certificate, Retrieved from \n                        http:\/\/www.dell.com\/support\/article\/us\/en\/19\/SLN300321"},{"key":"2_CR4","unstructured":"Kemp D, Czub C, Davidov M (2016) Out-of-box exploitation: a security analysis of OEM updaters, duo security. \n                        https:\/\/duo.com\/assets\/pdf\/out-of-box-exploitation_oem-updaters.pdf"},{"key":"2_CR5","doi-asserted-by":"crossref","unstructured":"Meland PH et al. (2013) The use and usefulness of threats in goal-oriented modelling. availability, reliability and security (ARES) 2013 eighth international conference, Sept. 201, Regensburg, Germany, pp 428\u2013436","DOI":"10.1109\/ARES.2013.57"},{"key":"2_CR6","unstructured":"Microsoft. 2010. Security development lifecycle: simplified implementation of the microsoft SDL, \n                        http:\/\/www.microsoft.com\/en-us\/download\/details.aspx?id=12379"},{"key":"2_CR7","unstructured":"Bruza PD, Van der Weide ThP (1993) The semantics of data flow diagrams Proceedings of the international conference on management of data, McGraw-Hill Publishing Company, pp 66\u201378"},{"key":"2_CR8","doi-asserted-by":"publisher","first-page":"179","DOI":"10.1109\/HST.2016.7495579","volume-title":"HOST, 2016, 2016 IEEE international symposium on hardware oriented security and trust (HOST)","author":"B Sherman","year":"2016","unstructured":"Sherman B, Wheeler D (2016) Hardware security risk assessment: a case study HOST, 2016, 2016 IEEE international symposium on hardware oriented security and trust (HOST). doi:\n                        http:\/\/dx.doi.org\/10.1109\/HST.2016.7495579\n                        \n                    , pp 179\u2013184"},{"key":"2_CR9","unstructured":"Texas Tech University, threat_and_risk_modeling, Retrieved from \n                        http:\/\/discl.cs.ttu.edu\/cybersecurity\/doku.php?id=threat_and_risk_modeling"},{"key":"2_CR10","unstructured":"The Open Web Application Security Project (OWASP), application threat modeling, Retrieved from \n                        https:\/\/www.owasp.org\/index.php\/Application_Threat_Modeling"},{"key":"2_CR11","unstructured":"Alfredo O RC4 pseudo-random stream generator, OpenCores.org, Retrieved from \n                        http:\/\/opencores.org\/project,rc4-prbs"},{"key":"2_CR12","unstructured":"RC4, Wikipedia, The Free Encyclopedia, Retrieved from \n                        https:\/\/en.wikipedia.org\/wiki\/RC4"},{"key":"2_CR13","unstructured":"Hayes R Computer operating properly, OpenCores.org, \n                        http:\/\/opencores.org\/project,cop"},{"key":"2_CR14","unstructured":"Herveille R I2C controller core, OpenCores.org, \n                        http:\/\/opencores.org\/project,i2c"},{"key":"2_CR15","unstructured":"Fielding S SD\/MMC Controller, OpenCores.org, \n                        http:\/\/opencores.org\/project,spimaster"},{"key":"2_CR16","unstructured":"Herveille R VGA\/LCD Controller, OpenCores.org, \n                        http:\/\/opencores.org\/project,vga_lcd"},{"key":"2_CR17","volume-title":"Threat modeling: designing for security","author":"A Shostack","year":"2014","unstructured":"Shostack A (2014) Threat modeling: designing for security. Wiley, Indianapolis, Indiana"},{"issue":"8","key":"2_CR18","doi-asserted-by":"publisher","first-page":"54","DOI":"10.1109\/MC.2016.226","volume":"49","author":"K Xiao","year":"2016","unstructured":"Xiao K, Nahiyan A, Tehranipoor M (2016) Security rule checking in IC design. Computer 49(8):54\u201361. doi:\n                        10.1109\/MC.2016.226\n                        \n                     \n                        10.1109\/MC.2016.226","journal-title":"Computer"},{"key":"2_CR19","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2897937.2897992","volume-title":"2016 53nd ACM\/EDAC\/IEEE design automation conference (DAC), Austin, TX","author":"A Nahiyan","year":"2016","unstructured":"Nahiyan A, Xiao K, Yang K, Jin Y, Forte D, Tehranipoor M (2016) AVFSM: a framework for identifying and mitigating vulnerabilities in FSMs 2016 53nd ACM\/EDAC\/IEEE design automation conference (DAC), Austin, TX, pp 1\u20136. doi:\n                        10.1145\/2897937.2897992"}],"container-title":["Journal of Hardware and Systems Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s41635-017-0002-5\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s41635-017-0002-5.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s41635-017-0002-5.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,9,20]],"date-time":"2017-09-20T10:15:18Z","timestamp":1505902518000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s41635-017-0002-5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,3]]},"references-count":19,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2017,3]]}},"alternative-id":["2"],"URL":"https:\/\/doi.org\/10.1007\/s41635-017-0002-5","relation":{},"ISSN":["2509-3428","2509-3436"],"issn-type":[{"type":"print","value":"2509-3428"},{"type":"electronic","value":"2509-3436"}],"subject":[],"published":{"date-parts":[[2017,3]]}}}