{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,29]],"date-time":"2026-03-29T00:48:59Z","timestamp":1774745339104,"version":"3.50.1"},"reference-count":40,"publisher":"Elsevier BV","license":[{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/tdm\/userlicense\/1.0\/"},{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/legal\/tdmrep-license"},{"start":{"date-parts":[[2025,1,20]],"date-time":"2025-01-20T00:00:00Z","timestamp":1737331200000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100001871","name":"Foundation for Science and Technology","doi-asserted-by":"publisher","award":["UID\/000408\/2025"],"award-info":[{"award-number":["UID\/000408\/2025"]}],"id":[{"id":"10.13039\/501100001871","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100000780","name":"European Commission","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100000780","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100010663","name":"European Research Council","doi-asserted-by":"publisher","award":["871259"],"award-info":[{"award-number":["871259"]}],"id":[{"id":"10.13039\/100010663","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["elsevier.com","sciencedirect.com"],"crossmark-restriction":true},"short-container-title":["Internet of Things"],"published-print":{"date-parts":[[2025,3]]},"DOI":"10.1016\/j.iot.2025.101513","type":"journal-article","created":{"date-parts":[[2025,1,31]],"date-time":"2025-01-31T12:24:46Z","timestamp":1738326286000},"page":"101513","update-policy":"https:\/\/doi.org\/10.1016\/elsevier_cm_policy","source":"Crossref","is-referenced-by-count":3,"special_numbering":"C","title":["LWSEE: Lightweight Secured Software-Based Execution Environment"],"prefix":"10.1016","volume":"30","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-5351-5580","authenticated-orcid":false,"given":"Jos\u00e9","family":"Cec\u00edlio","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6311-9672","authenticated-orcid":false,"given":"Alan Oliveira","family":"de S\u00e1","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1356-2745","authenticated-orcid":false,"given":"Georg","family":"J\u00e4ger","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8792-959X","authenticated-orcid":false,"given":"Andr\u00e9","family":"Souto","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5522-5739","authenticated-orcid":false,"given":"Ant\u00f3nio","family":"Casimiro","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"78","reference":[{"key":"10.1016\/j.iot.2025.101513_b1","series-title":"Annual Computer Security Applications Conference, ACSAC \u201920, Association for Computing Machinery, New York, NY, USA","first-page":"717","article-title":"Verify & revive: Secure detection and recovery of compromised low-end embedded devices","author":"Ammar","year":"2020"},{"issue":"5","key":"10.1016\/j.iot.2025.101513_b2","doi-asserted-by":"crossref","first-page":"885","DOI":"10.1109\/TDSC.2019.2928541","article-title":"S\u03bcv\u2014the security microvisor: A formally-verified software-based security architecture for the internet of things","volume":"16","author":"Ammar","year":"2019","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"10.1016\/j.iot.2025.101513_b3","unstructured":"M. Grisafi, M. Ammar, M. Roveri, B. Crispo, PISTIS: Trusted computing architecture for low-end embedded systems, in: 31st USENIX Security Symposium (USENIX Security 22), USENIX Association, Boston, MA, 2022, pp. 3843\u20133860, URL https:\/\/www.usenix.org\/conference\/usenixsecurity22\/presentation\/grisafi."},{"key":"10.1016\/j.iot.2025.101513_b4","first-page":"1","article-title":"Ripte: Runtime integrity protection based on trusted execution for iot device","volume":"2020","author":"Qin","year":"2020","journal-title":"Secur. Commun. Netw."},{"key":"10.1016\/j.iot.2025.101513_b5","series-title":"Cryptology ePrint Archive, Paper 2016\/086","article-title":"Intel sgx explained","author":"Costan","year":"2016"},{"key":"10.1016\/j.iot.2025.101513_b6","series-title":"2016 IEEE 2nd International Conference on Collaboration and Internet Computing","first-page":"445","article-title":"Trustzone explained: Architectural features and use cases","author":"Ngabonziza","year":"2016"},{"key":"10.1016\/j.iot.2025.101513_b7","series-title":"Tcg specification architecture overview","author":"Group","year":"2007"},{"key":"10.1016\/j.iot.2025.101513_b8","doi-asserted-by":"crossref","first-page":"121874","DOI":"10.1109\/ACCESS.2020.3006703","article-title":"Softee: Software-based trusted execution environment for user applications","volume":"8","author":"Lee","year":"2020","journal-title":"IEEE Access"},{"key":"10.1016\/j.iot.2025.101513_b9","first-page":"1","article-title":"Virtual ghost: Protecting applications from hostile operating systems","volume":"8","author":"Criswell","year":"2014","journal-title":"SIGARCH Comput. Arch. News"},{"key":"10.1016\/j.iot.2025.101513_b10","article-title":"Secure firmware over-the-air updates for iot: Survey, challenges, and discussions","volume":"18","author":"El Jaouhari","year":"2022","journal-title":"Int. Things"},{"key":"10.1016\/j.iot.2025.101513_b11","series-title":"Lightweight cryptography","author":"N. I. of Standards","year":"2022"},{"key":"10.1016\/j.iot.2025.101513_b12","series-title":"22nd USENIX Security Symposium (USENIX Security 13), USENIX Association, Washington, D.C","first-page":"479","article-title":"Sancus: Low-cost trustworthy extensible networked devices with a zero-software trusted computing base","author":"Noorman","year":"2013"},{"key":"10.1016\/j.iot.2025.101513_b13","series-title":"28th USENIX Security Symposium (USENIX Security 19), USENIX Association, Santa Clara, CA","first-page":"1429","article-title":"VRASED: A verified Hardware\/Software Co-Design for remote attestation","author":"Nunes","year":"2019"},{"key":"10.1016\/j.iot.2025.101513_b14","unstructured":"K. Eldefrawy, A. Francillon, D. Perito, G. Tsudik, Smart: Secure and minimal architecture for (establishing a dynamic) root of trust, in: ISOC (Ed.), NDSS 2012 19th Annual Network and Distributed System Security Symposium, February 5\u20138, San Diego, USA, San Diego, 2012."},{"key":"10.1016\/j.iot.2025.101513_b15","series-title":"Proceedings of the Ninth European Conference on Computer Systems, EuroSys \u201914, Association for Computing Machinery, New York, NY, USA","article-title":"Trustlite: A security architecture for tiny embedded devices","author":"Koeberl","year":"2014"},{"key":"10.1016\/j.iot.2025.101513_b16","series-title":"2015 52nd ACM\/EDAC\/IEEE Design Automation Conference","first-page":"1","article-title":"Tytan: Tiny trust anchor for tiny devices","author":"Brasser","year":"2015"},{"key":"10.1016\/j.iot.2025.101513_b17","doi-asserted-by":"crossref","unstructured":"S. Jakkamsetti, Y. Kim, G. Tsudik, Caveat (iot) emptor: Towards transparency of iot device presence, in: Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, 2023, pp. 1347\u20131361.","DOI":"10.1145\/3576915.3623089"},{"key":"10.1016\/j.iot.2025.101513_b18","series-title":"2020 ACM\/IEEE 11th International Conference on Cyber-Physical Systems","first-page":"247","article-title":"Simple: A remote attestation approach for resource-constrained iot devices","author":"Ammar","year":"2020"},{"key":"10.1016\/j.iot.2025.101513_b19","series-title":"MILCOM 2018\u20132018 IEEE Military Communications Conference (MILCOM)","first-page":"1","article-title":"Runtime state verification on resource-constrained platforms","author":"Clemens","year":"2018"},{"issue":"5","key":"10.1016\/j.iot.2025.101513_b20","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/1095809.1095812","article-title":"Pioneer: Verifying code integrity and enforcing untampered code execution on legacy systems","volume":"39","author":"Seshadri","year":"2005","journal-title":"SIGOPS Oper. Syst. Rev."},{"issue":"1\u20132","key":"10.1016\/j.iot.2025.101513_b21","doi-asserted-by":"crossref","first-page":"13","DOI":"10.1016\/j.scico.2008.09.005","article-title":"Remote attestation on legacy operating systems with trusted platform modules","volume":"74","author":"Schellekens","year":"2008","journal-title":"Sci. Comput. Program."},{"key":"10.1016\/j.iot.2025.101513_b22","series-title":"Proceedings of the 19th ACM Conference on Embedded Networked Sensor Systems, ACM","article-title":"RESERVE: Remote attestation of intermittent IoT devices","author":"Rabbani","year":"2021"},{"key":"10.1016\/j.iot.2025.101513_b23","unstructured":"J. Wang, Y. Wang, A. Li, Y. Xiao, R. Zhang, W. Lou, Y.T. Hou, N. Zhang, [ARI]: Attestation of real-time mission execution integrity, in: 32nd USENIX Security Symposium (USENIX Security 23), 2023, pp. 2761\u20132778."},{"key":"10.1016\/j.iot.2025.101513_b24","series-title":"IEEE 29th Real-Time and Embedded Technology and Applications Symposium","first-page":"133","article-title":"Isc-flat: On the conflict between control flow attestation and real-time operations","volume":"vol. 2023","author":"Neto","year":"2023"},{"key":"10.1016\/j.iot.2025.101513_b25","series-title":"Proceedings of the 37th Annual Computer Security Applications Conference","first-page":"311","article-title":"Recfa: Resilient control-flow attestation","author":"Zhang","year":"2021"},{"key":"10.1016\/j.iot.2025.101513_b26","unstructured":"A. Caulfield, N. Rattanavipanon, I.D.O. Nunes, [ACFA]: Secure runtime auditing & guaranteed device healing via active control flow attestation, in: 32nd USENIX Security Symposium (USENIX Security 23), 2023, pp. 5827\u20135844."},{"key":"10.1016\/j.iot.2025.101513_b27","doi-asserted-by":"crossref","first-page":"77543","DOI":"10.1109\/ACCESS.2023.3288696","article-title":"A survey on hardware security: Current trends and challenges","volume":"11","author":"Akter","year":"2023","journal-title":"IEEE Access","ISSN":"https:\/\/id.crossref.org\/issn\/2169-3536","issn-type":"print"},{"issue":"1","key":"10.1016\/j.iot.2025.101513_b28","doi-asserted-by":"crossref","first-page":"17","DOI":"10.1007\/s43926-023-00045-2","article-title":"A survey on iot & embedded device firmware security: architecture, extraction techniques, and vulnerability analysis frameworks","volume":"3","author":"Ul Haq","year":"2023","journal-title":"Discov. Internet Things"},{"key":"10.1016\/j.iot.2025.101513_b29","article-title":"A comprehensive survey on iot attacks: Taxonomy, detection mechanisms and challenges","author":"Sasi","year":"2023","journal-title":"J. Inf. Intell."},{"key":"10.1016\/j.iot.2025.101513_b30","series-title":"2023 IEEE 41st International Conference on Computer Design","first-page":"1","article-title":"Leveraging firmware reverse engineering for stealthy sensor attacks via binary modification","author":"Kulkarni","year":"2023"},{"key":"10.1016\/j.iot.2025.101513_b31","first-page":"544","article-title":"Confirm: Detecting firmware modifications in embedded systems using hardware performance counters","volume":"2015","author":"Wang","year":"2015"},{"key":"10.1016\/j.iot.2025.101513_b32","doi-asserted-by":"crossref","first-page":"77952","DOI":"10.1109\/ACCESS.2023.3298833","article-title":"Firmware integrity protection: A survey","volume":"11","author":"Marchand","year":"2023","journal-title":"IEEE Access"},{"key":"10.1016\/j.iot.2025.101513_b33","series-title":"2023 IEEE 8th European Symposium on Security and Privacy (EuroS & P)","first-page":"1047","article-title":"Aot - attack on things: A security analysis of iot firmware updates","author":"Ibrahim","year":"2023"},{"key":"10.1016\/j.iot.2025.101513_b34","series-title":"2024 12th International Symposium on Digital Forensics and Security","first-page":"1","article-title":"Forensic analysis of an iot arp spoofing attack","author":"Friedl","year":"2024"},{"key":"10.1016\/j.iot.2025.101513_b35","series-title":"2024 IEEE International Conference on Pervasive Computing and Communications (PerCom)","first-page":"114","article-title":"Is your kettle smarter than a hacker? A scalable tool for assessing replay attack vulnerabilities on consumer iot devices","author":"Lazzaro","year":"2024"},{"issue":"2","key":"10.1016\/j.iot.2025.101513_b36","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3604906","article-title":"A survey on thwarting memory corruption in risc-v","volume":"56","author":"Brohet","year":"2023","journal-title":"ACM Comput. Surv."},{"key":"10.1016\/j.iot.2025.101513_b37","series-title":"2019 49th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks","first-page":"568","article-title":"Sbft","author":"Gueta","year":"2019"},{"key":"10.1016\/j.iot.2025.101513_b38","series-title":"2014 44th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks","first-page":"355","article-title":"State machine replication for the masses with bft-smart","author":"Bessani","year":"2014"},{"key":"10.1016\/j.iot.2025.101513_b39","series-title":"Computer Security\u2013ESORICS 2021: 26th European Symposium on Research in Computer Security, Darmstadt, Germany, October (2021) 4\u20138, Proceedings, Part II 26","first-page":"257","article-title":"Genetic algorithm assisted state-recovery attack on round-reduced xoodyak","author":"Zhang","year":"2021"},{"issue":"10","key":"10.1016\/j.iot.2025.101513_b40","doi-asserted-by":"crossref","first-page":"8279","DOI":"10.1109\/JIOT.2020.3044526","article-title":"Comparative performance analysis of lightweight cryptography algorithms for iot sensor nodes","volume":"8","author":"Fotovvat","year":"2021","journal-title":"IEEE Internet Things J."}],"container-title":["Internet of Things"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S2542660525000265?httpAccept=text\/xml","content-type":"text\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S2542660525000265?httpAccept=text\/plain","content-type":"text\/plain","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2025,10,29]],"date-time":"2025-10-29T22:56:58Z","timestamp":1761778618000},"score":1,"resource":{"primary":{"URL":"https:\/\/linkinghub.elsevier.com\/retrieve\/pii\/S2542660525000265"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,3]]},"references-count":40,"alternative-id":["S2542660525000265"],"URL":"https:\/\/doi.org\/10.1016\/j.iot.2025.101513","relation":{},"ISSN":["2542-6605"],"issn-type":[{"value":"2542-6605","type":"print"}],"subject":[],"published":{"date-parts":[[2025,3]]},"assertion":[{"value":"Elsevier","name":"publisher","label":"This article is maintained by"},{"value":"LWSEE: Lightweight Secured Software-Based Execution Environment","name":"articletitle","label":"Article Title"},{"value":"Internet of Things","name":"journaltitle","label":"Journal Title"},{"value":"https:\/\/doi.org\/10.1016\/j.iot.2025.101513","name":"articlelink","label":"CrossRef DOI link to publisher maintained version"},{"value":"article","name":"content_type","label":"Content Type"},{"value":"\u00a9 2025 The Author(s). Published by Elsevier B.V.","name":"copyright","label":"Copyright"}],"article-number":"101513"}}