{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,9]],"date-time":"2026-04-09T14:29:33Z","timestamp":1775744973314,"version":"3.50.1"},"reference-count":34,"publisher":"IEEE","license":[{"start":{"date-parts":[[2024,5,20]],"date-time":"2024-05-20T00:00:00Z","timestamp":1716163200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2024,5,20]],"date-time":"2024-05-20T00:00:00Z","timestamp":1716163200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100002701","name":"Ministry of Education","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100002701","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024,5,20]]},"DOI":"10.1109\/infocom52122.2024.10621138","type":"proceedings-article","created":{"date-parts":[[2024,8,12]],"date-time":"2024-08-12T17:25:41Z","timestamp":1723483541000},"page":"2029-2038","source":"Crossref","is-referenced-by-count":2,"title":["Samba: Detecting SSL\/TLS API Misuses in IoT Binary Applications"],"prefix":"10.1109","author":[{"given":"Kaizheng","family":"Liu","sequence":"first","affiliation":[{"name":"Southeast University,China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ming","family":"Yang","sequence":"additional","affiliation":[{"name":"Southeast University,China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhen","family":"Ling","sequence":"additional","affiliation":[{"name":"Southeast University,China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yuan","family":"Zhang","sequence":"additional","affiliation":[{"name":"Fudan University,China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chongqing","family":"Lei","sequence":"additional","affiliation":[{"name":"Southeast University,China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lan","family":"Luo","sequence":"additional","affiliation":[{"name":"Anhui University of Technology,China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xinwen","family":"Fu","sequence":"additional","affiliation":[{"name":"University of Massachusetts Lowell,Lowell,MA,USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.38"},{"key":"ref2","first-page":"363","article-title":"Apisan: Sanitizing API usages through semantic crosschecking","volume-title":"Proceedings of the 25th USENIX Security Symposium (USENIX Security\u201916)","author":"Yun"},{"key":"ref3","article-title":"This POODLE bites: exploiting the SSL 3.0 fallback","author":"M\u00f6ller","year":"2014"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23205"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2020.110609"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23229"},{"key":"ref7","first-page":"151","article-title":"Cryptorex: Large-scale analysis of cryptographic misuse in iot devices","volume-title":"Proceedings of the 22nd International Symposium on Research in Attacks, Intrusions and Defenses (RAID\u201919)","author":"Zhang"},{"key":"ref8","first-page":"1237","article-title":"P2IM: scalable and hardware-independent firmware testing via automatic peripheral interface modeling","volume-title":"Proceedings of the 29th USENIX Security Symposium (USENIX Security\u201920)","author":"Feng"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23415"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.14722\/bar.2018.23017"},{"key":"ref11","first-page":"19","article-title":"Frankenstein: Advanced wireless fuzzing to exploit new bluetooth escalation targets","volume-title":"Proceedings of the 29th USENIX Security Symposium (USENIX Security\u201920)","author":"Ruge"},{"key":"ref12","article-title":"Open source SSL\/TLS library"},{"key":"ref13","article-title":"The GnuTLS transport layer security library","author":"R\u00fchsen","year":"2021"},{"key":"ref14","doi-asserted-by":"crossref","DOI":"10.17487\/rfc2818","article-title":"HTTP Over TLS","author":"Rescorla","year":"2000"},{"key":"ref15","doi-asserted-by":"crossref","DOI":"10.17487\/rfc3207","article-title":"SMTP Service Extension for Secure SMTP over Transport Layer Security","author":"Hoffman","year":"2002"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-01704-0_27"},{"key":"ref17","article-title":"Prohibiting Secure Sockets Layer (SSL) Version 2.0","author":"Polk","year":"2011"},{"key":"ref18","doi-asserted-by":"crossref","DOI":"10.17487\/RFC8996","article-title":"Deprecating TLS 1.0 and TLS 1.1","author":"Moriarty","year":"2021"},{"key":"ref19","doi-asserted-by":"crossref","DOI":"10.17487\/RFC7568","article-title":"Deprecating Secure Sockets Layer Version 3.0","author":"Barnes","year":"2015"},{"key":"ref20","article-title":"Binwalk: Firmware analysis tool","author":"Craig","year":"2010"},{"key":"ref21","article-title":"IDAPython","author":"Hex-Rays","year":"2015"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.44"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00036"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/3533767.3534366"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.42"},{"key":"ref27","first-page":"41","article-title":"Qemu, a fast and portable dynamic translator","volume-title":"Proceedings of the FREENIX Track: 2005 Annual Technical Conference (ATC\u201905)","author":"Bellard"},{"key":"ref28","article-title":"mitmproxy: A free and open source interactive HTTPS proxy","author":"Cortesi","year":"2010"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833582"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00010"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00090"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243783"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23294"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.17"},{"key":"ref35","first-page":"303","article-title":"Sharing more and checking less: Leveraging common input keywords to detect bugs in embedded systems","volume-title":"Proceeding of the 30th USENIX Security Symposium (USENIX Security\u201921)","author":"Chen"}],"event":{"name":"IEEE INFOCOM 2024 - IEEE Conference on Computer Communications","location":"Vancouver, BC, Canada","start":{"date-parts":[[2024,5,20]]},"end":{"date-parts":[[2024,5,23]]}},"container-title":["IEEE INFOCOM 2024 - IEEE Conference on Computer Communications"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/10621050\/10621073\/10621138.pdf?arnumber=10621138","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,8,13]],"date-time":"2024-08-13T05:23:58Z","timestamp":1723526638000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10621138\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,5,20]]},"references-count":34,"URL":"https:\/\/doi.org\/10.1109\/infocom52122.2024.10621138","relation":{},"subject":[],"published":{"date-parts":[[2024,5,20]]}}}