{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,9]],"date-time":"2026-04-09T14:29:31Z","timestamp":1775744971086,"version":"3.50.1"},"reference-count":50,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"17","license":[{"start":{"date-parts":[[2025,9,1]],"date-time":"2025-09-01T00:00:00Z","timestamp":1756684800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2025,9,1]],"date-time":"2025-09-01T00:00:00Z","timestamp":1756684800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,9,1]],"date-time":"2025-09-01T00:00:00Z","timestamp":1756684800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100020963","name":"2024 Frontier Technology Research and Development Program of Jiangsu","doi-asserted-by":"publisher","award":["BF2024071"],"award-info":[{"award-number":["BF2024071"]}],"id":[{"id":"10.13039\/501100020963","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100005145","name":"Postgraduate Research and Practice Innovation Program of Jiangsu Province","doi-asserted-by":"publisher","award":["KYCX20_0829"],"award-info":[{"award-number":["KYCX20_0829"]}],"id":[{"id":"10.13039\/501100005145","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Internet Things J."],"published-print":{"date-parts":[[2025,9,1]]},"DOI":"10.1109\/jiot.2025.3574179","type":"journal-article","created":{"date-parts":[[2025,5,27]],"date-time":"2025-05-27T13:24:55Z","timestamp":1748352295000},"page":"34753-34767","source":"Crossref","is-referenced-by-count":1,"title":["Boreas: Semantic-Aware Framework for Buffer Overflow Detection to Reduce Carbon Footprint in IoT Devices"],"prefix":"10.1109","volume":"12","author":[{"ORCID":"https:\/\/orcid.org\/0009-0008-1311-4994","authenticated-orcid":false,"given":"Xiao","family":"Chen","sequence":"first","affiliation":[{"name":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Letian","family":"Sha","sequence":"additional","affiliation":[{"name":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Qingguan","family":"Gao","sequence":"additional","affiliation":[{"name":"Sales Department, Nanjing Cyberpeace Information Technology Company Ltd., Nanjing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1815-2793","authenticated-orcid":false,"given":"Fu","family":"Xiao","sequence":"additional","affiliation":[{"name":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jiaye","family":"Pan","sequence":"additional","affiliation":[{"name":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","volume-title":"2024 lebanon electronic device attacks."},{"key":"ref2","volume-title":"Ongoing Mirai Botnet Campaign Targeting Industrial Routers","year":"2025"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-50051-0_12"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2022.3144405"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2024.3506976"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2024.3477563"},{"key":"ref7","volume-title":"Two bytes is plenty: FortiGate RCE with CVE-2024-21762.","author":"Pindur","year":"2024"},{"key":"ref8","volume-title":"Top 50 vendors by total number of \u2019distinct\u2019 vulnerabilities","year":"2025"},{"key":"ref9","volume-title":"Common vulnerabilities and exposures","year":"2025"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.5555\/3241189.3241275"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2018.00052"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00036"},{"key":"ref13","first-page":"303","article-title":"Sharing more and checking less: Leveraging common input keywords to detect bugs in embedded systems","volume-title":"Proc. 30th USENIX Secur. Symp.","author":"Chen"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/3597926.3598062"},{"key":"ref15","first-page":"7123","article-title":"Operation mango: Scalable discovery of taint-style vulnerabilities in binary firmware services","volume-title":"Proc. 33rd USENIX Secur. Symp.","author":"Gibbs"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2024.24346"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23159"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00066"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1145\/3338507.3358616"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1145\/3359789.3359826"},{"key":"ref21","first-page":"1099","article-title":"FIRM-AFL: High-throughput greybox fuzzing of IoT firmware via augmented process emulation","volume-title":"Proc. 28th USENIX Secur. Symp.","author":"Zheng"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484543"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/SP54263.2024.00127"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2019.00003"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484587"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/3533767.3534367"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1145\/3564625.3567975"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2022.3231621"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978370"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134018"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3240480"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.102032"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1609\/aaai.v34i01.5466"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2024.3389014"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/DSN48987.2021.00036"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/3604611"},{"key":"ref37","first-page":"1759","article-title":"Code is not natural language: Unlock the power of semantics-oriented graph representation for binary code similarity detection","volume-title":"Proc. 33rd USENIX Secur. Symp.","author":"He"},{"key":"ref38","article-title":"BERT: Pre-training of deep bidirectional transformers for language understanding","author":"Devlin","year":"2018","journal-title":"arXiv:1810.04805"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.48550\/ARXIV.1706.03762"},{"key":"ref40","first-page":"54","article-title":"TreeBERT: A tree-based pre-trained model for programming language","volume-title":"Proc. 37th Conf. Uncertainty Artif. Intell.","author":"Jiang"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE43902.2021.00026"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.48550\/ARXIV.1907.11692"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/D19-1410"},{"key":"ref44","volume-title":"Binwalk.","year":"2025"},{"key":"ref45","volume-title":"IDA pro.","year":"2025"},{"key":"ref46","volume-title":"PyTorch.","year":"2025"},{"key":"ref47","volume-title":"2024 CVE review\u2014The \u2019critical, high, medium\u2019 position shifting in cybersecurity.","year":"2025"},{"key":"ref48","volume-title":"National vulnerability database.","year":"2025"},{"key":"ref49","volume-title":"CVE-2024-42815 (CVSS 9.8): Buffer overflow flaw in TP-link routers opens door to RCE.","author":"Son","year":"2024"},{"key":"ref50","first-page":"4265","article-title":"Improving ML-based binary function similarity detection by assessing and deprioritizing control flow graph features","volume-title":"Proc. 33rd USENIX Secur. Symp.","author":"Wang"}],"container-title":["IEEE Internet of Things Journal"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/6488907\/11134518\/11016048.pdf?arnumber=11016048","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,23]],"date-time":"2025-08-23T04:30:35Z","timestamp":1755923435000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11016048\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,9,1]]},"references-count":50,"journal-issue":{"issue":"17"},"URL":"https:\/\/doi.org\/10.1109\/jiot.2025.3574179","relation":{},"ISSN":["2327-4662","2372-2541"],"issn-type":[{"value":"2327-4662","type":"electronic"},{"value":"2372-2541","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,9,1]]}}}