{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,2]],"date-time":"2026-01-02T05:48:09Z","timestamp":1767332889179,"version":"3.48.0"},"reference-count":32,"publisher":"IEEE","license":[{"start":{"date-parts":[[2025,10,6]],"date-time":"2025-10-06T00:00:00Z","timestamp":1759708800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,10,6]],"date-time":"2025-10-06T00:00:00Z","timestamp":1759708800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025,10,6]]},"DOI":"10.1109\/milcom64451.2025.11309897","type":"proceedings-article","created":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T18:35:33Z","timestamp":1767292533000},"page":"1-6","source":"Crossref","is-referenced-by-count":0,"title":["Supply Chain Exploitation of Secure ROS 2 Systems: A Proof-of-Concept on Autonomous Platform Compromise via Keystore Exfiltration"],"prefix":"10.1109","author":[{"given":"Tahmid Hasan","family":"Sakib","sequence":"first","affiliation":[{"name":"Tennessee Technological University,Department of Electrical and Computer Engineering,Cookeville,TN,USA"}]},{"given":"Yago","family":"Romano Martinez","sequence":"additional","affiliation":[{"name":"Tennessee Technological University,Department of Computer Science,Cookeville,TN,USA"}]},{"given":"Carter","family":"Brady","sequence":"additional","affiliation":[{"name":"Tennessee Technological University,Department of Electrical and Computer Engineering,Cookeville,TN,USA"}]},{"given":"Syed Rafay","family":"Hasan","sequence":"additional","affiliation":[{"name":"Tennessee Technological University,Department of Electrical and Computer Engineering,Cookeville,TN,USA"}]},{"given":"Terry N.","family":"Guo","sequence":"additional","affiliation":[{"name":"Tennessee Technological University,Center for Manufacturing Research,Cookeville,TN,USA"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/ISORC.2008.25"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2017.2703172"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/TITS.2014.2342271"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/MDAT.2017.2709310"},{"article-title":"Comprehensive experimental analyses of automotive attack surfaces","volume-title":"20th USENIX security symposium (USENIX Security 11)","author":"Checkoway","key":"ref5"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2025.3578891"},{"issue":"3.2","key":"ref7","first-page":"5","article-title":"Ros: an open-source robot operating system","volume-title":"ICRA workshop on open source software","volume":"3","author":"Quigley"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1126\/scirobotics.abm6074"},{"key":"ref9","article-title":"Ros 2 dds-security integration","volume-title":"Design document, ROS2 Design","author":"Fazzari","year":"2019"},{"article-title":"ros2\/sros2: tools to generate and distribute keys for sros2","volume-title":"gitHub repository","year":"2025","key":"ref10"},{"key":"ref11","first-page":"1","article-title":"Carla: An open urban driving simulator","volume-title":"Conference on robot learning","author":"Dosovitskiy"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.3390\/robotics9010019"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-54927-9_14"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1016\/j.robot.2017.09.017"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3548606.3560681"},{"issue":"#282","key":"ref16","article-title":"\"Chain of trust issues with a single CA certificate","volume-title":"gitHub","volume":"2022","year":"2022"},{"article-title":"Security and performance considerations in ros 2: A balancing act","year":"2018","author":"Kim","key":"ref17"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1007\/s41315-024-00393-4"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.3390\/electronics13091762"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.3390\/app15137493"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1016\/j.jcss.2014.02.005"},{"year":"2019","key":"ref22","article-title":"Security issue on ros build farm"},{"article-title":"ros_buildfarm: Ros build farm based on docker","volume-title":"gitHub repository","year":"2025","key":"ref23"},{"year":"2020","key":"ref24","article-title":"Advanced persistent threat compromise of government agencies, critical infrastructure, and private sector organizations"},{"year":"2024","key":"ref25","article-title":"Cve-2024-3094: Malicious code in upstream xz utils tarballs (impacting liblzma build process)"},{"key":"ref26","article-title":"Malicious backdoor spotted in linux compression library xz","volume-title":"the Register \u2014 Security section","author":"Claburn","year":"2024"},{"article-title":"Malware distribution and domain abuse","volume-title":"thePython Package Index Blog","year":"2024","key":"ref27"},{"key":"ref28","article-title":"10 malicious pypi packages found stealing developer\u2019s credentials","volume-title":"bleepingComputer","author":"Toulas","year":"2022"},{"year":"2025","key":"ref29","article-title":"Access control \u2014 rti security plugins user\u2019s manual"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772720"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/1879141.1879148"},{"article-title":"QCar2: Sensor-rich autonomous vehicle for self-driving applications","volume-title":"Product page on Quanser website","year":"2025","key":"ref32"}],"event":{"name":"MILCOM 2025 - 2025 IEEE Military Communications Conference (MILCOM)","start":{"date-parts":[[2025,10,6]]},"location":"Los Angeles, CA, USA","end":{"date-parts":[[2025,10,10]]}},"container-title":["MILCOM 2025 - 2025 IEEE Military Communications Conference (MILCOM)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11309822\/11309347\/11309897.pdf?arnumber=11309897","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,1,2]],"date-time":"2026-01-02T05:46:02Z","timestamp":1767332762000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11309897\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,10,6]]},"references-count":32,"URL":"https:\/\/doi.org\/10.1109\/milcom64451.2025.11309897","relation":{},"subject":[],"published":{"date-parts":[[2025,10,6]]}}}