{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,16]],"date-time":"2026-04-16T23:19:38Z","timestamp":1776381578503,"version":"3.51.2"},"reference-count":86,"publisher":"IEEE","license":[{"start":{"date-parts":[[2019,5,1]],"date-time":"2019-05-01T00:00:00Z","timestamp":1556668800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2019,5,1]],"date-time":"2019-05-01T00:00:00Z","timestamp":1556668800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-009"},{"start":{"date-parts":[[2019,5,1]],"date-time":"2019-05-01T00:00:00Z","timestamp":1556668800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-001"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019,5]]},"DOI":"10.1109\/sp.2019.00041","type":"proceedings-article","created":{"date-parts":[[2019,9,16]],"date-time":"2019-09-16T22:03:02Z","timestamp":1568671382000},"page":"967-984","source":"Crossref","is-referenced-by-count":18,"title":["LBM: A Security Framework for Peripherals within the Linux Kernel"],"prefix":"10.1109","author":[{"given":"Dave Jing","family":"Tian","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Grant","family":"Hernandez","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Joseph I.","family":"Choi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Vanessa","family":"Frost","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Peter C.","family":"Johnson","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kevin R. B.","family":"Butler","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref73","author":"starovoitov","year":"2018","journal-title":"[Patch RFC 0\/4] net add bpfilter"},{"key":"ref72","author":"starovoitov","year":"2018","journal-title":"[PATCH v2 bpf] bpf prevent out-of-bounds speculation"},{"key":"ref71","article-title":"BPF in LLVM and kernel","author":"starovoitov","year":"2015","journal-title":"Linux Plumbers Conference"},{"key":"ref70","author":"staravoitov","year":"2014","journal-title":"[RFC net-next 08\/14] bpf add eBPF verifier"},{"key":"ref76","doi-asserted-by":"publisher","DOI":"10.1145\/2818000.2818040"},{"key":"ref77","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978398"},{"key":"ref74","article-title":"Understanding DMA Malware","author":"stewin","year":"2012","journal-title":"Proceedings of the Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA)"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134050"},{"key":"ref75","year":"2018","journal-title":"The Original USB Condom"},{"key":"ref38","article-title":"Blueprinting: Remote Device Identification based on Bluetooth Fingerprinting Techniques","author":"herfurt","year":"2004","journal-title":"21st Chaos Communication Congress"},{"key":"ref78","article-title":"ATtention spanned: Comprehensive vulnerability analysis of AT commands within the Android ecosystem","author":"tian","year":"2018","journal-title":"27th USENIX Security Symposium (USENIX Security 18)"},{"key":"ref79","article-title":"Making USB Great Again with USBFILTER","author":"tian","year":"2016","journal-title":"25th USENIX Security Symposium"},{"key":"ref33","author":"gregg","year":"2016","journal-title":"Linux Extended BPF (eBPF) Tracing Tools"},{"key":"ref32","article-title":"IntelR Trusted Execution Technology","author":"greene","year":"2012","journal-title":"Technical report Intel Corporation"},{"key":"ref31","article-title":"syzkaller - kernel fuzzer","year":"2018","journal-title":"Found Linux kernel USB bugs"},{"key":"ref30","year":"2018","journal-title":"Facedancer21"},{"key":"ref37","article-title":"Bluetooth Security","author":"herfurt","year":"2005","journal-title":"What the Hack Conference"},{"key":"ref36","author":"herbert","year":"2016","journal-title":"eXpress Data Path (XDP)"},{"key":"ref35","author":"hayakawa","year":"2018","journal-title":"eBPF Implementation for FreeBSD"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1016\/j.jpdc.2007.04.010"},{"key":"ref60","year":"2018","journal-title":"Core Protocol Technical Specifications"},{"key":"ref62","article-title":"BadUSB - On accessories that turn evil","author":"nohl","year":"2014","journal-title":"BlackHat"},{"key":"ref61","author":"newlin","year":"2016","journal-title":"MouseJack Injecting Keystrokes into Wireless Mice"},{"key":"ref63","author":"remple","year":"2010","journal-title":"Battery Charging Specification Revision 1 2 Technical report"},{"key":"ref28","article-title":"ETSI TS 102 622 V10.2.0: Smart Cards","year":"2011","journal-title":"UICC-Contactless Front-end (CLF) Interface Host Controller Interface (HCI) (Release 10)"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-64701-2_17"},{"key":"ref27","author":"drewry","year":"2012","journal-title":"[RFC PATCH 0\/2] dynamic seccomp policies (using BPF filters)"},{"key":"ref65","article-title":"Design and Implementation of a TCG-based Integrity Measurement Architecture","author":"sailer","year":"2004","journal-title":"Proceedings of the USENIX Security Symposium"},{"key":"ref66","author":"sala\u00fcn","year":"2018","journal-title":"File access-control per container with landlock"},{"key":"ref29","author":"feng","year":"2017","journal-title":"bpf security New file mode and LSM hooks for eBPF object permission control"},{"key":"ref67","author":"schulist","year":"2018","journal-title":"Linux Socket Filtering aka Berkeley Packet Filter (BPF)"},{"key":"ref68","author":"seri","year":"2017","journal-title":"Bluetooth Properly check L2CAP config option output buffer length"},{"key":"ref69","author":"smalley","year":"2001","journal-title":"Implementing SELinux as a Linux Security Module"},{"key":"ref2","author":"afonin","year":"2018","journal-title":"This $39 Device Can Defeat iOS USB Restricted Mode"},{"key":"ref1","year":"2018","journal-title":"PyBluez Bluetooth Python extension module"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920296"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/800230.806984"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2007.43"},{"key":"ref24","article-title":"Linux kernel aslr (kaslr)","volume":"69","author":"cook","year":"2013","journal-title":"Linux Security Summit"},{"key":"ref23","article-title":"Digital Equipment Corporation","year":"1996","journal-title":"Intel Microsoft NEC and Northern Telecom Universal Serial Bus Specification Revision 1 0 Technical report"},{"key":"ref26","author":"cree","year":"2018","journal-title":"[RFC\/PoC PATCH bpf-next 00\/12] bounded loops for eBPF"},{"key":"ref25","article-title":"Extending extended BPF","author":"corbet","year":"2014","journal-title":"Linux Weekly News"},{"key":"ref50","article-title":"The New and Improved FileBench File System Benchmarking Framework","author":"kustarz","year":"2008","journal-title":"Proc USENIX Conf File and Storage Technologies (FAST '10)"},{"key":"ref51","article-title":"Mactans: Injecting Malware into iOS Devices via Malicious Chargers","author":"lau","year":"2013","journal-title":"Proceedings of the Black Hat USA Briefings Las Vegas NV August 2013"},{"key":"ref59","year":"2012","journal-title":"NFC Controller Interface (NCI) Specification NCI 1 0 Technical report"},{"key":"ref58","year":"2010","journal-title":"NFC Digital Protocol Digital 1 0 Technical report"},{"key":"ref57","year":"2018","journal-title":"UMAP"},{"key":"ref56","article-title":"Exploring the nfc attack surface","author":"miller","year":"2012","journal-title":"Proceedings of BlackHat"},{"key":"ref55","article-title":"lmbench: Portable tools for performance analysis","author":"mcvoy","year":"1996","journal-title":"Proceedings of the USENIX Annual Technical Conference (ATC)"},{"key":"ref54","article-title":"The BSD Packet Filter: A New Architecture for User-level Packet Capture","volume":"93","author":"mccanne","year":"1993","journal-title":"USENIX Winter"},{"key":"ref53","article-title":"Bluetooth Hacking: The State of the Art","author":"laurie","year":"2006","journal-title":"BlackHat Europe"},{"key":"ref52","article-title":"Hacking Bluetooth enabled mobile phones and beyond - Full Disclosure","author":"laurie","year":"2005","journal-title":"BlackHat Europe"},{"key":"ref10","article-title":"Hewlett-Packard, Intel, Microsoft, Renesas, STMicroelectronics, and Texas Instruments","year":"2017","journal-title":"Universal Serial Bus 3 2 Specification Revision 1 0 Technical report"},{"key":"ref11","year":"2017","journal-title":"BlueBorne"},{"key":"ref40","article-title":"ASM: A Programmable Interface for Extending Android Security","author":"heuser","year":"2014","journal-title":"Proceedings of the USENIX Security Symposium"},{"key":"ref12","year":"2018","journal-title":"Bleeding Bit"},{"key":"ref13","article-title":"[v3,2\/4] NFC","author":"baghdasaryan","year":"2018","journal-title":"Fix possible memory corruption when handling SHDLC I-Frame commands"},{"key":"ref14","article-title":"Trustworthy WholeSystem Provenance for the Linux Kernel","author":"bates","year":"2015","journal-title":"Proceedings of the USENIX Security Symposium"},{"key":"ref15","year":"2016","journal-title":"Bluetooth Core Specification v5 0 Technical report"},{"key":"ref82","doi-asserted-by":"publisher","DOI":"10.1145\/2741948.2741958"},{"key":"ref16","author":"borg","year":"2016","journal-title":"Can BLE be turned on while Bluetooth Classic is off on an Android device?"},{"key":"ref81","year":"2004","journal-title":"trifinite"},{"key":"ref17","author":"borkmann","year":"2015","journal-title":"[PATCH net-next 3\/4] bpf add support for persistent maps\/progs"},{"key":"ref84","author":"welch","year":"2018","journal-title":"Apple’s USB Restricted Mode how to use your iPhone’s latest security feature"},{"key":"ref18","volume":"1 23","author":"borkmann","year":"2016","journal-title":"On getting tc classifier fully programmable with cls bpf tc"},{"key":"ref83","doi-asserted-by":"publisher","DOI":"10.1109\/NFC.2011.16"},{"key":"ref19","author":"borkmann","year":"2018","journal-title":"[bpf] bpf use array-index-nospec in find-prog-type"},{"key":"ref80","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00037"},{"key":"ref4","first-page":"9","volume":"7","author":"aho","year":"1986","journal-title":"Compilers Principles Techniques and Tools"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/3243157.3243161"},{"key":"ref6","article-title":"The Design and Implementation of Hyperupcalls","author":"amit","year":"2018","journal-title":"Proceedings of the USENIX Annual Technical Conference (USENIX ATC)"},{"key":"ref5","year":"1989","journal-title":"ANSI X3 159-1989 Programming Language C Technical report"},{"key":"ref85","year":"2018","journal-title":"Windows Filtering Platform"},{"key":"ref8","year":"2018","journal-title":"Bluetooth low energy technical overview"},{"key":"ref86","article-title":"Linux Security Modules: General Security Support for the Linux Kernel","author":"wright","year":"2002","journal-title":"Proceedings of the 11th USENIX Security Symposium"},{"key":"ref7","article-title":"Computer Security Technology Planning Study, ESDTR- 73-51","volume":"1","author":"anderson","year":"1972","journal-title":"Technical report Air Force Systems Command Electronic Systems Division"},{"key":"ref49","author":"krasnyansky","year":"2002","journal-title":"l2ping c"},{"key":"ref9","article-title":"Defending against Malicious Peripherals with Cinch","author":"angel","year":"2016","journal-title":"25th USENIX Security Symposium"},{"key":"ref46","author":"kobayashi","year":"0","journal-title":"Displayport (tm) ver 1 2 overview"},{"key":"ref45","article-title":"eBPF Hardware Offload to SmartNICs: cls bpf and XDP","volume":"1","author":"kicinski","year":"2016","journal-title":"Proceedings of Netdev"},{"key":"ref48","author":"krasnyansky","year":"2002","journal-title":"Bluez official linux bluetooth protocol stack"},{"key":"ref47","article-title":"Spectre Attacks: Exploiting Speculative Execution","author":"kocher","year":"2019","journal-title":"Proceedings of the IEEE Symposium on Security & Privacy (S&P)"},{"key":"ref42","year":"2015","journal-title":"BCC - Tools for BPF-based Linux IO analysis networking monitoring and more"},{"key":"ref41","year":"2018","journal-title":"Intel Virtualization Technology for Directed I\/O - Architecture Specification"},{"key":"ref44","author":"kellner","year":"2017","journal-title":"Introducing bolt Thunderbolt 3 security levels for GNU\/Linux"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1145\/3134600.3134630"}],"event":{"name":"2019 IEEE Symposium on Security and Privacy (SP)","location":"San Francisco, CA, USA","start":{"date-parts":[[2019,5,19]]},"end":{"date-parts":[[2019,5,23]]}},"container-title":["2019 IEEE Symposium on Security and Privacy (SP)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8826229\/8835208\/08835285.pdf?arnumber=8835285","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,17]],"date-time":"2022-07-17T17:47:11Z","timestamp":1658080031000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8835285\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,5]]},"references-count":86,"URL":"https:\/\/doi.org\/10.1109\/sp.2019.00041","relation":{},"subject":[],"published":{"date-parts":[[2019,5]]}}}