{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T03:58:18Z","timestamp":1782878298018,"version":"3.54.5"},"reference-count":43,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"11","license":[{"start":{"date-parts":[[2022,11,1]],"date-time":"2022-11-01T00:00:00Z","timestamp":1667260800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2022,11,1]],"date-time":"2022-11-01T00:00:00Z","timestamp":1667260800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2022,11,1]],"date-time":"2022-11-01T00:00:00Z","timestamp":1667260800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100001809","name":"NSFC Program","doi-asserted-by":"publisher","award":["62022046"],"award-info":[{"award-number":["62022046"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"NSFC Program","doi-asserted-by":"publisher","award":["92167101"],"award-info":[{"award-number":["92167101"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"NSFC Program","doi-asserted-by":"publisher","award":["U1911401"],"award-info":[{"award-number":["U1911401"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"NSFC Program","doi-asserted-by":"publisher","award":["62021002"],"award-info":[{"award-number":["62021002"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"NSFC Program","doi-asserted-by":"publisher","award":["62192730"],"award-info":[{"award-number":["62192730"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"name":"National Key Research and Development Project","award":["2019YFB1706203"],"award-info":[{"award-number":["2019YFB1706203"]}]},{"name":"National Key Research and Development Project","award":["2021QY0604"],"award-info":[{"award-number":["2021QY0604"]}]},{"name":"MIIT Project"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Comput.-Aided Des. Integr. Circuits Syst."],"published-print":{"date-parts":[[2022,11]]},"DOI":"10.1109\/tcad.2022.3201471","type":"journal-article","created":{"date-parts":[[2022,11,3]],"date-time":"2022-11-03T21:55:15Z","timestamp":1667512515000},"page":"4457-4468","source":"Crossref","is-referenced-by-count":28,"title":["Vulnerability Detection of ICS Protocols via Cross-State Fuzzing"],"prefix":"10.1109","volume":"41","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-2589-2255","authenticated-orcid":false,"given":"Feilong","family":"Zuo","sequence":"first","affiliation":[{"name":"KLISS, BNRist, School of Software, Tsinghua University, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Zhengxiong","family":"Luo","sequence":"additional","affiliation":[{"name":"KLISS, BNRist, School of Software, Tsinghua University, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Junze","family":"Yu","sequence":"additional","affiliation":[{"name":"KLISS, BNRist, School of Software, Tsinghua University, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9165-8331","authenticated-orcid":false,"given":"Ting","family":"Chen","sequence":"additional","affiliation":[{"name":"School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9293-8028","authenticated-orcid":false,"given":"Zichen","family":"Xu","sequence":"additional","affiliation":[{"name":"School of Mathematics and Computer Science, Nanchang University, Nanchang, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Aiguo","family":"Cui","sequence":"additional","affiliation":[{"name":"Godel Lab, Huawei Technologies Company Ltd., Shanghai, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0955-503X","authenticated-orcid":false,"given":"Yu","family":"Jiang","sequence":"additional","affiliation":[{"name":"KLISS, BNRist, School of Software, Tsinghua University, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref1","volume-title":"Industrial control system","year":"2022"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2015.02.002"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2011.67"},{"key":"ref4","volume-title":"DragonFly 2.0: Hacking Group Infiltrated European and U.S. Power Facilities","author":"Kumar","year":"2017"},{"key":"ref5","volume-title":"American fuzzy lop","author":"Zalewski","year":"2015"},{"key":"ref6","volume-title":"Peach fuzzing platform","year":"2022"},{"key":"ref7","volume-title":"Sulley","author":"Amini","year":"2012"},{"key":"ref8","volume-title":"Boofuzz: Network protocol fuzzing for humans","year":"2022"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/ICST46399.2020.00062"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/3358227"},{"key":"ref11","volume-title":"DDS interoperability wire protocol","year":"2022"},{"key":"ref12","volume-title":"Official website of OMG","year":"2022"},{"key":"ref13","volume-title":"Data distribution service","year":"2022"},{"key":"ref14","volume-title":"Autoware","year":"2022"},{"key":"ref15","volume-title":"Apollo","year":"2022"},{"key":"ref16","volume-title":"Adaptive Autosar","year":"2022"},{"key":"ref17","volume-title":"Clang: A C language family frontend for LLVM","year":"2021"},{"key":"ref18","volume-title":"FastRTPS","year":"2022"},{"key":"ref19","volume-title":"CycloneDDS","year":"2022"},{"key":"ref20","volume-title":"FreeRTPS","year":"2022"},{"key":"ref21","volume-title":"libICCP","author":"Covatti","year":"2022"},{"key":"ref22","volume-title":"libiec61850","year":"2022"},{"key":"ref23","volume-title":"Eclipse mosquitto","year":"2022"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1177\/1729881418770011"},{"key":"ref25","volume-title":"Buffer overflow","year":"2021"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3238176"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833594"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2019.2961339"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23371"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/2970276.2970316"},{"key":"ref31","first-page":"193","article-title":"Protocol state fuzzing of TLS implementations","volume-title":"Proc. 24th USENIX Security Symp. (USENIX Security)","author":"De Ruiter"},{"issue":"8","key":"ref32","first-page":"239","article-title":"AutoFuzz: Automated network protocol fuzzing framework","volume":"10","author":"Gorbunov","year":"2010","journal-title":"Int. J. Comput. Sci. Netw. Security"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978411"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/3203217.3203241"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.23919\/AE.2017.8053600"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1109\/ICST.2019.00016"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1007\/s11227-017-1980-3"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-33229-7_30"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/ISRITI51436.2020.9315339"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/WoWMoM49955.2020.00064"},{"key":"ref41","first-page":"7","article-title":"Penetration testing of industrial control systems","author":"Duggan","year":"2005"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/PRDC.2011.51"},{"key":"ref43","first-page":"132","article-title":"An investigation into some security issues in the DDS messaging protocol","volume-title":"Proc. Aust. Inf. Security Manag. Conf.","author":"White"}],"container-title":["IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/43\/9928799\/09925704.pdf?arnumber=9925704","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,1,24]],"date-time":"2024-01-24T05:42:43Z","timestamp":1706074963000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9925704\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,11]]},"references-count":43,"journal-issue":{"issue":"11"},"URL":"https:\/\/doi.org\/10.1109\/tcad.2022.3201471","relation":{},"ISSN":["0278-0070","1937-4151"],"issn-type":[{"value":"0278-0070","type":"print"},{"value":"1937-4151","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,11]]}}}