{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,2]],"date-time":"2026-07-02T15:53:34Z","timestamp":1783007614374,"version":"3.54.5"},"reference-count":39,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"2","license":[{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"name":"Foundation Strengthening Key Project of Science &#x0026; Technology Commission","award":["2019-JCJQ-ZD-113"],"award-info":[{"award-number":["2019-JCJQ-ZD-113"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Dependable and Secure Comput."],"published-print":{"date-parts":[[2025,3]]},"DOI":"10.1109\/tdsc.2024.3434667","type":"journal-article","created":{"date-parts":[[2024,7,29]],"date-time":"2024-07-29T18:21:45Z","timestamp":1722277305000},"page":"1365-1382","source":"Crossref","is-referenced-by-count":7,"title":["Precise Discovery of More Taint-Style Vulnerabilities in Embedded Firmware"],"prefix":"10.1109","volume":"22","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1617-4561","authenticated-orcid":false,"given":"Xiaokang","family":"Yin","sequence":"first","affiliation":[{"name":"Information Engineering University, Zhengzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ruijie","family":"Cai","sequence":"additional","affiliation":[{"name":"Information Engineering University, Zhengzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4672-902X","authenticated-orcid":false,"given":"Xiaoya","family":"Zhu","sequence":"additional","affiliation":[{"name":"Information Engineering University, Zhengzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5368-4221","authenticated-orcid":false,"given":"Qichao","family":"Yang","sequence":"additional","affiliation":[{"name":"Information Engineering University, Zhengzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0810-0228","authenticated-orcid":false,"given":"Enzhou","family":"Song","sequence":"additional","affiliation":[{"name":"Information Engineering University, Zhengzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-0603-4200","authenticated-orcid":false,"given":"Shengli","family":"Liu","sequence":"additional","affiliation":[{"name":"Information Engineering University, Zhengzhou, China"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref1","article-title":"Mozi, another botnet using DHT","author":"Turing","year":"2021"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1145\/3432893"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23294"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00036"},{"key":"ref5","first-page":"1099","article-title":"FIRM-AFL: High-throughput greybox fuzzing of IoT firmware via augmented process emulation","volume-title":"Proc. 28th USENIX Secur. Symp.","author":"Zheng"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23229"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23159"},{"key":"ref8","first-page":"135","article-title":"Toward the analysis of embedded firmware through automated re-hosting","volume-title":"Proc. 22nd Int. Symp. Res. Attacks Intrusions Defenses","author":"Gustafson"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/3359789.3359826"},{"key":"ref10","first-page":"1201","article-title":"HALucinator: Firmware re-hosting through abstraction layer emulation","volume-title":"Proc. 29th USENIX Secur. Symp.","author":"Clements","year":"2020"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484543"},{"key":"ref12","first-page":"1239","article-title":"Fuzzware: Using precise MMIO modeling for effective firmware fuzzing","volume-title":"Proc. 31th USENIX Secur. Symp.","author":"Scharnowski"},{"key":"ref13","article-title":"Qemu, a fast and portable dynamic translator","volume-title":"Proc. USENIX Annu. Tech. Conf.","author":"Bellard"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2018.00052"},{"key":"ref15","first-page":"781","article-title":"Bootstomp: On the security of bootloaders in mobile devices","volume-title":"Proc. 26th USENIX Secur. Symp.","author":"Redini"},{"key":"ref16","first-page":"303","article-title":"Sharing more and checking less: Leveraging common input keywords to detect bugs in embedded systems","volume-title":"Proc. 30th USENIX Secur. Symp.","author":"Chen"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1145\/3597926.3598062"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.54"},{"key":"ref19","article-title":"Buffer overflows in networkmap","year":"2022"},{"key":"ref20","article-title":"Tp-link tl-wr940n is vulnerable to a stack-based buffer overflow","year":"2021"},{"key":"ref21","first-page":"326","article-title":"Memory copy function identification technique with control flow and data flow analysis","volume":"60","author":"Xiaokang","year":"2023","journal-title":"J. Comput. Res. Develop."},{"key":"ref22","article-title":"P-code reference manual","year":"2022"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1145\/1190216.1190226"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-34188-5_15"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/1945023.1945039"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/2568225.2568293"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23166"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom\/BigDataSE.2019.00041"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/3338507.3358616"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/ASE51524.2021.9678785"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00066"},{"key":"ref32","first-page":"1","article-title":"uafl: Non-intrusive feedback-driven fuzzing for microcontroller firmware","volume-title":"Proc. IEEE\/ACM 44th Int. Conf. Softw. Eng.","author":"Li"},{"key":"ref33","first-page":"95","article-title":"A large-scale analysis of the security of embedded firmwares","volume-title":"Proc. 23rd USENIX Secur. Symp.","author":"Costin"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/2897845.2897900"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3423344"},{"key":"ref36","first-page":"381","article-title":"uSBS: Static binary sanitization of bare-metal embedded devices for fault observability","volume-title":"Proc. 23rd Int. Symp. Res. Attacks","author":"Salehi"},{"key":"ref37","first-page":"1151","article-title":"Looking from the mirror: Evaluating IoT device security through mobile companion apps","volume-title":"Proc. 28th USENIX Secur. Symp.","author":"Wang"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484738"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833610"}],"container-title":["IEEE Transactions on Dependable and Secure Computing"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/8858\/10925471\/10613486.pdf?arnumber=10613486","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,3,17]],"date-time":"2025-03-17T21:21:08Z","timestamp":1742246468000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10613486\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,3]]},"references-count":39,"journal-issue":{"issue":"2"},"URL":"https:\/\/doi.org\/10.1109\/tdsc.2024.3434667","relation":{},"ISSN":["1545-5971","1941-0018","2160-9209"],"issn-type":[{"value":"1545-5971","type":"print"},{"value":"1941-0018","type":"electronic"},{"value":"2160-9209","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,3]]}}}