{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,16]],"date-time":"2026-05-16T04:06:51Z","timestamp":1778904411979,"version":"3.51.4"},"reference-count":60,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"3","license":[{"start":{"date-parts":[[2026,5,1]],"date-time":"2026-05-01T00:00:00Z","timestamp":1777593600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2026,5,1]],"date-time":"2026-05-01T00:00:00Z","timestamp":1777593600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2026,5,1]],"date-time":"2026-05-01T00:00:00Z","timestamp":1777593600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100004826","name":"Beijing Natural Science Foundation","doi-asserted-by":"publisher","award":["L253021"],"award-info":[{"award-number":["L253021"]}],"id":[{"id":"10.13039\/501100004826","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"NSFC","doi-asserted-by":"crossref","award":["62322202"],"award-info":[{"award-number":["62322202"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"crossref"}]},{"DOI":"10.13039\/501100001809","name":"NSFC","doi-asserted-by":"crossref","award":["U25B2029"],"award-info":[{"award-number":["U25B2029"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"crossref"}]},{"name":"Local Science and Technology Development"},{"name":"Central Government of China","award":["254Z9902G"],"award-info":[{"award-number":["254Z9902G"]}]},{"name":"Shijiazhuang Science and Technology Plan Project","award":["2511301807A"],"award-info":[{"award-number":["2511301807A"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Dependable and Secure Comput."],"published-print":{"date-parts":[[2026,5]]},"DOI":"10.1109\/tdsc.2026.3665343","type":"journal-article","created":{"date-parts":[[2026,2,16]],"date-time":"2026-02-16T21:10:17Z","timestamp":1771276217000},"page":"6474-6489","source":"Crossref","is-referenced-by-count":0,"title":["LIVA: A Multi-Agent LLM-Assisted System for IoT Vulnerability Analysis"],"prefix":"10.1109","volume":"23","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-3735-7331","authenticated-orcid":false,"given":"Zhe","family":"Yang","sequence":"first","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0458-5977","authenticated-orcid":false,"given":"Hao","family":"Peng","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yanling","family":"Jiang","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2965-3518","authenticated-orcid":false,"given":"Jianwei","family":"Liu","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6807-512X","authenticated-orcid":false,"given":"Hongbin","family":"Luo","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mingsheng","family":"Tang","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0001-6596-501X","authenticated-orcid":false,"given":"Jiahe","family":"Li","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-1755-1487","authenticated-orcid":false,"given":"Kun","family":"Zhang","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","article-title":"Internet of Things (IoT) and non-IoT active device connections worldwide from 2010 to 2025","author":"Vailshery","year":"2025"},{"key":"ref2","article-title":"Check point software\u2019s 2025 security report finds alarming 44% increase in cyber-attacks","year":"2025"},{"key":"ref3","article-title":"6 cyber security challenges emerge from world economic forum: 2025 threats","year":"2025"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/JAS.2022.105860"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.3390\/s24020708"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/3427228.3427294"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3508398.3511511"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2018.00052"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1038\/s41598-024-74350-3"},{"key":"ref10","first-page":"1665","article-title":"SelectiveTaint: Efficient data flow tracking with static binary rewriting","volume-title":"Proc. 30th USENIX Secur. Symp.","author":"Chen"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/3623278.3624759"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00036"},{"key":"ref13","first-page":"303","article-title":"Sharing more and checking less: Leveraging common input keywords to detect bugs in embedded systems","volume-title":"Proc. 30th USENIX Secur. Symp.","author":"Chen"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/3597926.3598062"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3658644.3690307"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2024.103971"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.3390\/s24020708"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/ASE56229.2023.00027"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1145\/3485464"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.3390\/app13179710"},{"key":"ref21","article-title":"IDA pro: Interactive disassembler and debugger","year":"2024"},{"key":"ref22","article-title":"Ghidra: A software reverse engineering framework","volume-title":"Open Source Softw.","year":"2019"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1145\/3658644.3670275"},{"key":"ref24","first-page":"7123","article-title":"Operation mango: Scalable discovery of taint-style vulnerabilities in binary firmware services","volume-title":"Proc. 33rd USENIX Secur. Symp.","author":"Gibbs"},{"key":"ref25","first-page":"7067","article-title":"Leveraging semantic relations in code and data to enhance taint analysis of embedded systems","volume-title":"Proc. 33rd USENIX Secur. Symp.","author":"Zhao"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/3711816"},{"key":"ref27","first-page":"1877","article-title":"Language models are few-shot learners","volume-title":"Proc. Adv. Neural Inf. Process. Syst.","author":"Brown"},{"issue":"1","key":"ref28","article-title":"PaLM: Scaling language modeling with pathways","volume":"24","author":"Chowdhery","year":"2023","journal-title":"J. Mach. Learn. Res."},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/3597503.3639219"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978370"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1007\/s10009-020-00592-x"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.14722\/bar.2018.23019"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2025.107829"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/3708522"},{"key":"ref35","article-title":"Finetuning large language models for vulnerability detection","author":"Shestov","year":"2024"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/2024.acl-demos.38"},{"key":"ref37","article-title":"Neo4j graph database platform","volume-title":"Graph Database Management System, Version 5.x","year":"2024"},{"key":"ref38","article-title":"Deepseek-R1-distill-qwen-32B","year":"2024"},{"key":"ref39","article-title":"deepseek-coder-33b-instruct","year":"2024"},{"key":"ref40","article-title":"Deepseek-coder: When the large language model meets programming\u2013the rise of code intelligence","author":"Guo","year":"2024"},{"key":"ref41","article-title":"QwQ-32B","year":"2025"},{"key":"ref42","article-title":"Qwen3 technical report","year":"2025"},{"key":"ref43","article-title":"GPT-4o: Omni-modal AI model","year":"2024"},{"key":"ref44","article-title":"Gemini 2.5 pro: Our most intelligent AI model","year":"2025"},{"key":"ref45","article-title":"Qwen 2.5-max: Exploring the intelligence of large-scale moe","year":"2025"},{"key":"ref46","article-title":"Claude 3.7 Sonnet system card","volume-title":"System card (PDF) by Anthropic","year":"2025"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1145\/2594291.2594299"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-03237-0_17"},{"key":"ref49","article-title":"RIPS - A static source code analyser for vulnerabilities in PHP scripts","volume-title":"Proc. Seminar Work (Seminer \u00c7alismasi)","author":"Dahse","year":"2010"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.29"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1145\/2619091"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2015.48"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1109\/sp.2016.17"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.47"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2024.24346"},{"key":"ref56","article-title":"LLMDFA: Analyzing dataflow in code with large language models","volume-title":"Proc. 38th Int. Conf. Neural Inf. Process. Syst.","author":"Wang"},{"key":"ref57","article-title":"IRIS: LLM-assisted static analysis for detecting security vulnerabilities","volume-title":"Proc. 13th Int. Conf. Learn. Representations","author":"Li","year":"2025"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1145\/3637528.3671609"},{"key":"ref59","article-title":"Vul-RAG: Enhancing LLM-based vulnerability detection via knowledge-level RAG","author":"Du","year":"2025"},{"key":"ref60","first-page":"9459","article-title":"Retrieval-augmented generation for knowledge-intensive NLP tasks","volume-title":"Proc. 34th Int. Conf. Neural Inf. Process. Syst.","author":"Lewis"}],"container-title":["IEEE Transactions on Dependable and Secure Computing"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/8858\/11517592\/11397462.pdf?arnumber=11397462","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,16]],"date-time":"2026-05-16T03:10:01Z","timestamp":1778901001000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11397462\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,5]]},"references-count":60,"journal-issue":{"issue":"3"},"URL":"https:\/\/doi.org\/10.1109\/tdsc.2026.3665343","relation":{},"ISSN":["1545-5971","1941-0018","2160-9209"],"issn-type":[{"value":"1545-5971","type":"print"},{"value":"1941-0018","type":"electronic"},{"value":"2160-9209","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026,5]]}}}