{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,25]],"date-time":"2026-01-25T04:08:29Z","timestamp":1769314109050,"version":"3.49.0"},"reference-count":63,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62293503"],"award-info":[{"award-number":["62293503"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62293500"],"award-info":[{"award-number":["62293500"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62293511"],"award-info":[{"award-number":["62293511"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62293502"],"award-info":[{"award-number":["62293502"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62303411"],"award-info":[{"award-number":["62303411"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62303126"],"award-info":[{"award-number":["62303126"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100004731","name":"Natural Science Foundation of Zhejiang Province","doi-asserted-by":"publisher","award":["LR23F030001"],"award-info":[{"award-number":["LR23F030001"]}],"id":[{"id":"10.13039\/501100004731","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Frontier Technologies Research and Development Program of Jiangsu","award":["BF2024065"],"award-info":[{"award-number":["BF2024065"]}]},{"DOI":"10.13039\/501100011311","name":"State Key Laboratory of Industrial Control Technology","doi-asserted-by":"publisher","award":["ICT2024A13"],"award-info":[{"award-number":["ICT2024A13"]}],"id":[{"id":"10.13039\/501100011311","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100011311","name":"State Key Laboratory of Industrial Control Technology","doi-asserted-by":"publisher","award":["ICT2025C04"],"award-info":[{"award-number":["ICT2025C04"]}],"id":[{"id":"10.13039\/501100011311","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Xiaomi Foundation"},{"DOI":"10.13039\/501100012226","name":"Fundamental Research Funds for the Central Universities","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100012226","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans.Inform.Forensic Secur."],"published-print":{"date-parts":[[2025]]},"DOI":"10.1109\/tifs.2025.3581434","type":"journal-article","created":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T13:37:28Z","timestamp":1750340248000},"page":"7512-7527","source":"Crossref","is-referenced-by-count":3,"title":["SSTAF: Security Settings-Based Threat Assessment Framework of Programmable Logic Controllers"],"prefix":"10.1109","volume":"20","author":[{"given":"Jie","family":"Meng","sequence":"first","affiliation":[{"name":"State Key Laboratory of Industrial Control Technology and the College of Control Science and Engineering, Zhejiang University, Hangzhou, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0950-1525","authenticated-orcid":false,"given":"Zhenyong","family":"Zhang","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Public Big Data and the College of Computer Science and Technology, Guizhou University, Guiyang, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0004-3487-7182","authenticated-orcid":false,"given":"Hengye","family":"Zhu","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Industrial Control Technology and the College of Control Science and Engineering, Zhejiang University, Hangzhou, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1596-6890","authenticated-orcid":false,"given":"Zeyu","family":"Yang","sequence":"additional","affiliation":[{"name":"iTrust, Singapore University of Technology and Design, Tampines, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8158-150X","authenticated-orcid":false,"given":"Ruilong","family":"Deng","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Industrial Control Technology and the College of Control Science and Engineering, Zhejiang University, Hangzhou, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4221-2162","authenticated-orcid":false,"given":"Peng","family":"Cheng","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Industrial Control Technology and the College of Control Science and Engineering, Zhejiang University, Hangzhou, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0594-0432","authenticated-orcid":false,"given":"Jianying","family":"Zhou","sequence":"additional","affiliation":[{"name":"iTrust, Singapore University of Technology and Design, Tampines, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.101677"},{"key":"ref2","article-title":"Recommended proctice: Improving industrial control systems cybersecurity with defense-in-depth strategies","author":"Cssp","year":"2016"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/PST.2016.7906943"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2024.3384146"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/eCrime51433.2020.9493257"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2021.3078261"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3423356"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/3560905.3568521"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/NOMS47738.2020.9110256"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/3419394.3423666"},{"key":"ref11","volume-title":"Siemens Product Cert and Siemens Cert","year":"2022"},{"key":"ref12","volume-title":"Cybersecurity Support Portal","year":"2023"},{"key":"ref13","volume-title":"Recommended Security Guidelines From Rockwell Automation","year":"2023"},{"key":"ref14","volume-title":"TRISIS Malware: Analysis of Safety System Targeted Malware","year":"2017"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3627106.3627179"},{"key":"ref16","volume-title":"ICS Collection Techniques","year":"2023"},{"key":"ref17","volume-title":"An Overview of the Global Plc Industry and Its Dynamics","author":"Kumar","year":"2019"},{"key":"ref18","volume-title":"The Widely-used Network Protocol Analyzer","year":"2023"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-68884-4_46"},{"key":"ref20","first-page":"1","article-title":"You snooze, you lose: Measuring PLC cycle times under attacks","volume-title":"Proc. 12th USENIX Workshop Offensive Technol. (WOOT)","author":"Niedermaier"},{"issue":"2","key":"ref21","doi-asserted-by":"crossref","DOI":"10.1080\/10691898.2011.11889610","article-title":"How significant is a boxplot outlier?","volume":"19","author":"Dawson","year":"2011","journal-title":"J. Statist. Educ."},{"key":"ref22","volume-title":"Common Vulnerabilities and Exposures","year":"2023"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-22312-0_3"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.14722\/bar.2019.23074"},{"key":"ref25","volume-title":"Search Engine for the Internet of Everything","year":"2023"},{"key":"ref26","volume-title":"Fofa","author":"XinAn","year":"2023"},{"key":"ref27","volume-title":"The One Place To Understand Everything on the Internet","year":"2023"},{"key":"ref28","volume-title":"Binaryedge.io: Be Ready, Be Safe, Be Secure","year":"2023"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/ICNP.2016.7784407"},{"key":"ref30","volume-title":"A Tool To Detect Whether a IP is a Honeypot or a Real Control System","year":"2023"},{"key":"ref31","first-page":"1033","article-title":"You\u2019ve got vulnerability: Exploring effective vulnerability notifications","volume-title":"Proc. 25th USENIX Secur. Symp. (USENIX Security)","author":"Li"},{"key":"ref32","first-page":"1","article-title":"ChargePrint: A framework for internet-scale discovery and security analysis of EV charging management systems","volume-title":"Proc. Netw. Distrib. Syst. Secur. Symp. (NDSS)","author":"Nasr"},{"key":"ref33","first-page":"605","article-title":"$ZMap$: Fast internet-wide scanning and its security applications","volume-title":"Proc. 22nd USENIX Secur. Symp. (USENIX Security)","author":"Durumeric"},{"key":"ref34","article-title":"Minimizing legal risk when using cybersecurity scanning tools","volume-title":"White Paper","author":"Dittmer","year":"2017"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/spw.2013.6914700"},{"key":"ref36","first-page":"551","article-title":"The betrayal at cloud city: An empirical analysis of $cloud-based$ mobile backends","volume-title":"Proc. 28th USENIX Secur. Symp. (USENIX Security)","author":"Alrawi"},{"key":"ref37","volume-title":"SSA-818183: Denial-of-Service Vulnerability in SIMATIC S7-300 CPU Family","year":"2020"},{"key":"ref38","volume-title":"SSA-987029: Denial-of-Service Vulnerability in SIMATIC S7-300 CPU Family","year":"2020"},{"key":"ref39","volume-title":"SSA-731239: Vulnerabilities in SIMATIC S7-300 and S7-400 CPUs","year":"2020"},{"key":"ref40","volume-title":"Schneider Electric Celebrates 50 Years of Modicon","year":"2019"},{"issue":"6","key":"ref41","first-page":"29","article-title":"W32. Stuxnet dossier","volume":"5","author":"Falliere","year":"2011","journal-title":"White Paper Symantec Corp., Secur Resp."},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1145\/1753326.1753384"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1080\/15332860903467508"},{"key":"ref44","volume-title":"SCADA StrangeLove Default\/Hardcoded Passwords List","author":"StrangeLove","year":"2016"},{"key":"ref45","volume-title":"NMAP Network Scanning: The Official NMAP Project Guide To Network Discovery and Security Scanning","author":"Lyon","year":"2008"},{"key":"ref46","volume-title":"Redpoint.Digital Bond\u2019s ICS Enumeration Tools","author":"Bond","year":"2016"},{"key":"ref47","volume-title":"ModScan","author":"Design","year":"2020"},{"key":"ref48","volume-title":"PLCScan","author":"Searle","year":"2015"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833730"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/3639036"},{"issue":"2","key":"ref51","first-page":"723","article-title":"Exploiting Siemens simatic S7 PLCS","volume":"16","author":"Beresford","year":"2011","journal-title":"Black Hat USA"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1145\/2498328.2500067"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-31664-2_34"},{"issue":"5","key":"ref54","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3358227","article-title":"Polar: Function code aware fuzz testing of ICS protocol","volume":"18","author":"Luo","year":"2019","journal-title":"ACM Trans. Embedded Comput. Syst."},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.23919\/AE.2017.8053600"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1109\/TCAD.2022.3201471"},{"key":"ref57","volume-title":"SSA-818183: Denial-of-Service Vulnerability in SIMATIC S7-300 CPU Family","year":"2020"},{"key":"ref58","volume-title":"Rockwell Automation MicroLogix 1400 Controllers and 1756 ControlLogix Communications Modules.","year":"2018"},{"key":"ref59","volume-title":"Rockwell Automation Allen-Bradley MicroLogix 1100 and 1400","year":"2017"},{"key":"ref60","volume-title":"Schneider Electric Security Notification - Modicon M100\/M200\/M221 Programmable Logic Controller (V3.0).","year":"2021"},{"key":"ref61","volume-title":"Schneider Electric Security Notification EcoStruxureTM Control Expert, EcoStruxureTM Process Expert, SCADAPack RemoteConnectTM X70, and Modicon Controllers M580 and M340","year":"2023"},{"key":"ref62","volume-title":"MicroLogix 1100 and 1400 Controller Vulnerabilities","year":"2020"},{"key":"ref63","volume-title":"Allen Bradley Micrologix 1400 Series B Unauthenticated Data\/Program\/Function File Improper Access Control Vulnerability.","year":"2018"}],"container-title":["IEEE Transactions on Information Forensics and Security"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/10206\/10810755\/11044361.pdf?arnumber=11044361","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,24]],"date-time":"2025-07-24T17:54:26Z","timestamp":1753379666000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11044361\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"references-count":63,"URL":"https:\/\/doi.org\/10.1109\/tifs.2025.3581434","relation":{},"ISSN":["1556-6013","1556-6021"],"issn-type":[{"value":"1556-6013","type":"print"},{"value":"1556-6021","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025]]}}}