{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,24]],"date-time":"2026-03-24T16:21:45Z","timestamp":1774369305518,"version":"3.50.1"},"reference-count":50,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"4","license":[{"start":{"date-parts":[[2025,4,1]],"date-time":"2025-04-01T00:00:00Z","timestamp":1743465600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"name":"National Research Foundation, Singapore, in part by the Cyber Security Agency of Singapore under its National Cybersecurity R&#x0026;D Programme","award":["Fuzz Testing NRF-NCR25-Fuzz-0001"],"award-info":[{"award-number":["Fuzz Testing NRF-NCR25-Fuzz-0001"]}]},{"name":"European Union and ERC grant","award":["Project AT SCALE101179366"],"award-info":[{"award-number":["Project AT SCALE101179366"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IIEEE Trans. Software Eng."],"published-print":{"date-parts":[[2025,4]]},"DOI":"10.1109\/tse.2025.3535925","type":"journal-article","created":{"date-parts":[[2025,1,30]],"date-time":"2025-01-30T19:17:11Z","timestamp":1738264631000},"page":"960-974","source":"Crossref","is-referenced-by-count":5,"title":["AFLNet Five Years Later: On Coverage-Guided Protocol Fuzzing"],"prefix":"10.1109","volume":"51","author":[{"ORCID":"https:\/\/orcid.org\/0009-0008-4323-6271","authenticated-orcid":false,"given":"Ruijie","family":"Meng","sequence":"first","affiliation":[{"name":"National University of Singapore, Singapore"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9871-3695","authenticated-orcid":false,"given":"Van-Thuan","family":"Pham","sequence":"additional","affiliation":[{"name":"University of Melbourne, Melbourne, VIC, Australia"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4470-1824","authenticated-orcid":false,"given":"Marcel","family":"B\u00f6hme","sequence":"additional","affiliation":[{"name":"Max Planck Institute for Security and Privacy, Bochum, Germany"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7127-1137","authenticated-orcid":false,"given":"Abhik","family":"Roychoudhury","sequence":"additional","affiliation":[{"name":"National University of Singapore, Singapore"}]}],"member":"263","reference":[{"key":"ref1","article-title":"Peach Fuzzer Platform"},{"key":"ref2","article-title":"SPIKE Fuzzer Platform"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2019.2941681"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134020"},{"key":"ref5","first-page":"2019","article-title":"AFL user group","year":"2019"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/ICST46399.2020.00062"},{"key":"ref7","article-title":"The challenges of fuzzing 5G protocols","author":"Group","year":"2021"},{"key":"ref8","article-title":"A use-after-free vulnerability discovered by AFLNet","author":"Alliance","year":"2024"},{"key":"ref9","article-title":"A critical memory (heap) leak vulnerability discovered by AFLNet","author":"Alliance","year":"2024"},{"key":"ref10","article-title":"How to hack medical imaging applications via DICOM","volume-title":"Proc. Hack In Box Secur. Conf.","author":"Nedyak","year":"2020"},{"key":"ref11","article-title":"Demystifying a current trend\u2014Security fuzz testing in the context of ISO\/SAE 21434","author":"GmbH","year":"2024"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1145\/3460319.3469077"},{"key":"ref13","article-title":"AFL","author":"Zalewski"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978428"},{"key":"ref15","article-title":"libFuzzer\u2014A library for coverage-guided fuzz testing"},{"key":"ref16","article-title":"beSTORM black box testing"},{"key":"ref17","article-title":"Boofuzz: A fork and successor of the sulley fuzzing framework"},{"key":"ref18","article-title":"Sulley: A pure-python fully automated and unattended fuzzing framework"},{"key":"ref19","article-title":"LightFTP Server"},{"key":"ref20","article-title":"File Transfer Protocol","year":"1985"},{"key":"ref21","article-title":"AFL vulnerability trophy case"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243804"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1145\/3510003.3510230"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2024.24556"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/3492321.3519591"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/3580599"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-022-10233-3"},{"key":"ref28","first-page":"3255","article-title":"Stateful greybox fuzzing","volume-title":"Proc. 31st USENIX Secur. Symp.","author":"Ba","year":"2022"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/SANER53432.2022.00089"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSPW59978.2023.00043"},{"key":"ref31","first-page":"54","article-title":"Legion: Best-first concolic testing","volume-title":"Proc. 35th IEEE\/ACM Int. Conf. Automated Softw. Eng.","author":"Liu","year":"2020"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3238176"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-57537-2_16"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/3533767.3534376"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23412"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315286"},{"key":"ref37","first-page":"1985","article-title":"GRIMOIRE: Synthesizing structure while fuzzing","volume-title":"Proc. 28th USENIX Secur. Symp.","author":"Blazytko","year":"2019"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00081"},{"key":"ref39","article-title":"Learning to fuzz: Application-independent fuzz testing with probabilistic, generative models of input data","author":"Patra","year":"2016"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-89500-0_53"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455820"},{"key":"ref42","article-title":"Finding bug-inducing program environments","author":"Mirzamomen","year":"2023"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1145\/3658644.3690229"},{"key":"ref44","article-title":"Matter\u2014The foundation for connected things","author":"Alliance","year":"2024"},{"key":"ref45","first-page":"2024","article-title":"Security and software testing","year":"2023"},{"key":"ref46","article-title":"Fantastic bugs and how to find them","author":"University","year":"2023"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1145\/3634737.3661141"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-45139-0_7"},{"key":"ref49","first-page":"234","article-title":"Greybox fuzzing of disrtibuted systems","volume-title":"Proc. 30th ACM Conf. Comput. Commun. Secur. (CCS)","author":"Meng","year":"2023"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/3620665.3640389"}],"container-title":["IEEE Transactions on Software Engineering"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/32\/10969500\/10858174.pdf?arnumber=10858174","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,18]],"date-time":"2025-04-18T17:38:01Z","timestamp":1744997881000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10858174\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,4]]},"references-count":50,"journal-issue":{"issue":"4"},"URL":"https:\/\/doi.org\/10.1109\/tse.2025.3535925","relation":{},"ISSN":["0098-5589","1939-3520","2326-3881"],"issn-type":[{"value":"0098-5589","type":"print"},{"value":"1939-3520","type":"electronic"},{"value":"2326-3881","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,4]]}}}