{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:27:01Z","timestamp":1750220821285,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":28,"publisher":"ACM","license":[{"start":{"date-parts":[[2020,9,7]],"date-time":"2020-09-07T00:00:00Z","timestamp":1599436800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Bundesministerium f\u00fcr Bildung und Forschung","award":["01IW19001"],"award-info":[{"award-number":["01IW19001"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2020,9,7]]},"DOI":"10.1145\/3386263.3406899","type":"proceedings-article","created":{"date-parts":[[2020,9,4]],"date-time":"2020-09-04T21:34:23Z","timestamp":1599255263000},"page":"101-106","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":8,"title":["Verification of Embedded Binaries using Coverage-guided Fuzzing with SystemC-based Virtual Prototypes"],"prefix":"10.1145","author":[{"given":"Vladimir","family":"Herdt","sequence":"first","affiliation":[{"name":"DFKI GmbH, Bremen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Daniel","family":"Gro\u00dfe","sequence":"additional","affiliation":[{"name":"Johannes Kepler University Linz &amp; DFKI GmbH, Linz, Austria"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jonas","family":"Wloka","sequence":"additional","affiliation":[{"name":"DFKI GmbH, Bremen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tim","family":"G\u00fcneysu","sequence":"additional","affiliation":[{"name":"Ruhr-University Bochum &amp; DFKI GmbH, Bochum, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rolf","family":"Drechsler","sequence":"additional","affiliation":[{"name":"University of Bremen &amp; DFKI GmbH, Bremen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2020,9,7]]},"reference":[{"volume-title":"IEEE Standard SystemC Language Reference Manual","key":"e_1_3_2_2_1_1","unstructured":"2011. IEEE Standard SystemC Language Reference Manual . IEEE Std . 1666. 2011. IEEE Standard SystemC Language Reference Manual. IEEE Std. 1666."},{"key":"e_1_3_2_2_2_1","unstructured":"Date accessed: 2019. afl-unicorn. https:\/\/github.com\/Battelle\/afl-unicorn.  Date accessed: 2019. afl-unicorn. https:\/\/github.com\/Battelle\/afl-unicorn."},{"key":"e_1_3_2_2_3_1","unstructured":"Date accessed: 2019. american fuzzy lop. http:\/\/lcamtuf.coredump.cx\/afl\/.  Date accessed: 2019. american fuzzy lop. http:\/\/lcamtuf.coredump.cx\/afl\/."},{"key":"e_1_3_2_2_4_1","unstructured":"Date accessed: 2019. libFuzzer - a library for coverage-guided fuzz testing. https:\/\/llvm.org\/docs\/LibFuzzer.html.  Date accessed: 2019. libFuzzer - a library for coverage-guided fuzz testing. https:\/\/llvm.org\/docs\/LibFuzzer.html."},{"key":"e_1_3_2_2_5_1","unstructured":"Date accessed: 2019. OSS-Fuzz - Continuous Fuzzing for Open Source Software. https:\/\/github.com\/google\/oss-fuzz.  Date accessed: 2019. OSS-Fuzz - Continuous Fuzzing for Open Source Software. https:\/\/github.com\/google\/oss-fuzz."},{"key":"e_1_3_2_2_6_1","unstructured":"Date accessed: 2019. Project Triforce:b Run AFL on Everything! https:\/\/www.nccgroup.trust\/us\/about-us\/newsroom-and-events\/blog\/2016\/june\/project-triforce-run-afl-on-everything.  Date accessed: 2019. Project Triforce:b Run AFL on Everything! https:\/\/www.nccgroup.trust\/us\/about-us\/newsroom-and-events\/blog\/2016\/june\/project-triforce-run-afl-on-everything."},{"key":"e_1_3_2_2_7_1","unstructured":"Date accessed: 2019. TriforceAFL. https:\/\/github.com\/nccgroup\/TriforceAFL.  Date accessed: 2019. TriforceAFL. https:\/\/github.com\/nccgroup\/TriforceAFL."},{"key":"e_1_3_2_2_8_1","doi-asserted-by":"crossref","unstructured":"Sunha Ahn and Sharad Malik. 2014. Automated firmware testing using firmware-hardware interaction patterns. In CODES+ISSS. 25:1--25:10.  Sunha Ahn and Sharad Malik. 2014. Automated firmware testing using firmware-hardware interaction patterns. In CODES+ISSS. 25:1--25:10.","DOI":"10.1145\/2656075.2656080"},{"key":"e_1_3_2_2_9_1","doi-asserted-by":"crossref","unstructured":"V. Alimi S. Vernois and C. Rosenberger. 2014. Analysis of embedded applications by evolutionary fuzzing. In HPCS. 551--557.  V. Alimi S. Vernois and C. Rosenberger. 2014. Analysis of embedded applications by evolutionary fuzzing. In HPCS. 551--557.","DOI":"10.1109\/HPCSim.2014.6903734"},{"key":"e_1_3_2_2_10_1","unstructured":"Drew Davidson Benjamin Moench Thomas Ristenpart and Somesh Jha. 2013. FIE on Firmware: Finding Vulnerabilities in Embedded Systems Using Symbolic Execution. In USENIX Security.  Drew Davidson Benjamin Moench Thomas Ristenpart and Somesh Jha. 2013. FIE on Firmware: Finding Vulnerabilities in Embedded Systems Using Symbolic Execution. In USENIX Security."},{"volume-title":"Best Practices in Virtual Prototyping","author":"Schutter Tom De","key":"e_1_3_2_2_11_1","unstructured":"Tom De Schutter . 2014. Better Software . Faster! : Best Practices in Virtual Prototyping . Synopsys Press . Tom De Schutter. 2014. Better Software. Faster!: Best Practices in Virtual Prototyping .Synopsys Press."},{"key":"e_1_3_2_2_12_1","doi-asserted-by":"crossref","unstructured":"Vladimir Herdt Daniel Gro\u00dfe and Rolf Drechsler. 2020 a. Closing the RISC-V Compliance Gap: Looking from the Negative Testing Side. In DAC.  Vladimir Herdt Daniel Gro\u00dfe and Rolf Drechsler. 2020 a. Closing the RISC-V Compliance Gap: Looking from the Negative Testing Side. In DAC.","DOI":"10.1109\/DAC18072.2020.9218629"},{"key":"e_1_3_2_2_13_1","doi-asserted-by":"crossref","unstructured":"Vladimir Herdt Daniel Gro\u00dfe Hoang M. Le and Rolf Drechsler. 2018. Extensible and Configurable RISC-V based Virtual Prototype. In FDL. 5--16.  Vladimir Herdt Daniel Gro\u00dfe Hoang M. Le and Rolf Drechsler. 2018. Extensible and Configurable RISC-V based Virtual Prototype. In FDL. 5--16.","DOI":"10.1109\/FDL.2018.8524047"},{"key":"e_1_3_2_2_14_1","doi-asserted-by":"crossref","unstructured":"Vladimir Herdt Daniel Gro\u00dfe Hoang M. Le and Rolf Drechsler. 2019 a. Early Concolic Testing of Embedded Binaries with Virtual Prototypes: A RISC-V Case Study. In DAC.  Vladimir Herdt Daniel Gro\u00dfe Hoang M. Le and Rolf Drechsler. 2019 a. Early Concolic Testing of Embedded Binaries with Virtual Prototypes: A RISC-V Case Study. In DAC.","DOI":"10.1145\/3316781.3317807"},{"key":"e_1_3_2_2_15_1","doi-asserted-by":"crossref","unstructured":"Vladimir Herdt Daniel Gro\u00dfe Hoang M. Le and Rolf Drechsler. 2019 b. Verifying Instruction Set Simulators using Coverage-guided Fuzzing. In DATE. 360--365.  Vladimir Herdt Daniel Gro\u00dfe Hoang M. Le and Rolf Drechsler. 2019 b. Verifying Instruction Set Simulators using Coverage-guided Fuzzing. In DATE. 360--365.","DOI":"10.23919\/DATE.2019.8714912"},{"key":"e_1_3_2_2_16_1","volume-title":"2020 b. RISC-V based Virtual Prototype: An Extensible and Configurable Platform for the System-level. JSA","author":"Herdt Vladimir","year":"2020","unstructured":"Vladimir Herdt , Daniel Gro\u00dfe , Pascal Pieper , and Rolf Drechsler . 2020 b. RISC-V based Virtual Prototype: An Extensible and Configurable Platform for the System-level. JSA ( 2020 ). Vladimir Herdt, Daniel Gro\u00dfe, Pascal Pieper, and Rolf Drechsler. 2020 b. RISC-V based Virtual Prototype: An Extensible and Configurable Platform for the System-level. JSA (2020)."},{"key":"e_1_3_2_2_17_1","doi-asserted-by":"crossref","unstructured":"Alex Horn Michael Tautschnig Celina G. Val Lihao Liang Tom Melham Jim Grundy and Daniel Kroening. 2013. Formal co-validation of low-level hardware\/software interfaces. In FMCAD. 121--128.  Alex Horn Michael Tautschnig Celina G. Val Lihao Liang Tom Melham Jim Grundy and Daniel Kroening. 2013. Formal co-validation of low-level hardware\/software interfaces. In FMCAD. 121--128.","DOI":"10.1109\/FMCAD.2013.6679400"},{"key":"e_1_3_2_2_18_1","first-page":"1","article-title":"Formal security verification of concurrent firmware in SoCs using instruction-level abstraction for hardware","volume":"91","author":"Huang Bo-Yuan","year":"2018","unstructured":"Bo-Yuan Huang , Sayak Ray , Aarti Gupta , Jason M. Fung , and Sharad Malik . 2018 . Formal security verification of concurrent firmware in SoCs using instruction-level abstraction for hardware . In DAC. 91 : 1 -- 91 :6. Bo-Yuan Huang, Sayak Ray, Aarti Gupta, Jason M. Fung, and Sharad Malik. 2018. Formal security verification of concurrent firmware in SoCs using instruction-level abstraction for hardware. In DAC. 91:1--91:6.","journal-title":"DAC."},{"key":"e_1_3_2_2_19_1","doi-asserted-by":"crossref","unstructured":"Nassima Kamel and Jean-Louis Lanet. 2013. Analysis of HTTP Protocol Implementation in Smart Card Embedded Web Server. In IJINS. 417--428.  Nassima Kamel and Jean-Louis Lanet. 2013. Analysis of HTTP Protocol Implementation in Smart Card Embedded Web Server. In IJINS. 417--428.","DOI":"10.11591\/ijins.v2i5.3115"},{"key":"e_1_3_2_2_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/2590296.2590301"},{"key":"e_1_3_2_2_21_1","doi-asserted-by":"crossref","unstructured":"K. Koscher A. Czeskis F. Roesner S. Patel T. Kohno S. Checkoway D. McCoy B. Kantor D. Anderson H. Shacham and S. Savage. 2010. Experimental Security Analysis of a Modern Automobile. In IEEE S & P. 447--462.  K. Koscher A. Czeskis F. Roesner S. Patel T. Kohno S. Checkoway D. McCoy B. Kantor D. Anderson H. Shacham and S. Savage. 2010. Experimental Security Analysis of a Modern Automobile. In IEEE S & P. 447--462.","DOI":"10.1109\/SP.2010.34"},{"key":"e_1_3_2_2_22_1","doi-asserted-by":"crossref","unstructured":"H. Lee K. Choi K. Chung J. Kim and K. Yim. 2015. Fuzzing CAN Packets into Automobiles. In AINA. 817--821.  H. Lee K. Choi K. Chung J. Kim and K. Yim. 2015. Fuzzing CAN Packets into Automobiles. In AINA. 817--821.","DOI":"10.1109\/AINA.2015.274"},{"key":"e_1_3_2_2_23_1","volume-title":"Giampaolo Fresi Roglia, and Danilo Bruschi","author":"Martignoni Lorenzo","year":"2009","unstructured":"Lorenzo Martignoni , Roberto Paleari , Giampaolo Fresi Roglia, and Danilo Bruschi . 2009 . Testing CPU Emulators. In ISSTA. 261--272. Lorenzo Martignoni, Roberto Paleari, Giampaolo Fresi Roglia, and Danilo Bruschi. 2009. Testing CPU Emulators. In ISSTA. 261--272."},{"key":"e_1_3_2_2_24_1","volume-title":"An Empirical Study of the Reliability of UNIX Utilities. Commun. ACM","author":"Miller Barton P.","year":"1990","unstructured":"Barton P. Miller , Louis Fredriksen , and Bryan So. 1990. An Empirical Study of the Reliability of UNIX Utilities. Commun. ACM ( 1990 ), 32--44. Barton P. Miller, Louis Fredriksen, and Bryan So. 1990. An Empirical Study of the Reliability of UNIX Utilities. Commun. ACM (1990), 32--44."},{"key":"e_1_3_2_2_25_1","doi-asserted-by":"crossref","unstructured":"Marius Muench Jan Stijohann Frank Kargl Aur\u00e9lien Francillon and Davide Balzarotti. 2018. What You Corrupt Is Not What You Crash: Challenges in Fuzzing Embedded Devices. In NDSS.  Marius Muench Jan Stijohann Frank Kargl Aur\u00e9lien Francillon and Davide Balzarotti. 2018. What You Corrupt Is Not What You Crash: Challenges in Fuzzing Embedded Devices. In NDSS.","DOI":"10.14722\/ndss.2018.23166"},{"key":"e_1_3_2_2_26_1","unstructured":"Collin Mulliner Nico Golde and Jean-Pierre Seifert. 2011. SMS of Death: From Analyzing to Attacking Mobile Phones on a Large Scale. In USENIX Security. 24--24.  Collin Mulliner Nico Golde and Jean-Pierre Seifert. 2011. SMS of Death: From Analyzing to Attacking Mobile Phones on a Large Scale. In USENIX Security. 24--24."},{"key":"e_1_3_2_2_27_1","doi-asserted-by":"crossref","unstructured":"Fabian van den Broek Brinio Hond and Arturo Cedillo Torres. 2014. Security Testing of GSM Implementations. In ESSoS. 179--195.  Fabian van den Broek Brinio Hond and Arturo Cedillo Torres. 2014. Security Testing of GSM Implementations. In ESSoS. 179--195.","DOI":"10.1007\/978-3-319-04897-0_12"},{"key":"e_1_3_2_2_28_1","volume-title":"AVATAR: A framework to support dynamic security analysis of embedded systems' firmwares. In NDSS.","author":"Zaddach Jonas","year":"2014","unstructured":"Jonas Zaddach , Luca Bruno , Aurelien Francillon , and Davide Balzarotti . 2014 . AVATAR: A framework to support dynamic security analysis of embedded systems' firmwares. In NDSS. Jonas Zaddach, Luca Bruno, Aurelien Francillon, and Davide Balzarotti. 2014. AVATAR: A framework to support dynamic security analysis of embedded systems' firmwares. In NDSS."}],"event":{"name":"GLSVLSI '20: Great Lakes Symposium on VLSI 2020","acronym":"GLSVLSI '20","location":"Virtual Event China"},"container-title":["Proceedings of the 2020 on Great Lakes Symposium on VLSI"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3386263.3406899","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3386263.3406899","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T23:13:13Z","timestamp":1750201993000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3386263.3406899"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,9,7]]},"references-count":28,"alternative-id":["10.1145\/3386263.3406899","10.1145\/3386263"],"URL":"https:\/\/doi.org\/10.1145\/3386263.3406899","relation":{},"subject":[],"published":{"date-parts":[[2020,9,7]]},"assertion":[{"value":"2020-09-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}