{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,23]],"date-time":"2026-02-23T23:43:01Z","timestamp":1771890181930,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":30,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,8,29]],"date-time":"2023-08-29T00:00:00Z","timestamp":1693267200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,8,29]]},"DOI":"10.1145\/3600160.3600181","type":"proceedings-article","created":{"date-parts":[[2023,8,9]],"date-time":"2023-08-09T22:54:41Z","timestamp":1691621681000},"page":"1-10","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Linux-based IoT Benchmark Generator For Firmware Security Analysis Tools"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-9473-5638","authenticated-orcid":false,"given":"Dairo","family":"de Ruck","sequence":"first","affiliation":[{"name":"KU Leuven, imec-DistriNet, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4626-9921","authenticated-orcid":false,"given":"Victor","family":"Goeman","sequence":"additional","affiliation":[{"name":"KU Leuven, imec-DistriNet, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0225-9705","authenticated-orcid":false,"given":"Michiel","family":"Willocx","sequence":"additional","affiliation":[{"name":"KU Leuven, imec-DistriNet, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1863-1172","authenticated-orcid":false,"given":"Jorn","family":"Lapon","sequence":"additional","affiliation":[{"name":"KU Leuven, imec-DistriNet, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9255-4902","authenticated-orcid":false,"given":"Vincent","family":"Naessens","sequence":"additional","affiliation":[{"name":"KU Leuven, imec-DistriNet, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,8,29]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"1999. CVE - Home. https:\/\/cve.mitre.org\/cve\/"},{"key":"e_1_3_2_1_2_1","unstructured":"1999. CWE - Common Weakness Enumeration. https:\/\/cwe.mitre.org\/"},{"key":"e_1_3_2_1_3_1","unstructured":"2014. CoAP - RFC 7252 Constrain Application Protocol. https:\/\/coap.technology\/"},{"key":"e_1_3_2_1_4_1","unstructured":"2017. The Firmware Analysis and Comparison Tool (FACT). https:\/\/github.com\/fkie-cad\/FACT_core"},{"key":"e_1_3_2_1_5_1","unstructured":"2019. Binary Hardening in IoT products. https:\/\/cyber-itl.org\/2019\/08\/26\/iot-data-writeup.html"},{"key":"e_1_3_2_1_6_1","unstructured":"2019. Description. https:\/\/github.com\/OWASP\/IoTGoat original-date: 2019-10-03T18:39:12Z."},{"key":"e_1_3_2_1_7_1","unstructured":"2022. CWE - 2022 CWE Top 25 Most Dangerous Software Weaknesses. https:\/\/cwe.mitre.org\/top25\/archive\/2022\/2022_cwe_top25.html"},{"key":"e_1_3_2_1_8_1","unstructured":"2022. MQTT: The Standard for IoT Messaging. https:\/\/mqtt.org\/"},{"key":"e_1_3_2_1_9_1","unstructured":"2022. Vulnerable code snippets. https:\/\/github.com\/snoopysecurity\/Vulnerable-Code-Snippets"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2019.00035"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2019.00013"},{"key":"e_1_3_2_1_12_1","unstructured":"CERTCC. 2017. TROMMEL. https:\/\/github.com\/CERTCC\/trommel"},{"key":"e_1_3_2_1_13_1","unstructured":"Dairo de Ruck Victor Goeman Michiel Willocx Jorn Lapon and Vincent Naessens. 2023. B4IoT Platform Repository. https:\/\/github.com\/B4IoT\/B4IoT"},{"key":"e_1_3_2_1_14_1","volume-title":"Docker: Accelerated, Containerized Application Development. https:\/\/www.docker.com\/","year":"2013","unstructured":"Docker. 2013. Docker: Accelerated, Containerized Application Development. https:\/\/www.docker.com\/"},{"key":"e_1_3_2_1_15_1","unstructured":"Docker. 2022. Docker | Leverage multi-CPU architecture support. https:\/\/docs.docker.com\/desktop\/multi-arch\/"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","unstructured":"Gaojian Hao Feng Li Wei Huo Qing Sun Wei Wang Xinhua Li and Wei Zou. 2019. Constructing Benchmarks for Supporting Explainable Evaluations of Static Application Security Testing Tools. In 2019 International Symposium on Theoretical Aspects of Software Engineering (TASE). 65\u201372. https:\/\/doi.org\/10.1109\/TASE.2019.00-18","DOI":"10.1109\/TASE.2019.00-18"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","unstructured":"Yuancheng Jiang Roland\u00a0H.C. Yap Zhenkai Liang and Hubert Rosier. 2022. RecIPE: Revisiting the Evaluation of Memory Error Defenses. https:\/\/dl.acm.org\/doi\/10.1145\/3488932.3524127 doi: 10.1145\/3488932.3524127.","DOI":"10.1145\/3488932.3524127"},{"key":"e_1_3_2_1_18_1","unstructured":"Christian\u00a0Ams\u00fcss John Preu\u00df\u00a0Mattsson G\u00f6ran\u00a0Selander. 2023. Amplification Attacks Using the Constrained Application Protocol (CoAP). https:\/\/datatracker.ietf.org\/doc\/html\/draft-irtf-t2trg-amplification-attacks-01"},{"key":"e_1_3_2_1_19_1","unstructured":"Cruise LLC. 2019. FwAnalyzer (Firmware Analyzer). https:\/\/github.com\/cruise-automation\/fwanalyzer"},{"key":"e_1_3_2_1_20_1","unstructured":"Pascal\u00a0Eckman Michael\u00a0Messner. 2022. EMBA. https:\/\/github.com\/e-m-b-a\/emba"},{"key":"e_1_3_2_1_21_1","unstructured":"NIST. 2010. Juliet Test Suite for C\/C++ 1.3. https:\/\/samate.nist.gov\/SARD"},{"key":"e_1_3_2_1_22_1","unstructured":"OWASP. 2021. OWASP Benchmark | OWASP Foundation. https:\/\/owasp.org\/www-project-benchmark\/"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/ESEM.2017.24"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","unstructured":"Zach Shelby Klaus Hartke and Carsten Bormann. 2014. The Constrained Application Protocol (CoAP). https:\/\/datatracker.ietf.org\/doc\/rfc7252 doi: 10.17487\/RFC7252.","DOI":"10.17487\/RFC7252"},{"key":"e_1_3_2_1_25_1","unstructured":"Craig Smith. 2016. firmwalker. https:\/\/github.com\/craigz28\/firmwalker"},{"key":"e_1_3_2_1_26_1","unstructured":"OWASP IoT\u00a0Security Team. 2018. OWASP Internet of Things Project - OWASP. https:\/\/wiki.owasp.org\/index.php\/OWASP_Internet_of_Things_Project#tab=Main"},{"key":"e_1_3_2_1_27_1","unstructured":"Joe Testa. 2023. ssh-audit. https:\/\/github.com\/jtesta\/ssh-audit original-date: 2017-09-19T19:24:59Z."},{"key":"e_1_3_2_1_28_1","unstructured":"Evan You. 2022. Vue.js - The Progressive JavaScript Framework | Vue.js. https:\/\/vuejs.org\/"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2022.24031"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/3477314.3508389"}],"event":{"name":"ARES 2023: The 18th International Conference on Availability, Reliability and Security","location":"Benevento Italy","acronym":"ARES 2023"},"container-title":["Proceedings of the 18th International Conference on Availability, Reliability and Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3600160.3600181","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3600160.3600181","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:36:13Z","timestamp":1750178173000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3600160.3600181"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,8,29]]},"references-count":30,"alternative-id":["10.1145\/3600160.3600181","10.1145\/3600160"],"URL":"https:\/\/doi.org\/10.1145\/3600160.3600181","relation":{},"subject":[],"published":{"date-parts":[[2023,8,29]]},"assertion":[{"value":"2023-08-29","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}