English
Related papers

Related papers: A Mutation Framework for Evaluating Security Analy…

200 papers

This paper presents a fully automated static analysis approach and a tool, Taint-Things, for the identification of tainted flows in SmartThings IoT apps. Taint-Things accurately identifies all tainted flows reported by one of the…

Software Engineering · Computer Science 2022-02-08 Bara' Nazzal , Manar H. Alalfi

This paper presents an approach for identification of vulnerable IoT applications. The approach focuses on a category of vulnerabilities that leads to sensitive information leakage which can be identified by using taint flow analysis.…

Cryptography and Security · Computer Science 2022-01-11 Hajra Naeem , Manar H. Alalfi

Broadly defined as the Internet of Things (IoT), the growth of commodity devices that integrate physical processes with digital connectivity has had profound effects on society--smart homes, personal monitoring devices, enhanced…

Cryptography and Security · Computer Science 2018-02-26 Z. Berkay Celik , Leonardo Babun , Amit K. Sikder , Hidayet Aksu , Gang Tan , Patrick McDaniel , A. Selcuk Uluagac

Internet of Things (IoT) based applications face an increasing number of potential security risks, which need to be systematically assessed and addressed. Expert-based manual assessment of IoT security is a predominant approach, which is…

Cryptography and Security · Computer Science 2021-09-10 Xuanyu Duan , Mengmeng Ge , Triet H. M. Le , Faheem Ullah , Shang Gao , Xuequan Lu , M. Ali Babar

With the rapid growth in the number of IoT devices being added to the network, a major concern that arises is the security of these systems. As these devices are resource constrained, safety measures are difficult to implement on the edge.…

Cryptography and Security · Computer Science 2022-10-12 A. Bhanpurawala , K. El-Fakih , I. Zualkernan

The diversity of web configuration interfaces for IoT devices has exacerbated issues such as inadequate permission controls and insecure interfaces, resulting in various vulnerabilities. Owing to the varying interface configurations across…

Cryptography and Security · Computer Science 2025-04-02 Jiahui Xiang , Lirong Fu , Tong Ye , Peiyu Liu , Huan Le , Liming Zhu , Wenhai Wang

Taint analysis is a security analysis technique used to track the flow of potentially dangerous data through an application and its dependent libraries. Investigating why certain unexpected flows appear and why expected flows are missing is…

Software Engineering · Computer Science 2025-12-05 Burak Yetiştiren , Hong Jin Kang , Miryung Kim

Threat modeling and risk assessments are common ways to identify, estimate, and prioritize risk to national, organizational, and individual operations and assets. Several threat modeling and risk assessment approaches have been proposed…

Cryptography and Security · Computer Science 2021-10-18 Paul Griffioen , Bruno Sinopoli

Many important security properties can be formulated in terms of flows of tainted data, and improved taint analysis tools to prevent such flows are of critical need. Most existing taint analyses use whole-program static analysis, leading to…

Programming Languages · Computer Science 2025-05-02 Nima Karimipour , Kanak Das , Manu Sridharan , Behnaz Hassanshahi

Internet of Things (IoT) has been rapidly growing in the past few years in all life disciplines. IoT provides automation and smart control to its users in different domains such as home automation, healthcare systems, automotive, and many…

Cryptography and Security · Computer Science 2022-03-04 Lobna Abuserrieh , Manar H. Alalfi

Protocol fuzzing is a scalable and cost-effective technique for identifying security vulnerabilities in deployed Internet of Things devices. During their operational phase, IoT devices often run lightweight servers to handle user…

Cryptography and Security · Computer Science 2025-09-12 Priyanka Rushikesh Chaudhary , Rajib Ranjan Maiti

Previous work has shown that taint analyses are only useful if correctly customized to the context in which they are used. Existing domain-specific languages (DSLs) allow such customization through the definition of deny-listing data-flow…

Programming Languages · Computer Science 2022-04-08 Goran Piskachev , Johannes Späth , Ingo Budde , Eric Bodden

We describe a framework and tool specification that represents a step towards cybersecurity testing and monitoring of IoT ecosystems. We begin with challenges from a previous paper and discuss an integrated approach and tools to enable…

The Internet of Things (IoT) is an emerging concept that directly links to the billions of physical items, or "things", that are connected to the Internet and are all gathering and exchanging information between devices and systems.…

Cryptography and Security · Computer Science 2023-04-28 Nibir Chandra Mandal , G. M. Shahariar , Md. Tanvir Rouf Shawon

Smart homes, enterprises, and cities are increasingly being equipped with a plethora of Internet of Things (IoT), ranging from smart-lights to security cameras. While IoT networks have the potential to benefit our lives, they create privacy…

Networking and Internet Architecture · Computer Science 2020-01-30 Arunan Sivanathan

Given that security threats and privacy breaches are com- monplace today, it is an important problem for one to know whether their device(s) are in a "good state of security", or is there a set of high- risk vulnerabilities that need to be…

Cryptography and Security · Computer Science 2017-04-12 Ashish Kundu , Chinmay Kundu , Karan K. Budhraja

The increased reliance on the Internet and the corresponding surge in connectivity demand has led to a significant growth in Internet-of-Things (IoT) devices. The continued deployment of IoT devices has in turn led to an increase in network…

Cryptography and Security · Computer Science 2020-12-22 MohammadNoor Injadat , Abdallah Moubayed , Abdallah Shami

IoT devices are increasingly being implicated in cyber-attacks, driving community concern about the risks they pose to critical infrastructure, corporations, and citizens. In order to reduce this risk, the IETF is pushing IoT vendors to…

Cryptography and Security · Computer Science 2023-01-19 Ayyoob Hamza , Dinesha Ranathunga , H. Habibi Gharakheili , Matthew Roughan , Vijay Sivaraman

Embedded devices are specialised devices designed for one or only a few purposes. They are often part of a larger system, through wired or wireless connection. Those embedded devices that are connected to other computers or embedded systems…

Artificial Intelligence · Computer Science 2023-11-21 Gergely Hevesi

IoT devices are increasingly being implicated in cyber-attacks, raising community concern about the risks they pose to critical infrastructure, corporations, and citizens. In order to reduce this risk, the IETF is pushing IoT vendors to…

Networking and Internet Architecture · Computer Science 2023-01-18 Ayyoob Hamza , Dinesha Ranathunga , Hassan Habibi Gharakheili , Theophilus A. Benson , Matthew Roughan , Vijay Sivaraman
‹ Prev 1 2 3 10 Next ›