{"id":"https://openalex.org/W4412444562","doi":"https://doi.org/10.1109/access.2025.3588950","title":"Transformer-Based Vulnerability Detection in IoT Firmware Binaries Using Opcode Sequences","display_name":"Transformer-Based Vulnerability Detection in IoT Firmware Binaries Using Opcode Sequences","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W4412444562","doi":"https://doi.org/10.1109/access.2025.3588950"},"language":"en","primary_location":{"id":"doi:10.1109/access.2025.3588950","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3588950","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2025.3588950","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5082447695","display_name":"M Nandish","orcid":null},"institutions":[{"id":"https://openalex.org/I65674248","display_name":"Visvesvaraya Technological University","ror":"https://ror.org/00ha14p11","country_code":"IN","type":"education","lineage":["https://openalex.org/I65674248"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"M. Nandish","raw_affiliation_strings":["Department of Computer Science and Engineering, JNNCE Shivamogga, Visvesvaraya Technological University, Belagavi, Karnataka, India"],"raw_orcid":"https://orcid.org/0009-0005-7979-0758","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, JNNCE Shivamogga, Visvesvaraya Technological University, Belagavi, Karnataka, India","institution_ids":["https://openalex.org/I65674248"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5025789402","display_name":"Jalesh Kumar","orcid":"https://orcid.org/0000-0001-9600-1398"},"institutions":[{"id":"https://openalex.org/I65674248","display_name":"Visvesvaraya Technological University","ror":"https://ror.org/00ha14p11","country_code":"IN","type":"education","lineage":["https://openalex.org/I65674248"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Jalesh Kumar","raw_affiliation_strings":["Department of Computer Science and Engineering, JNNCE Shivamogga, Visvesvaraya Technological University, Belagavi, Karnataka, India"],"raw_orcid":"https://orcid.org/0000-0001-9600-1398","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, JNNCE Shivamogga, Visvesvaraya Technological University, Belagavi, Karnataka, India","institution_ids":["https://openalex.org/I65674248"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5027982438","display_name":"H. G. Mohan","orcid":null},"institutions":[{"id":"https://openalex.org/I65674248","display_name":"Visvesvaraya Technological University","ror":"https://ror.org/00ha14p11","country_code":"IN","type":"education","lineage":["https://openalex.org/I65674248"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"H. G. Mohan","raw_affiliation_strings":["Department of Computer Science and Engineering, JNNCE Shivamogga, Visvesvaraya Technological University, Belagavi, Karnataka, India"],"raw_orcid":"https://orcid.org/0000-0001-9064-1749","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, JNNCE Shivamogga, Visvesvaraya Technological University, Belagavi, Karnataka, India","institution_ids":["https://openalex.org/I65674248"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5108137171","display_name":"M V Manoj Kumar","orcid":null},"institutions":[{"id":"https://openalex.org/I1333540553","display_name":"Nitte University","ror":"https://ror.org/029nydt37","country_code":"IN","type":"education","lineage":["https://openalex.org/I1333540553"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"M. V. Manoj Kumar","raw_affiliation_strings":["Department of Information Science and Engineering, Nitte Meenakshi Institute of Technology (NMIT), Nitte (Deemed to be University), Bengaluru, India","Department of Information Science and Engineering, Nitte Meenakshi Institute of Technology, Bangalore, India"],"raw_orcid":"https://orcid.org/0000-0002-9848-6234","affiliations":[{"raw_affiliation_string":"Department of Information Science and Engineering, Nitte Meenakshi Institute of Technology (NMIT), Nitte (Deemed to be University), Bengaluru, India","institution_ids":["https://openalex.org/I1333540553"]},{"raw_affiliation_string":"Department of Information Science and Engineering, Nitte Meenakshi Institute of Technology, Bangalore, India","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":1.064,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.77436467,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":"13","issue":null,"first_page":"124250","last_page":"124263"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9810000061988831,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9810000061988831,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9779999852180481,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/opcode","display_name":"Opcode","score":0.907616376876831},{"id":"https://openalex.org/keywords/firmware","display_name":"Firmware","score":0.8464715480804443},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7483519315719604},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.48251673579216003},{"id":"https://openalex.org/keywords/microcode","display_name":"Microcode","score":0.47444212436676025},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.4498327672481537},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.3693433105945587},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.30927181243896484},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.16555148363113403}],"concepts":[{"id":"https://openalex.org/C52173422","wikidata":"https://www.wikidata.org/wiki/Q766483","display_name":"Opcode","level":2,"score":0.907616376876831},{"id":"https://openalex.org/C67212190","wikidata":"https://www.wikidata.org/wiki/Q104851","display_name":"Firmware","level":2,"score":0.8464715480804443},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7483519315719604},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.48251673579216003},{"id":"https://openalex.org/C22174128","wikidata":"https://www.wikidata.org/wiki/Q175869","display_name":"Microcode","level":2,"score":0.47444212436676025},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.4498327672481537},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.3693433105945587},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.30927181243896484},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.16555148363113403}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2025.3588950","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3588950","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:518ac98b8d1b428093446eb788fd332e","is_oa":true,"landing_page_url":"https://doaj.org/article/518ac98b8d1b428093446eb788fd332e","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 13, Pp 124250-124263 (2025)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2025.3588950","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3588950","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":33,"referenced_works":["https://openalex.org/W2781491433","https://openalex.org/W2792256830","https://openalex.org/W2885030880","https://openalex.org/W2962960733","https://openalex.org/W3161071537","https://openalex.org/W3166095789","https://openalex.org/W3188809990","https://openalex.org/W4312690534","https://openalex.org/W4313203541","https://openalex.org/W4313330817","https://openalex.org/W4324007217","https://openalex.org/W4328028517","https://openalex.org/W4361988647","https://openalex.org/W4377984372","https://openalex.org/W4380763529","https://openalex.org/W4381050443","https://openalex.org/W4384345698","https://openalex.org/W4386573984","https://openalex.org/W4386608469","https://openalex.org/W4390101654","https://openalex.org/W4396594820","https://openalex.org/W4396759219","https://openalex.org/W4396768989","https://openalex.org/W4400579932","https://openalex.org/W4400877812","https://openalex.org/W4402774224","https://openalex.org/W4405790807","https://openalex.org/W4405790844","https://openalex.org/W4407134909","https://openalex.org/W4407433451","https://openalex.org/W4407938217","https://openalex.org/W4410841413","https://openalex.org/W6767260250"],"related_works":["https://openalex.org/W1966431236","https://openalex.org/W608147619","https://openalex.org/W1984676852","https://openalex.org/W2068967940","https://openalex.org/W270731569","https://openalex.org/W4252104358","https://openalex.org/W2062160093","https://openalex.org/W2025981307","https://openalex.org/W1998626163","https://openalex.org/W2056006243"],"abstract_inverted_index":{"Firmware":[0],"security":[1],"is":[2,17,22,66,152],"critical":[3],"for":[4,109],"maintaining":[5],"the":[6,25,30,36,42,52,55,92,116,130,173,194],"integrity":[7],"of":[8,27,33,38,44,140,204],"embedded":[9],"systems.":[10],"However,":[11],"detecting":[12],"vulnerabilities":[13,70],"in":[14,71,115],"firmware":[15,72,75,141,156],"binaries":[16,76,157],"a":[18,62],"challenging":[19],"task.":[20],"This":[21],"due":[23],"to":[24,68,79,91],"absence":[26],"source":[28],"code,":[29,142],"inherent":[31],"complexity":[32],"binary":[34],"structures,":[35],"diversity":[37],"hardware":[39],"architecture,":[40],"and":[41,87,102,124,147,165,182,199,206],"difficulty":[43],"extracting":[45],"deep":[46,137],"contextual":[47,138],"representations":[48,139],"from":[49,159],"binaries.":[50,73],"In":[51],"proposed":[53,93,117,134,174],"approach,":[54],"Decoding-enhanced":[56],"BERT":[57],"with":[58],"Disentangled":[59],"Attention":[60],"(DeBERTa),":[61],"novel":[63],"transformer-based":[64],"model":[65,97,135,176],"used":[67,114],"detect":[69],"Initially,":[74],"are":[77,84,107,119],"disassembled":[78],"extract":[80],"opcode":[81,100,195],"sequences,":[82],"which":[83,106,127],"then":[85],"tokenized":[86],"encoded":[88],"as":[89],"inputs":[90],"DeBERTa":[94],"model.":[95],"The":[96,112,133,150,189],"processes":[98],"instruction":[99],"sequences":[101],"generates":[103],"meaningful":[104],"embeddings,":[105],"utilized":[108],"classification":[110],"tasks.":[111],"classifiers":[113],"approach":[118],"Random":[120],"Forest,":[121],"Multi-Layer":[122],"Perceptron,":[123],"GAN-based":[125],"classifier,":[126],"operate":[128],"on":[129,154],"DeBERTa-generated":[131],"embeddings.":[132],"learns":[136],"effectively":[143,198],"capturing":[144],"intricate":[145],"syntactic":[146],"semantic":[148],"relationships.":[149],"evaluation":[151],"conducted":[153],"IoT":[155,161,208],"collected":[158],"real-world":[160],"projects,":[162],"reflecting":[163],"practical":[164],"diverse":[166],"vulnerability":[167],"scenarios.":[168],"Experimental":[169],"results":[170],"demonstrate":[171,192],"that":[172,193],"DeBERTa-based":[175],"achieves":[177],"97%":[178,180],"accuracy,":[179],"recall,":[181],"94.6%":[183],"F1-score,":[184],"outperforming":[185],"conventional":[186],"embedding":[187],"techniques.":[188],"experimental":[190],"findings":[191],"sequence":[196],"feature":[197],"reliably":[200],"detects":[201],"different":[202],"types":[203],"vulnerable":[205],"benign":[207],"samples.":[209]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}