{"id":"https://openalex.org/W3198780152","doi":"https://doi.org/10.1109/cns53000.2021.9705033","title":"EthClipper: A Clipboard Meddling Attack on Hardware Wallets with Address Verification Evasion","display_name":"EthClipper: A Clipboard Meddling Attack on Hardware Wallets with Address Verification Evasion","publication_year":2021,"publication_date":"2021-10-04","ids":{"openalex":"https://openalex.org/W3198780152","doi":"https://doi.org/10.1109/cns53000.2021.9705033","mag":"3198780152"},"language":"en","primary_location":{"id":"doi:10.1109/cns53000.2021.9705033","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cns53000.2021.9705033","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE Conference on Communications and Network Security (CNS)","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5085356579","display_name":"Nikolay Ivanov","orcid":"https://orcid.org/0000-0002-2325-2847"},"institutions":[{"id":"https://openalex.org/I87216513","display_name":"Michigan State University","ror":"https://ror.org/05hs6h993","country_code":"US","type":"education","lineage":["https://openalex.org/I87216513"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Nikolay Ivanov","raw_affiliation_strings":["Michigan State University,Computer Science &#x0026; Engineering,East Lansing,MI,USA"],"affiliations":[{"raw_affiliation_string":"Michigan State University,Computer Science &#x0026; Engineering,East Lansing,MI,USA","institution_ids":["https://openalex.org/I87216513"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5084076598","display_name":"Qiben Yan","orcid":"https://orcid.org/0000-0003-0551-2163"},"institutions":[{"id":"https://openalex.org/I87216513","display_name":"Michigan State University","ror":"https://ror.org/05hs6h993","country_code":"US","type":"education","lineage":["https://openalex.org/I87216513"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Qiben Yan","raw_affiliation_strings":["Michigan State University,Computer Science &#x0026; Engineering,East Lansing,MI,USA"],"affiliations":[{"raw_affiliation_string":"Michigan State University,Computer Science &#x0026; Engineering,East Lansing,MI,USA","institution_ids":["https://openalex.org/I87216513"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5085356579"],"corresponding_institution_ids":["https://openalex.org/I87216513"],"apc_list":null,"apc_paid":null,"fwci":1.29581573,"has_fulltext":false,"cited_by_count":12,"citation_normalized_percentile":{"value":0.8158835,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"191","last_page":"199"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8130780458450317},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6256856322288513},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.538401186466217},{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.4526231288909912},{"id":"https://openalex.org/keywords/evasion","display_name":"Evasion (ethics)","score":0.4494117498397827},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.43320178985595703},{"id":"https://openalex.org/keywords/computer-hardware","display_name":"Computer hardware","score":0.3592069745063782}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8130780458450317},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6256856322288513},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.538401186466217},{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.4526231288909912},{"id":"https://openalex.org/C2781251061","wikidata":"https://www.wikidata.org/wiki/Q5416089","display_name":"Evasion (ethics)","level":3,"score":0.4494117498397827},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.43320178985595703},{"id":"https://openalex.org/C9390403","wikidata":"https://www.wikidata.org/wiki/Q3966","display_name":"Computer hardware","level":1,"score":0.3592069745063782},{"id":"https://openalex.org/C8891405","wikidata":"https://www.wikidata.org/wiki/Q1059","display_name":"Immune system","level":2,"score":0.0},{"id":"https://openalex.org/C203014093","wikidata":"https://www.wikidata.org/wiki/Q101929","display_name":"Immunology","level":1,"score":0.0},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/cns53000.2021.9705033","is_oa":false,"landing_page_url":"https://doi.org/10.1109/cns53000.2021.9705033","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE Conference on Communications and Network Security (CNS)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":24,"referenced_works":["https://openalex.org/W1892798954","https://openalex.org/W2053395706","https://openalex.org/W2230451675","https://openalex.org/W2269742369","https://openalex.org/W2293367740","https://openalex.org/W2295731716","https://openalex.org/W2765578266","https://openalex.org/W2915893383","https://openalex.org/W2947113524","https://openalex.org/W2954789397","https://openalex.org/W2955343150","https://openalex.org/W2962794222","https://openalex.org/W2994999940","https://openalex.org/W3002401090","https://openalex.org/W3134998638","https://openalex.org/W3151748982","https://openalex.org/W3156428445","https://openalex.org/W3164834272","https://openalex.org/W4211217302","https://openalex.org/W4236333147","https://openalex.org/W6693402354","https://openalex.org/W6696870837","https://openalex.org/W6793285265","https://openalex.org/W7039504972"],"related_works":["https://openalex.org/W2097492617","https://openalex.org/W2753240997","https://openalex.org/W4387298227","https://openalex.org/W2526398307","https://openalex.org/W2470029541","https://openalex.org/W4387065217","https://openalex.org/W4285357721","https://openalex.org/W4368275542","https://openalex.org/W2470502009","https://openalex.org/W3152957156"],"abstract_inverted_index":{"Hardware":[0],"wallets":[1,72,104,221],"are":[2,18,54],"designed":[3],"to":[4,20,41,74,120,128,185,199],"withstand":[5],"malware":[6,110],"attacks":[7,22],"by":[8,88],"isolating":[9],"their":[10,60],"private":[11],"keys":[12],"from":[13],"the":[14,21,39,43,48,81,106,122,129,155,194,216,219,224,231],"cyberspace,":[15],"but":[16],"they":[17,228],"vulnerable":[19],"that":[23,99,173],"fake":[24,208],"an":[25,89,97,180,197],"address":[26,45,123,198],"stored":[27],"in":[28,80,118,196,223],"a":[29,35,64,77,112,136,159,187,201,206],"clipboard.":[30],"To":[31,148],"prevent":[32],"such":[33],"attacks,":[34],"hardware":[36,71,103,220],"wallet":[37,49],"asks":[38],"user":[40],"verify":[42,75],"recipient":[44],"shown":[46],"on":[47,105,142,166],"display.":[50],"Since":[51],"crypto":[52],"addresses":[53],"long":[55],"sequences":[56],"of":[57,70,102,115,190,193,204,218,233],"random":[58],"symbols,":[59],"manual":[61],"verification":[62],"becomes":[63],"difficult":[65],"task.":[66],"Consequently,":[67],"many":[68],"users":[69],"elect":[73],"only":[76],"few":[78],"symbols":[79],"address,":[82],"and":[83,134,145,151,163,177,227],"this":[84,92],"can":[85],"be":[86,183],"exploited":[87],"attacker.":[90],"In":[91],"work,":[93],"we":[94,140,157,213],"introduce":[95],"EthClipper,":[96],"attack":[98,225],"targets":[100],"owners":[101],"Ethereum":[107],"platform.":[108],"EthClipper":[109,137],"queries":[111],"distributed":[113,160],"database":[114,188],"pre-mined":[116],"accounts":[117],"order":[119],"select":[121],"with":[124,174],"maximum":[125],"visual":[126],"similarity":[127],"original":[130],"one.":[131],"We":[132],"design":[133],"implement":[135,158],"malware,":[138],"which":[139],"test":[141,164],"Trezor,":[143],"Ledger,":[144],"KeepKey":[146],"wallets.":[147],"deliver":[149],"computation":[150],"storage":[152],"resources":[153],"for":[154],"attack,":[156],"service,":[161],"ClipperCloud,":[162],"it":[165],"different":[167],"deployment":[168],"environments.":[169],"Our":[170],"evaluation":[171],"shows":[172],"off-the-shelf":[175],"PCs":[176],"NAS":[178],"storage,":[179],"attacker":[181],"would":[182],"able":[184],"mine":[186],"capable":[189],"matching":[191],"25%":[192],"digits":[195],"achieve":[200],"50%":[202],"chance":[203],"finding":[205],"fitting":[207],"address.":[209],"For":[210],"responsible":[211],"disclosure,":[212],"have":[214],"contacted":[215],"manufactures":[217],"used":[222],"evaluation,":[226],"all":[229],"confirm":[230],"danger":[232],"EthClipper.":[234]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":3}],"updated_date":"2026-01-22T23:29:09.771500","created_date":"2025-10-10T00:00:00"}