{"id":"https://openalex.org/W4323338381","doi":"https://doi.org/10.1109/jiot.2023.3252594","title":"Advances in IoT Security: Vulnerabilities, Enabled Criminal Services, Attacks, and Countermeasures","display_name":"Advances in IoT Security: Vulnerabilities, Enabled Criminal Services, Attacks, and Countermeasures","publication_year":2023,"publication_date":"2023-03-06","ids":{"openalex":"https://openalex.org/W4323338381","doi":"https://doi.org/10.1109/jiot.2023.3252594"},"language":"en","primary_location":{"id":"doi:10.1109/jiot.2023.3252594","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jiot.2023.3252594","pdf_url":null,"source":{"id":"https://openalex.org/S2480266640","display_name":"IEEE Internet of Things Journal","issn_l":"2327-4662","issn":["2327-4662","2372-2541"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Journal","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5066023126","display_name":"Yuba R. Siwakoti","orcid":"https://orcid.org/0009-0007-7074-1188"},"institutions":[{"id":"https://openalex.org/I137853757","display_name":"Howard University","ror":"https://ror.org/05gt1vc06","country_code":"US","type":"education","lineage":["https://openalex.org/I137853757"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Yuba Raj Siwakoti","raw_affiliation_strings":["Department of Electrical and Computer Science, Howard University, Washington, DC, USA"],"affiliations":[{"raw_affiliation_string":"Department of Electrical and Computer Science, Howard University, Washington, DC, USA","institution_ids":["https://openalex.org/I137853757"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085147127","display_name":"Manish Bhurtel","orcid":"https://orcid.org/0000-0003-0699-4889"},"institutions":[{"id":"https://openalex.org/I137853757","display_name":"Howard University","ror":"https://ror.org/05gt1vc06","country_code":"US","type":"education","lineage":["https://openalex.org/I137853757"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Manish Bhurtel","raw_affiliation_strings":["Department of Electrical and Computer Science, Howard University, Washington, DC, USA"],"affiliations":[{"raw_affiliation_string":"Department of Electrical and Computer Science, Howard University, Washington, DC, USA","institution_ids":["https://openalex.org/I137853757"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5046343080","display_name":"Danda B. Rawat","orcid":null},"institutions":[{"id":"https://openalex.org/I137853757","display_name":"Howard University","ror":"https://ror.org/05gt1vc06","country_code":"US","type":"education","lineage":["https://openalex.org/I137853757"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Danda B. Rawat","raw_affiliation_strings":["Department of Electrical and Computer Science, Howard University, Washington, DC, USA"],"affiliations":[{"raw_affiliation_string":"Department of Electrical and Computer Science, Howard University, Washington, DC, USA","institution_ids":["https://openalex.org/I137853757"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5000604351","display_name":"Adam Oest","orcid":"https://orcid.org/0000-0002-4313-3714"},"institutions":[{"id":"https://openalex.org/I1302135459","display_name":"PayPal (United States)","ror":"https://ror.org/016jadm77","country_code":"US","type":"company","lineage":["https://openalex.org/I1302135459"]},{"id":"https://openalex.org/I137853757","display_name":"Howard University","ror":"https://ror.org/05gt1vc06","country_code":"US","type":"education","lineage":["https://openalex.org/I137853757"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Adam Oest","raw_affiliation_strings":["Department of Electrical and Computer Science, Howard University, Washington, DC, USA","PayPal, Inc. Arizona, United States"],"affiliations":[{"raw_affiliation_string":"Department of Electrical and Computer Science, Howard University, Washington, DC, USA","institution_ids":["https://openalex.org/I137853757"]},{"raw_affiliation_string":"PayPal, Inc. Arizona, United States","institution_ids":["https://openalex.org/I1302135459"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5030454129","display_name":"RC Johnson","orcid":null},"institutions":[{"id":"https://openalex.org/I1302135459","display_name":"PayPal (United States)","ror":"https://ror.org/016jadm77","country_code":"US","type":"company","lineage":["https://openalex.org/I1302135459"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"R. C. Johnson","raw_affiliation_strings":["Fraud Defense Cyber Center, PayPal Inc., Scottsdale, AZ, USA"],"affiliations":[{"raw_affiliation_string":"Fraud Defense Cyber Center, PayPal Inc., Scottsdale, AZ, USA","institution_ids":["https://openalex.org/I1302135459"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5066023126"],"corresponding_institution_ids":["https://openalex.org/I137853757"],"apc_list":null,"apc_paid":null,"fwci":50.3375,"has_fulltext":false,"cited_by_count":111,"citation_normalized_percentile":{"value":0.99911593,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"10","issue":"13","first_page":"11224","last_page":"11239"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10273","display_name":"IoT and Edge/Fog Computing","score":0.9904999732971191,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7647491693496704},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7599714994430542}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7647491693496704},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7599714994430542}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/jiot.2023.3252594","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jiot.2023.3252594","pdf_url":null,"source":{"id":"https://openalex.org/S2480266640","display_name":"IEEE Internet of Things Journal","issn_l":"2327-4662","issn":["2327-4662","2372-2541"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Journal","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.5899999737739563}],"awards":[{"id":"https://openalex.org/G4114661379","display_name":null,"funder_award_id":"W911NF-20-2-0277","funder_id":"https://openalex.org/F4320338295","funder_display_name":"Army Research Laboratory"},{"id":"https://openalex.org/G740290801","display_name":null,"funder_award_id":"2039583","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320338295","display_name":"Army Research Laboratory","ror":"https://ror.org/011hc8f90"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":86,"referenced_works":["https://openalex.org/W34943076","https://openalex.org/W1549082862","https://openalex.org/W2002254092","https://openalex.org/W2009229808","https://openalex.org/W2013704995","https://openalex.org/W2056920038","https://openalex.org/W2104473821","https://openalex.org/W2131900781","https://openalex.org/W2160095256","https://openalex.org/W2202058702","https://openalex.org/W2344173564","https://openalex.org/W2347128811","https://openalex.org/W2489479543","https://openalex.org/W2514974017","https://openalex.org/W2517744317","https://openalex.org/W2565938019","https://openalex.org/W2592393750","https://openalex.org/W2611626082","https://openalex.org/W2737057124","https://openalex.org/W2745141831","https://openalex.org/W2768696376","https://openalex.org/W2783422090","https://openalex.org/W2793346081","https://openalex.org/W2793916028","https://openalex.org/W2800306076","https://openalex.org/W2805315705","https://openalex.org/W2860610442","https://openalex.org/W2884977612","https://openalex.org/W2887423636","https://openalex.org/W2892077825","https://openalex.org/W2892387601","https://openalex.org/W2894063976","https://openalex.org/W2895511371","https://openalex.org/W2902045989","https://openalex.org/W2903294440","https://openalex.org/W2911547762","https://openalex.org/W2912024559","https://openalex.org/W2945441410","https://openalex.org/W2951694401","https://openalex.org/W2963923811","https://openalex.org/W2968383486","https://openalex.org/W2969468102","https://openalex.org/W2980706702","https://openalex.org/W2986458967","https://openalex.org/W2999613521","https://openalex.org/W3004171232","https://openalex.org/W3011383211","https://openalex.org/W3012094546","https://openalex.org/W3015471529","https://openalex.org/W3020358023","https://openalex.org/W3020687048","https://openalex.org/W3023799415","https://openalex.org/W3026150618","https://openalex.org/W3048623802","https://openalex.org/W3068296915","https://openalex.org/W3084102164","https://openalex.org/W3088578737","https://openalex.org/W3098723088","https://openalex.org/W3099618991","https://openalex.org/W3101360328","https://openalex.org/W3103908128","https://openalex.org/W3104425976","https://openalex.org/W3119712063","https://openalex.org/W3128124346","https://openalex.org/W3128470182","https://openalex.org/W3128747145","https://openalex.org/W3137469478","https://openalex.org/W3138914537","https://openalex.org/W3138928893","https://openalex.org/W3157680283","https://openalex.org/W3159587518","https://openalex.org/W3173358968","https://openalex.org/W3185095951","https://openalex.org/W3185504986","https://openalex.org/W3203063668","https://openalex.org/W3204893321","https://openalex.org/W3211097470","https://openalex.org/W3212390441","https://openalex.org/W4236183354","https://openalex.org/W4246384231","https://openalex.org/W6632931186","https://openalex.org/W6749731999","https://openalex.org/W6753920766","https://openalex.org/W6767139982","https://openalex.org/W6776693929","https://openalex.org/W7045541715"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W4391913857","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052"],"abstract_inverted_index":{"Although":[0],"the":[1,51],"Internet":[2],"of":[3,8,50,67,102,161],"Things":[4],"(IoT)":[5],"incorporates":[6],"millions":[7],"heterogeneous":[9],"devices":[10,62,148],"to":[11,42,70,80,113],"provide":[12],"advanced":[13],"intelligent":[14],"services":[15,124,141],"and":[16,54,99,121,149,166,172],"has":[17,25],"greatly":[18],"impacted":[19],"our":[20],"lives":[21],"over":[22,35],"time,":[23],"it":[24,46],"a":[26,181],"huge":[27],"blind":[28],"spot":[29],"since":[30],"its":[31],"design":[32],"favors":[33],"connectivity":[34],"security.":[36],"Myriad":[37],"efforts":[38],"have":[39,175],"been":[40],"made":[41],"secure":[43],"it,":[44],"but":[45,76],"is":[47],"still":[48],"one":[49],"most":[52],"lucrative":[53],"often":[55],"an":[56],"easy":[57],"target":[58],"for":[59,184],"attackers.":[60],"IoT":[61,116,137,147],"remain":[63],"at":[64],"higher":[65],"risk":[66],"attack":[68],"due":[69],"their":[71],"intrinsic":[72],"properties":[73],"which":[74],"include":[75],"are":[77],"not":[78],"limited":[79],"extreme":[81],"heterogeneity,":[82],"mostly":[83],"plug-and-play":[84],"nature,":[85],"computational":[86],"limitations,":[87],"improper":[88],"patch":[89],"management,":[90],"unnecessary":[91],"open":[92],"ports,":[93],"default":[94],"or":[95],"no":[96],"security":[97,109,138],"credentials,":[98],"extensive":[100],"use":[101],"reusable":[103],"open-source":[104],"software.":[105],"To":[106],"address":[107],"these":[108,127],"concerns":[110],"we":[111,132,158],"need":[112],"thoroughly":[114],"understand":[115],"devices\u2019":[117],"vulnerabilities,":[118,139,162],"associated":[119],"attacks,":[120,165],"how":[122],"criminal":[123,140,163],"can":[125],"abuse":[126],"devices.":[128],"In":[129],"this":[130],"paper,":[131],"present":[133,159],"recent":[134],"advances":[135],"in":[136,180],"by":[142,154,186],"empirically":[143],"identifying":[144],"major":[145],"vulnerable":[146],"cyber":[150,155],"attacks":[151],"exploiting":[152],"them":[153],"criminals.":[156],"Additionally,":[157],"mapping":[160],"services,":[164],"potential":[167],"solutions":[168],"against":[169],"such":[170],"vulnerabilities":[171],"attacks.":[173],"We":[174],"also":[176],"presented":[177],"different":[178],"approaches":[179],"tabular":[182],"form":[183],"side":[185,187],"comparison.":[188]},"counts_by_year":[{"year":2026,"cited_by_count":4},{"year":2025,"cited_by_count":59},{"year":2024,"cited_by_count":39},{"year":2023,"cited_by_count":9}],"updated_date":"2026-04-09T08:11:56.329763","created_date":"2025-10-10T00:00:00"}