{"id":"https://openalex.org/W4393217357","doi":"https://doi.org/10.1109/jiot.2024.3381641","title":"EXVul: Toward Effective and Explainable Vulnerability Detection for IoT Devices","display_name":"EXVul: Toward Effective and Explainable Vulnerability Detection for IoT Devices","publication_year":2024,"publication_date":"2024-03-27","ids":{"openalex":"https://openalex.org/W4393217357","doi":"https://doi.org/10.1109/jiot.2024.3381641"},"language":"en","primary_location":{"id":"doi:10.1109/jiot.2024.3381641","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jiot.2024.3381641","pdf_url":null,"source":{"id":"https://openalex.org/S2480266640","display_name":"IEEE Internet of Things Journal","issn_l":"2327-4662","issn":["2327-4662","2372-2541"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Journal","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5007104924","display_name":"Sicong Cao","orcid":"https://orcid.org/0000-0003-3688-4437"},"institutions":[{"id":"https://openalex.org/I78978612","display_name":"Yangzhou University","ror":"https://ror.org/03tqb8s11","country_code":"CN","type":"education","lineage":["https://openalex.org/I78978612"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Sicong Cao","raw_affiliation_strings":["School of Information Engineering, Yangzhou University, Yangzhou, China"],"affiliations":[{"raw_affiliation_string":"School of Information Engineering, Yangzhou University, Yangzhou, China","institution_ids":["https://openalex.org/I78978612"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5006966486","display_name":"Xiaobing Sun","orcid":"https://orcid.org/0000-0001-5165-5080"},"institutions":[{"id":"https://openalex.org/I78978612","display_name":"Yangzhou University","ror":"https://ror.org/03tqb8s11","country_code":"CN","type":"education","lineage":["https://openalex.org/I78978612"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiaobing Sun","raw_affiliation_strings":["School of Information Engineering, Yangzhou University, Yangzhou, China"],"affiliations":[{"raw_affiliation_string":"School of Information Engineering, Yangzhou University, Yangzhou, China","institution_ids":["https://openalex.org/I78978612"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5081284604","display_name":"Wei Liu","orcid":"https://orcid.org/0000-0001-8503-4063"},"institutions":[{"id":"https://openalex.org/I78978612","display_name":"Yangzhou University","ror":"https://ror.org/03tqb8s11","country_code":"CN","type":"education","lineage":["https://openalex.org/I78978612"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Wei Liu","raw_affiliation_strings":["School of Information Engineering, Yangzhou University, Yangzhou, China"],"affiliations":[{"raw_affiliation_string":"School of Information Engineering, Yangzhou University, Yangzhou, China","institution_ids":["https://openalex.org/I78978612"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100599890","display_name":"Di Wu","orcid":"https://orcid.org/0000-0002-4753-8161"},"institutions":[{"id":"https://openalex.org/I185523456","display_name":"University of Southern Queensland","ror":"https://ror.org/04sjbnx57","country_code":"AU","type":"education","lineage":["https://openalex.org/I185523456"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Di Wu","raw_affiliation_strings":["School of Mathematics, Physics and Computing, University of Southern Queensland, Toowoomba, QLD, Australia"],"affiliations":[{"raw_affiliation_string":"School of Mathematics, Physics and Computing, University of Southern Queensland, Toowoomba, QLD, Australia","institution_ids":["https://openalex.org/I185523456"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100744176","display_name":"Jiale Zhang","orcid":"https://orcid.org/0000-0002-2143-5666"},"institutions":[{"id":"https://openalex.org/I78978612","display_name":"Yangzhou University","ror":"https://ror.org/03tqb8s11","country_code":"CN","type":"education","lineage":["https://openalex.org/I78978612"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jiale Zhang","raw_affiliation_strings":["School of Information Engineering, Yangzhou University, Yangzhou, China"],"affiliations":[{"raw_affiliation_string":"School of Information Engineering, Yangzhou University, Yangzhou, China","institution_ids":["https://openalex.org/I78978612"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100443879","display_name":"Yan Li","orcid":"https://orcid.org/0000-0002-4694-4926"},"institutions":[{"id":"https://openalex.org/I185523456","display_name":"University of Southern Queensland","ror":"https://ror.org/04sjbnx57","country_code":"AU","type":"education","lineage":["https://openalex.org/I185523456"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Yan Li","raw_affiliation_strings":["School of Mathematics, Physics and Computing, University of Southern Queensland, Toowoomba, QLD, Australia"],"affiliations":[{"raw_affiliation_string":"School of Mathematics, Physics and Computing, University of Southern Queensland, Toowoomba, QLD, Australia","institution_ids":["https://openalex.org/I185523456"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5040978564","display_name":"Tom H. Luan","orcid":"https://orcid.org/0000-0002-5215-7443"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Tom H. Luan","raw_affiliation_strings":["School of Cyber Engineering, Xidian University, Xi&#x2019;an, China"],"affiliations":[{"raw_affiliation_string":"School of Cyber Engineering, Xidian University, Xi&#x2019;an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5012293028","display_name":"Longxiang Gao","orcid":"https://orcid.org/0000-0002-3026-7537"},"institutions":[{"id":"https://openalex.org/I154099455","display_name":"Shandong University","ror":"https://ror.org/0207yh398","country_code":"CN","type":"education","lineage":["https://openalex.org/I154099455"]},{"id":"https://openalex.org/I185523456","display_name":"University of Southern Queensland","ror":"https://ror.org/04sjbnx57","country_code":"AU","type":"education","lineage":["https://openalex.org/I185523456"]}],"countries":["AU","CN"],"is_corresponding":false,"raw_author_name":"Longxiang Gao","raw_affiliation_strings":["School of Mathematics, Physics and Computing, University of Southern Queensland, Toowoomba, QLD, Australia","Ministry of Education, Key Laboratory of Computing Power Network and Information Security, Shandong Computer Science Center, Jinan","Shandong Fundamental Research Center for Computer Science, Shandong Provincial Key Laboratory of Computer Networks, China, Jinan, China"],"affiliations":[{"raw_affiliation_string":"School of Mathematics, Physics and Computing, University of Southern Queensland, Toowoomba, QLD, Australia","institution_ids":["https://openalex.org/I185523456"]},{"raw_affiliation_string":"Ministry of Education, Key Laboratory of Computing Power Network and Information Security, Shandong Computer Science Center, Jinan","institution_ids":[]},{"raw_affiliation_string":"Shandong Fundamental Research Center for Computer Science, Shandong Provincial Key Laboratory of Computer Networks, China, Jinan, China","institution_ids":["https://openalex.org/I154099455"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5007104924"],"corresponding_institution_ids":["https://openalex.org/I78978612"],"apc_list":null,"apc_paid":null,"fwci":1.4811,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.82200436,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":96},"biblio":{"volume":"11","issue":"12","first_page":"22385","last_page":"22398"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9301999807357788,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9301999807357788,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9294999837875366,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9253000020980835,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7775006890296936},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.6374750137329102},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6049453616142273},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.47217172384262085},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3507307767868042}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7775006890296936},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.6374750137329102},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6049453616142273},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.47217172384262085},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3507307767868042}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/jiot.2024.3381641","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jiot.2024.3381641","pdf_url":null,"source":{"id":"https://openalex.org/S2480266640","display_name":"IEEE Internet of Things Journal","issn_l":"2327-4662","issn":["2327-4662","2372-2541"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Journal","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G5483702481","display_name":null,"funder_award_id":"RJFW-053","funder_id":"https://openalex.org/F4320326182","funder_display_name":"Six Talent Peaks Project in Jiangsu Province"},{"id":"https://openalex.org/G6326664489","display_name":null,"funder_award_id":"2023M732985","funder_id":"https://openalex.org/F4320321543","funder_display_name":"China Postdoctoral Science Foundation"},{"id":"https://openalex.org/G6547404887","display_name":null,"funder_award_id":"BK20220562","funder_id":"https://openalex.org/F4320322769","funder_display_name":"Natural Science Foundation of Jiangsu Province"},{"id":"https://openalex.org/G777235398","display_name":null,"funder_award_id":"202308320436","funder_id":"https://openalex.org/F4320322725","funder_display_name":"China Scholarship Council"},{"id":"https://openalex.org/G8833945948","display_name":null,"funder_award_id":"62206238","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320321543","display_name":"China Postdoctoral Science Foundation","ror":"https://ror.org/0426zh255"},{"id":"https://openalex.org/F4320322725","display_name":"China Scholarship Council","ror":"https://ror.org/04atp4p48"},{"id":"https://openalex.org/F4320322769","display_name":"Natural Science Foundation of Jiangsu Province","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320326182","display_name":"Six Talent Peaks Project in Jiangsu Province","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":54,"referenced_works":["https://openalex.org/W1992114977","https://openalex.org/W2170224888","https://openalex.org/W2781491433","https://openalex.org/W2885030880","https://openalex.org/W2901941771","https://openalex.org/W2907492528","https://openalex.org/W2962756421","https://openalex.org/W3091588759","https://openalex.org/W3096425977","https://openalex.org/W3101228802","https://openalex.org/W3108823960","https://openalex.org/W3111602563","https://openalex.org/W3137469478","https://openalex.org/W3137781054","https://openalex.org/W3161071537","https://openalex.org/W3166095789","https://openalex.org/W3177116043","https://openalex.org/W3194346579","https://openalex.org/W3194682511","https://openalex.org/W3194802500","https://openalex.org/W4205371973","https://openalex.org/W4221033043","https://openalex.org/W4285821122","https://openalex.org/W4292982707","https://openalex.org/W4294170691","https://openalex.org/W4308731473","https://openalex.org/W4312436517","https://openalex.org/W4312969325","https://openalex.org/W4327629447","https://openalex.org/W4380520352","https://openalex.org/W4384155466","https://openalex.org/W4384304635","https://openalex.org/W4384345662","https://openalex.org/W4384345694","https://openalex.org/W4384345698","https://openalex.org/W4385080291","https://openalex.org/W4385153851","https://openalex.org/W4385304428","https://openalex.org/W4385884967","https://openalex.org/W4386830545","https://openalex.org/W4387448956","https://openalex.org/W4389161980","https://openalex.org/W4391335093","https://openalex.org/W4394638297","https://openalex.org/W6690815549","https://openalex.org/W6743410771","https://openalex.org/W6745537798","https://openalex.org/W6748774907","https://openalex.org/W6767260250","https://openalex.org/W6767288045","https://openalex.org/W6768003788","https://openalex.org/W6776700526","https://openalex.org/W6786048916","https://openalex.org/W6861353703"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W4245926026","https://openalex.org/W4311097251","https://openalex.org/W2586548817","https://openalex.org/W2390279801","https://openalex.org/W2625093826","https://openalex.org/W2950174689","https://openalex.org/W2358668433","https://openalex.org/W4200598720"],"abstract_inverted_index":{"As":[0],"with":[1,146],"anything":[2],"connected":[3],"to":[4,15,29,58,97,128,148,191],"the":[5,34,42,99,129,149,161,179,187,192],"internet,":[6],"Internet":[7],"of":[8,37,44,84,101,120],"Things":[9],"(IoT)":[10],"devices":[11],"are":[12],"also":[13],"subject":[14],"severe":[16],"cybersecurity":[17],"threats":[18],"because":[19],"an":[20],"adversary":[21],"could":[22],"exploit":[23],"vulnerabilities":[24],"in":[25,61,87,168,171,175],"their":[26],"internal":[27],"software":[28],"perform":[30],"malicious":[31],"attacks.":[32],"Despite":[33],"promising":[35],"results":[36,136],"Deep":[38],"Learning":[39],"(DL)-based":[40],"approaches,":[41],"lack":[43],"well-labeled":[45],"IoT":[46,76,108],"vulnerability":[47,109,157],"samples":[48],"available":[49],"for":[50,72],"training":[51],"and":[52,74,106,122,144,151,173],"explainability":[53],"pose":[54],"a":[55,68,92,113,118],"critical":[56],"challenge":[57],"deploy":[59],"them":[60],"practice.":[62],"In":[63],"this":[64],"paper,":[65],"we":[66,90],"propose,":[67],"novel":[69],"DL-based":[70],"approach":[71],"Effective":[73],"eXplainable":[75],"VULnerability":[77],"detection.":[78],"Specifically,":[79],"inspired":[80],"by":[81,142,166,182],"recent":[82],"advances":[83],"self-supervised":[85],"learning":[86],"label-expensive":[88],"tasks,":[89],"propose":[91],"new":[93],"combinatorial":[94],"contrastive":[95],"loss":[96],"combine":[98],"strengths":[100],"large-scale":[102],"unlabeled":[103],"code":[104,124],"corpus":[105],"limited":[107],"samples.":[110],"Then,":[111],"given":[112],"binary":[114],"detection":[115],"result,":[116],"provides":[117],"set":[119],"faithful":[121],"stable":[123],"statements":[125,189],"positively":[126],"contributing":[127],"model\u2019s":[130],"predictions":[131],"as":[132],"understandable":[133],"explanations.":[134],"Experimental":[135],"indicate":[137],"that":[138,178],"outperforms":[139],"state-of-the-art":[140],"baselines":[141],"33.44%-72.91%":[143],"19.52%-98.78%":[145],"respect":[147],"accuracy":[150],"F1":[152],"score":[153],"metrics,":[154],"respectively.":[155],"For":[156],"explanation,":[158],"improves":[159],"over":[160],"best-performing":[162],"baseline":[163],"explainer":[164],"PGExplainer":[165],"22.97%":[167],"MSP,":[169],"49.55%":[170],"MSR,":[172],"48.40%":[174],"MIoU,":[176],"demonstrating":[177],"explanations":[180],"provided":[181],"can":[183],"correctly":[184],"point":[185],"out":[186],"vulnerable":[188],"relevant":[190],"detected":[193],"vulnerabilities.":[194]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2024-03-28T00:00:00"}