{"id":"https://openalex.org/W4410770683","doi":"https://doi.org/10.1109/jiot.2025.3574179","title":"Boreas: Semantic-Aware Framework for Buffer Overflow Detection to Reduce Carbon Footprint in IoT Devices","display_name":"Boreas: Semantic-Aware Framework for Buffer Overflow Detection to Reduce Carbon Footprint in IoT Devices","publication_year":2025,"publication_date":"2025-05-27","ids":{"openalex":"https://openalex.org/W4410770683","doi":"https://doi.org/10.1109/jiot.2025.3574179"},"language":"en","primary_location":{"id":"doi:10.1109/jiot.2025.3574179","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jiot.2025.3574179","pdf_url":null,"source":{"id":"https://openalex.org/S2480266640","display_name":"IEEE Internet of Things Journal","issn_l":"2327-4662","issn":["2327-4662","2372-2541"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Journal","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5087324296","display_name":"Xiao Chen","orcid":"https://orcid.org/0009-0008-1311-4994"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiao Chen","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":"https://orcid.org/0009-0008-1311-4994","affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072122717","display_name":"Letian Sha","orcid":"https://orcid.org/0009-0007-5547-3728"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Letian Sha","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5003873372","display_name":"Qinghua Gao","orcid":"https://orcid.org/0000-0002-1591-189X"},"institutions":[{"id":"https://openalex.org/I4210142167","display_name":"DigitalSpace (United States)","ror":"https://ror.org/04h1th525","country_code":"US","type":"company","lineage":["https://openalex.org/I4210142167"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Qingguan Gao","raw_affiliation_strings":["Sales Department, Nanjing Cyberpeace Information Technology Company Ltd., Nanjing, China","Nanjing Cyberpeace Information Technology Company, Ltd, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Sales Department, Nanjing Cyberpeace Information Technology Company Ltd., Nanjing, China","institution_ids":["https://openalex.org/I4210142167"]},{"raw_affiliation_string":"Nanjing Cyberpeace Information Technology Company, Ltd, Nanjing, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100602821","display_name":"Fu Xiao","orcid":"https://orcid.org/0000-0003-1815-2793"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Fu Xiao","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":"https://orcid.org/0000-0003-1815-2793","affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5047530220","display_name":"Jiaye Pan","orcid":"https://orcid.org/0000-0002-2184-1680"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jiaye Pan","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.08452139,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"12","issue":"17","first_page":"34753","last_page":"34767"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12238","display_name":"Green IT and Sustainability","score":0.9624999761581421,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12238","display_name":"Green IT and Sustainability","score":0.9624999761581421,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.930899977684021,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9221000075340271,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/carbon-footprint","display_name":"Carbon footprint","score":0.8314149379730225},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.824702262878418},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.6609430313110352},{"id":"https://openalex.org/keywords/footprint","display_name":"Footprint","score":0.6005406975746155},{"id":"https://openalex.org/keywords/buffer-overflow","display_name":"Buffer overflow","score":0.4944124221801758},{"id":"https://openalex.org/keywords/buffer","display_name":"Buffer (optical fiber)","score":0.47496911883354187},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.45442038774490356},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2171231508255005},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.2047349214553833},{"id":"https://openalex.org/keywords/greenhouse-gas","display_name":"Greenhouse gas","score":0.19757187366485596},{"id":"https://openalex.org/keywords/oceanography","display_name":"Oceanography","score":0.08262225985527039}],"concepts":[{"id":"https://openalex.org/C2780936489","wikidata":"https://www.wikidata.org/wiki/Q310667","display_name":"Carbon footprint","level":3,"score":0.8314149379730225},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.824702262878418},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.6609430313110352},{"id":"https://openalex.org/C132943942","wikidata":"https://www.wikidata.org/wiki/Q2562511","display_name":"Footprint","level":2,"score":0.6005406975746155},{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.4944124221801758},{"id":"https://openalex.org/C145018004","wikidata":"https://www.wikidata.org/wiki/Q4985944","display_name":"Buffer (optical fiber)","level":2,"score":0.47496911883354187},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.45442038774490356},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2171231508255005},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.2047349214553833},{"id":"https://openalex.org/C47737302","wikidata":"https://www.wikidata.org/wiki/Q167336","display_name":"Greenhouse gas","level":2,"score":0.19757187366485596},{"id":"https://openalex.org/C111368507","wikidata":"https://www.wikidata.org/wiki/Q43518","display_name":"Oceanography","level":1,"score":0.08262225985527039},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/jiot.2025.3574179","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jiot.2025.3574179","pdf_url":null,"source":{"id":"https://openalex.org/S2480266640","display_name":"IEEE Internet of Things Journal","issn_l":"2327-4662","issn":["2327-4662","2372-2541"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Journal","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G2998525186","display_name":null,"funder_award_id":"KYCX20_0829","funder_id":"https://openalex.org/F4320334982","funder_display_name":"Basic Research Program of Jiangsu Province"},{"id":"https://openalex.org/G3330129294","display_name":null,"funder_award_id":"BF2024071","funder_id":"https://openalex.org/F4320338247","funder_display_name":"Moonshot Research and Development Program"}],"funders":[{"id":"https://openalex.org/F4320334982","display_name":"Basic Research Program of Jiangsu Province","ror":null},{"id":"https://openalex.org/F4320338247","display_name":"Moonshot Research and Development Program","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":36,"referenced_works":["https://openalex.org/W2532962075","https://openalex.org/W2749008552","https://openalex.org/W2791018263","https://openalex.org/W2882992559","https://openalex.org/W2888698761","https://openalex.org/W2926178846","https://openalex.org/W2965373594","https://openalex.org/W2970641574","https://openalex.org/W2986938475","https://openalex.org/W2989837574","https://openalex.org/W2997915791","https://openalex.org/W3015383024","https://openalex.org/W3085647877","https://openalex.org/W3133719257","https://openalex.org/W3155102819","https://openalex.org/W3162689995","https://openalex.org/W3193122818","https://openalex.org/W3212565000","https://openalex.org/W4206238988","https://openalex.org/W4285586654","https://openalex.org/W4311166089","https://openalex.org/W4313203541","https://openalex.org/W4381050433","https://openalex.org/W4384155508","https://openalex.org/W4385245566","https://openalex.org/W4389767439","https://openalex.org/W4391725290","https://openalex.org/W4394862931","https://openalex.org/W4402264054","https://openalex.org/W4403826455","https://openalex.org/W4404787932","https://openalex.org/W6755207826","https://openalex.org/W6766830175","https://openalex.org/W6795108105","https://openalex.org/W6796120359","https://openalex.org/W6911311271"],"related_works":["https://openalex.org/W1992778348","https://openalex.org/W3104369155","https://openalex.org/W2162390224","https://openalex.org/W4389988448","https://openalex.org/W4320030328","https://openalex.org/W4405599279","https://openalex.org/W2031734160","https://openalex.org/W2238629651","https://openalex.org/W4408733052","https://openalex.org/W4366179056"],"abstract_inverted_index":{"The":[0,19,97],"rapid":[1],"development":[2],"of":[3,7,22,109,187,209,219,233],"the":[4,91,114,170,177,185,207,217],"Industrial":[5],"Internet":[6],"Things":[8],"(IIoT)":[9],"has":[10],"raised":[11],"concerns":[12],"about":[13],"device":[14],"security":[15],"and":[16,49,146,174,211,240],"energy":[17],"consumption.":[18],"widespread":[20],"presence":[21],"buffer":[23],"overflow":[24],"(BOF)":[25],"vulnerabilities":[26],"in":[27,94,125,221],"IoT":[28,95,196],"devices":[29,33],"not":[30],"only":[31],"threatens":[32],"but":[34],"also":[35],"leads":[36],"to":[37,72,89,104,138,140],"increased":[38],"carbon":[39,92],"emissions.":[40],"Traditional":[41],"static":[42,213],"analysis":[43,214],"methods":[44,58,205],"suffer":[45],"from":[46],"low":[47],"accuracy":[48],"high":[50],"costs.":[51],"Mainstream":[52],"binary":[53],"code":[54,136],"similarity":[55],"detection":[56,87,145,180],"(BCSD)":[57],"are":[59],"mainly":[60],"based":[61],"on":[62,169],"control":[63],"flow":[64],"graphs":[65],"(CFGs)":[66],"or":[67],"instructions,":[68],"which":[69,161,234],"often":[70],"fail":[71],"effectively":[73,162],"capture":[74],"semantic":[75,107],"information.":[76],"In":[77],"this":[78],"paper,":[79],"we":[80,152,189],"propose":[81],"Boreas,":[82,188],"a":[83,154,191],"semantic-aware":[84],"BOF":[85,139,179],"vulnerability":[86,222],"framework":[88],"reduce":[90],"footprint":[93],"devices.":[96],"abstract":[98],"syntax":[99],"tree":[100],"(AST)":[101],"is":[102,181],"employed":[103],"achieve":[105],"precise":[106],"representation":[108],"multi-architecture":[110],"code.":[111],"By":[112,127],"considering":[113],"often-overlooked":[115],"implicit":[116],"data":[117],"receiving":[118],"points,":[119],"Boreas":[120,133,201,225],"comprehensively":[121],"locates":[122],"vulnerable":[123,175],"binaries":[124],"firmware.":[126,197],"leveraging":[128],"backward":[129],"reaching":[130],"definition":[131],"analysis,":[132],"removes":[134],"extensive":[135],"irrelevant":[137],"simplify":[141],"ASTs,":[142],"enables":[143],"cross-function/file":[144],"enhances":[147],"interpretability":[148],"for":[149,159],"BCSD.":[150],"Additionally,":[151],"develop":[153],"deep":[155],"learning":[156],"model":[157],"AST-BERT":[158],"BCSD,":[160],"transforms":[163],"simplified":[164],"ASTs":[165],"into":[166],"vectors.":[167],"Based":[168],"distance":[171],"between":[172],"target":[173],"vectors,":[176],"accurate":[178],"achieved.":[182],"To":[183],"evaluate":[184],"performance":[186],"construct":[190],"large-scale":[192],"dataset":[193],"containing":[194],"real-world":[195],"Experiments":[198],"show":[199],"that":[200],"outperforms":[202],"state-of-the-art":[203],"BCSD":[204],"with":[206,216],"precision":[208],"87.08%":[210],"leading":[212],"tools":[215],"F1-score":[218],"88.81%":[220],"detection.":[223],"Finally,":[224],"successfully":[226],"discovers":[227],"10":[228],"unknown":[229],"critical":[230],"vulnerabilities,":[231],"all":[232],"have":[235],"been":[236],"recognized":[237],"by":[238,242],"CVE":[239],"covered":[241],"media.":[243]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}
