{"id":"https://openalex.org/W7128424977","doi":"https://doi.org/10.1109/jiot.2026.3662325","title":"CID4IoT: IoT-Oriented Command Injection Vulnerability Detection Based on Critical Code Extraction and LLM Analysis","display_name":"CID4IoT: IoT-Oriented Command Injection Vulnerability Detection Based on Critical Code Extraction and LLM Analysis","publication_year":2026,"publication_date":"2026-02-09","ids":{"openalex":"https://openalex.org/W7128424977","doi":"https://doi.org/10.1109/jiot.2026.3662325"},"language":null,"primary_location":{"id":"doi:10.1109/jiot.2026.3662325","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jiot.2026.3662325","pdf_url":null,"source":{"id":"https://openalex.org/S2480266640","display_name":"IEEE Internet of Things Journal","issn_l":"2327-4662","issn":["2327-4662","2372-2541"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Journal","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5125461711","display_name":"Zhao Huang","orcid":null},"institutions":[{"id":"https://openalex.org/I4210163363","display_name":"PLA Army Engineering University","ror":"https://ror.org/05mgp8x93","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210163363"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhao Huang","raw_affiliation_strings":["Army Engineering University of PLA, Nanjing, China"],"raw_orcid":"https://orcid.org/0009-0001-2372-6854","affiliations":[{"raw_affiliation_string":"Army Engineering University of PLA, Nanjing, China","institution_ids":["https://openalex.org/I4210163363"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5059106918","display_name":"Zhenji Zhou","orcid":"https://orcid.org/0000-0002-2376-5925"},"institutions":[{"id":"https://openalex.org/I4210163363","display_name":"PLA Army Engineering University","ror":"https://ror.org/05mgp8x93","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210163363"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhenji Zhou","raw_affiliation_strings":["Army Engineering University of PLA, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Army Engineering University of PLA, Nanjing, China","institution_ids":["https://openalex.org/I4210163363"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5125464410","display_name":"Lei Song","orcid":null},"institutions":[{"id":"https://openalex.org/I4210163363","display_name":"PLA Army Engineering University","ror":"https://ror.org/05mgp8x93","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210163363"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Lei Song","raw_affiliation_strings":["Army Engineering University of PLA, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Army Engineering University of PLA, Nanjing, China","institution_ids":["https://openalex.org/I4210163363"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041867782","display_name":"Fenglei Deng","orcid":null},"institutions":[{"id":"https://openalex.org/I4210163363","display_name":"PLA Army Engineering University","ror":"https://ror.org/05mgp8x93","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210163363"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Fenglei Deng","raw_affiliation_strings":["Army Engineering University of PLA, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Army Engineering University of PLA, Nanjing, China","institution_ids":["https://openalex.org/I4210163363"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5125472746","display_name":"Lei Zhang","orcid":null},"institutions":[{"id":"https://openalex.org/I4210163363","display_name":"PLA Army Engineering University","ror":"https://ror.org/05mgp8x93","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210163363"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Lei Zhang","raw_affiliation_strings":["Army Engineering University of PLA, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Army Engineering University of PLA, Nanjing, China","institution_ids":["https://openalex.org/I4210163363"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5015242515","display_name":"Kunkun SongGong","orcid":"https://orcid.org/0000-0002-6549-5046"},"institutions":[{"id":"https://openalex.org/I4210163363","display_name":"PLA Army Engineering University","ror":"https://ror.org/05mgp8x93","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210163363"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Kunkun SongGong","raw_affiliation_strings":["Army Engineering University of PLA, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Army Engineering University of PLA, Nanjing, China","institution_ids":["https://openalex.org/I4210163363"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5090520213","display_name":"Minghang Shen","orcid":"https://orcid.org/0000-0001-7649-3719"},"institutions":[{"id":"https://openalex.org/I4210163363","display_name":"PLA Army Engineering University","ror":"https://ror.org/05mgp8x93","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210163363"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Minghang Shen","raw_affiliation_strings":["Army Engineering University of PLA, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Army Engineering University of PLA, Nanjing, China","institution_ids":["https://openalex.org/I4210163363"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I4210163363"],"apc_list":null,"apc_paid":null,"fwci":25.9972,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.98437722,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":97},"biblio":{"volume":"13","issue":"9","first_page":"19058","last_page":"19075"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.7421000003814697,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.7421000003814697,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.08590000122785568,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.04280000180006027,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/firmware","display_name":"Firmware","score":0.7161999940872192},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6952999830245972},{"id":"https://openalex.org/keywords/taint-checking","display_name":"Taint checking","score":0.6653000116348267},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.6248999834060669},{"id":"https://openalex.org/keywords/vulnerability-management","display_name":"Vulnerability management","score":0.544700026512146},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.5439000129699707},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.522599995136261},{"id":"https://openalex.org/keywords/static-analysis","display_name":"Static analysis","score":0.46880000829696655},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.4510999917984009},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.4235999882221222}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8664000034332275},{"id":"https://openalex.org/C67212190","wikidata":"https://www.wikidata.org/wiki/Q104851","display_name":"Firmware","level":2,"score":0.7161999940872192},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6952999830245972},{"id":"https://openalex.org/C63116202","wikidata":"https://www.wikidata.org/wiki/Q7676227","display_name":"Taint checking","level":3,"score":0.6653000116348267},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.6248999834060669},{"id":"https://openalex.org/C172776598","wikidata":"https://www.wikidata.org/wiki/Q7943570","display_name":"Vulnerability management","level":4,"score":0.544700026512146},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.5439000129699707},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.522599995136261},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5095000267028809},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.46880000829696655},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.4510999917984009},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.4235999882221222},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.39169999957084656},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.3856000006198883},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.36149999499320984},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.34880000352859497},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.3481000065803528},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.3264000117778778},{"id":"https://openalex.org/C22174128","wikidata":"https://www.wikidata.org/wiki/Q175869","display_name":"Microcode","level":2,"score":0.3142000138759613},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.29330000281333923},{"id":"https://openalex.org/C128942645","wikidata":"https://www.wikidata.org/wiki/Q1568346","display_name":"Test case","level":3,"score":0.29179999232292175},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.28839999437332153},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.2851000130176544},{"id":"https://openalex.org/C55439883","wikidata":"https://www.wikidata.org/wiki/Q360812","display_name":"Correctness","level":2,"score":0.2831999957561493},{"id":"https://openalex.org/C137287247","wikidata":"https://www.wikidata.org/wiki/Q1329550","display_name":"Static program analysis","level":4,"score":0.26080000400543213},{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.26010000705718994},{"id":"https://openalex.org/C136501162","wikidata":"https://www.wikidata.org/wiki/Q175957","display_name":"Arduino","level":2,"score":0.2581999897956848},{"id":"https://openalex.org/C11392498","wikidata":"https://www.wikidata.org/wiki/Q11288","display_name":"Web server","level":3,"score":0.25690001249313354},{"id":"https://openalex.org/C143050476","wikidata":"https://www.wikidata.org/wiki/Q194502","display_name":"Sink (geography)","level":2,"score":0.2565000057220459},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.25029999017715454}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/jiot.2026.3662325","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jiot.2026.3662325","pdf_url":null,"source":{"id":"https://openalex.org/S2480266640","display_name":"IEEE Internet of Things Journal","issn_l":"2327-4662","issn":["2327-4662","2372-2541"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Internet of Things Journal","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.6282875537872314}],"awards":[{"id":"https://openalex.org/G2278503123","display_name":null,"funder_award_id":"No.62401624","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G988091258","display_name":null,"funder_award_id":"62401624","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"The":[0,181],"Internet":[1],"of":[2,54,88,136,151],"Things":[3],"(IoT)":[4],"devices":[5,26,193],"have":[6],"brought":[7],"invaluable":[8],"convenience":[9],"to":[10,71,96,115,124],"our":[11],"daily":[12],"lives.":[13],"However,":[14],"they":[15],"also":[16],"introduce":[17],"significant":[18],"security":[19],"challenges.":[20],"Common":[21],"vulnerabilities":[22,55,76,169],"in":[23,29,56,77,170,178,188,191],"numerous":[24],"IoT":[25,82,192],"predominantly":[27],"reside":[28],"their":[30],"web":[31,57,78],"services.":[32,58],"Unfortunately,":[33],"existing":[34],"vulnerability":[35,67,94,131],"detection":[36,68],"methods":[37],"either":[38],"incur":[39],"heavy":[40],"execution":[41],"overhead":[42],"or":[43],"produce":[44],"excessive":[45],"false":[46],"positives/negatives.":[47],"This":[48,59],"significantly":[49,167],"hinders":[50],"the":[51,86,171],"efficient":[52],"analysis":[53,179],"paper":[60],"proposes":[61],"CID4IoT,":[62],"a":[63,134],"novel":[64],"static":[65],"automated":[66],"approach":[69],"designed":[70],"effectively":[72],"detect":[73],"command":[74],"injection":[75],"services":[79],"provided":[80],"by":[81,85,156],"devices.":[83,144],"Inspired":[84],"concept":[87],"taint":[89,98,109],"analysis,":[90],"CID4IoT":[91,105,137,145,185],"first":[92],"analyzes":[93],"reports":[95],"identify":[97],"source":[99,110],"functions":[100,111,114],"and":[101,112,138,163],"sink":[102,113],"functions.":[103],"Then,":[104],"extracts":[106],"pseudocode":[107],"between":[108],"form":[116],"critical":[117,127],"code":[118,128],"snippets.":[119],"Subsequently,":[120],"it":[121,140,165],"utilizes":[122],"LLM":[123],"analyze":[125],"these":[126],"snippets":[129],"for":[130],"detection.We":[132],"implemented":[133],"prototype":[135],"evaluated":[139],"on":[141],"real":[142],"firmware":[143],"discovered":[146],"54":[147],"previously":[148],"unknown":[149],"vulnerabilities,":[150],"which":[152],"39":[153],"are":[154],"confirmed":[155],"CVE.":[157],"Compared":[158],"with":[159],"state-of-the-art":[160],"tools":[161],"KARONTE":[162],"SaTC,":[164],"identified":[166],"more":[168],"test":[172],"set":[173],"while":[174],"achieving":[175],"notable":[176],"improvements":[177],"efficiency.":[180],"results":[182],"demonstrate":[183],"that":[184],"is":[186],"effective":[187],"detecting":[189],"flaws":[190]},"counts_by_year":[{"year":2026,"cited_by_count":1}],"updated_date":"2026-04-25T06:01:18.069262","created_date":"2026-02-10T00:00:00"}
