{"id":"https://openalex.org/W4403826455","doi":"https://doi.org/10.1109/tii.2024.3477563","title":"SFO-CID: Structural Feature Optimization Based Command Injection Vulnerability Discovery for Internet of Things","display_name":"SFO-CID: Structural Feature Optimization Based Command Injection Vulnerability Discovery for Internet of Things","publication_year":2024,"publication_date":"2024-10-28","ids":{"openalex":"https://openalex.org/W4403826455","doi":"https://doi.org/10.1109/tii.2024.3477563"},"language":"en","primary_location":{"id":"doi:10.1109/tii.2024.3477563","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tii.2024.3477563","pdf_url":null,"source":{"id":"https://openalex.org/S184777250","display_name":"IEEE Transactions on Industrial Informatics","issn_l":"1551-3203","issn":["1551-3203","1941-0050"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Industrial Informatics","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5087324296","display_name":"Xiao Chen","orcid":"https://orcid.org/0009-0008-1311-4994"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiao Chen","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":"https://orcid.org/0009-0008-1311-4994","affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072122717","display_name":"Letian Sha","orcid":"https://orcid.org/0009-0007-5547-3728"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Letian Sha","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":"https://orcid.org/0009-0007-5547-3728","affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5115599887","display_name":"Jincheng Wang","orcid":"https://orcid.org/0009-0003-4496-0978"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jincheng Wang","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":"https://orcid.org/0009-0003-4496-0978","affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100602821","display_name":"Fu Xiao","orcid":"https://orcid.org/0000-0003-1815-2793"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Fu Xiao","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":"https://orcid.org/0000-0003-1815-2793","affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5017411757","display_name":"Jiankuo Dong","orcid":"https://orcid.org/0000-0003-1693-3000"},"institutions":[{"id":"https://openalex.org/I41198531","display_name":"Nanjing University of Posts and Telecommunications","ror":"https://ror.org/043bpky34","country_code":"CN","type":"education","lineage":["https://openalex.org/I41198531"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jiankuo Dong","raw_affiliation_strings":["School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China"],"raw_orcid":"https://orcid.org/0000-0003-1693-3000","affiliations":[{"raw_affiliation_string":"School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing, China","institution_ids":["https://openalex.org/I41198531"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I41198531"],"apc_list":null,"apc_paid":null,"fwci":2.0266,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.90144503,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":97},"biblio":{"volume":"21","issue":"2","first_page":"1429","last_page":"1438"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9860000014305115,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9860000014305115,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9704999923706055,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9671000242233276,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.6214253902435303},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5984171628952026},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.584496796131134},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.47619545459747314},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.4687775671482086},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.40589550137519836},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.2451552450656891}],"concepts":[{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.6214253902435303},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5984171628952026},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.584496796131134},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.47619545459747314},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.4687775671482086},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.40589550137519836},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.2451552450656891},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tii.2024.3477563","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tii.2024.3477563","pdf_url":null,"source":{"id":"https://openalex.org/S184777250","display_name":"IEEE Transactions on Industrial Informatics","issn_l":"1551-3203","issn":["1551-3203","1941-0050"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Industrial Informatics","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.46000000834465027,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G3757659925","display_name":"\u9762\u5411\u5de5\u4e1a\u7269\u8054\u7f51\u73af\u5883\u7684\u5b89\u5168\u6001\u52bf\u611f\u77e5\u65b9\u6cd5\u7814\u7a76","funder_award_id":"62072253","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G4021021469","display_name":null,"funder_award_id":"62302238","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W2171590421","https://openalex.org/W2532962075","https://openalex.org/W2577142429","https://openalex.org/W2749008552","https://openalex.org/W2777587568","https://openalex.org/W2950635152","https://openalex.org/W2980731118","https://openalex.org/W2989837574","https://openalex.org/W3015383024","https://openalex.org/W3085647877","https://openalex.org/W3159151987","https://openalex.org/W3212137514","https://openalex.org/W4281398200","https://openalex.org/W4285586654","https://openalex.org/W4321792543","https://openalex.org/W4386078206","https://openalex.org/W4386608469","https://openalex.org/W4388857979","https://openalex.org/W4394862931","https://openalex.org/W4401072811","https://openalex.org/W6636510571","https://openalex.org/W6697873463","https://openalex.org/W6795108105"],"related_works":["https://openalex.org/W4245926026","https://openalex.org/W4311097251","https://openalex.org/W2586548817","https://openalex.org/W2625093826","https://openalex.org/W4200598720","https://openalex.org/W2921026492","https://openalex.org/W4247463117","https://openalex.org/W4361251261","https://openalex.org/W3031181660","https://openalex.org/W4238100021"],"abstract_inverted_index":{"The":[0],"rapid":[1],"development":[2],"of":[3,6,15,105,120,137,159,174,214],"Industrial":[4],"Internet":[5],"Things":[7],"(IIoT)":[8],"has":[9],"raised":[10],"wider":[11],"concerns":[12],"for":[13,30,96,145,186],"security":[14],"IoT":[16,24,97,181],"devices.":[17,98],"Command":[18],"injection":[19,92],"(CI)":[20],"vulnerabilities,":[21],"prevalent":[22],"in":[23,65,219],"devices,":[25],"pose":[26],"a":[27,85,153],"severe":[28],"risk":[29],"remote":[31],"code":[32,50,121,164],"execution.":[33,47],"Traditional":[34],"static":[35,226],"detection":[36,52,151],"methods":[37,54],"suffer":[38],"from":[39],"high":[40],"overhead":[41],"and":[42,68,127,168,206,233,249,256,273],"imprecision":[43],"due":[44],"to":[45,123,223],"symbolic":[46],"Popular":[48],"binary":[49,112],"similarity":[51,155],"(BCSD)":[53],"rely":[55],"on":[56],"Control":[57],"Flow":[58],"Graphs":[59],"(CFGs)":[60],"with":[61,74],"redundant":[62],"structures,":[63],"resulting":[64],"low":[66],"efficiency":[67],"accuracy.":[69],"In":[70,77],"addition,":[71],"they":[72],"struggle":[73],"cross-function":[75,128,271],"issues.":[76],"this":[78],"paper,":[79],"we":[80],"propose":[81],"<italic":[82,191,200,203,207,230,234,237],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[83,192,201,204,208,216,231,235,238,246,253],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">SFO-CID</i>,":[84],"novel":[86],"structural":[87,135],"feature":[88],"optimization":[89],"based":[90],"command":[91],"vulnerability":[93,150,175,220],"discovery":[94],"model":[95],"Through":[99],"backward":[100],"taint":[101],"analysis,":[102],"all":[103],"CFGs":[104],"suspicious":[106],"CI":[107,149],"vulnerabilities":[108,124,265],"within":[109,162],"the":[110,134,163,172,211,241],"target":[111],"file":[113],"are":[114,130],"precisely":[115],"obtained.":[116],"A":[117,157],"large":[118],"amount":[119],"unrelated":[122],"is":[125,166,257],"removed,":[126],"issues":[129],"covered,":[131],"significantly":[132],"optimizing":[133],"features":[136],"original":[138],"CFGs.":[139],"Neural":[140],"networks":[141],"generate":[142],"embedding":[143],"vectors":[144],"optimized":[146],"CFGs,":[147],"transforming":[148],"into":[152],"vector":[154],"comparison.":[156],"wealth":[158],"semantic":[160],"information":[161],"context":[165],"automatically":[167],"efficiently":[169],"captured,":[170],"improving":[171],"accuracy":[173,213],"detection.":[176,221],"We":[177],"collect":[178],"real-world":[179],"cross-platform":[180],"firmware":[182],"as":[183,199],"data":[184],"sources":[185],"tests.":[187],"Experiments":[188],"show":[189],"that":[190],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">SFO-CID</i>":[193,239],"outperforms":[194],"popular":[195],"BCSD":[196],"methods,":[197,228],"such":[198],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Gemini</i>,":[202],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">IoTSeeker</i>,":[205],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">FIT</i>,":[209],"achieving":[210],"highest":[212,242],"88.67<inline-formula":[215],"xmlns:xlink=\"http://www.w3.org/1999/xlink\"><tex-math":[217,247,254],"notation=\"LaTeX\">$\\%$</tex-math></inline-formula>":[218,248],"Compared":[222],"existing":[224],"state-of-the-art":[225],"analysis":[227],"like":[229],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">KARONTE</i>":[232],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">SaTC</i>,":[236],"attains":[240],"precision":[243],"at":[244,251],"88.43<inline-formula":[245],"F1-score":[250],"86.29<inline-formula":[252],"notation=\"LaTeX\">$\\%$</tex-math></inline-formula>,":[255],"less":[258],"time-consuming.":[259],"Until":[260],"now,":[261],"8":[262],"high-risk":[263],"unknown":[264],"have":[266],"been":[267],"discovered,":[268],"including":[269],"5":[270],"cases,":[272],"corresponding":[274],"CVE":[275],"IDs":[276],"were":[277],"assigned.":[278]},"counts_by_year":[{"year":2025,"cited_by_count":3}],"updated_date":"2026-06-26T08:34:08.712188","created_date":"2025-10-10T00:00:00"}
