{"id":"https://openalex.org/W4306406230","doi":"https://doi.org/10.1145/3545948.3545953","title":"Zigbee\u2019s Network Rejoin Procedure for IoT Systems: Vulnerabilities and Implications","display_name":"Zigbee\u2019s Network Rejoin Procedure for IoT Systems: Vulnerabilities and Implications","publication_year":2022,"publication_date":"2022-10-17","ids":{"openalex":"https://openalex.org/W4306406230","doi":"https://doi.org/10.1145/3545948.3545953"},"language":"en","primary_location":{"id":"doi:10.1145/3545948.3545953","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3545948.3545953","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 25th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100769837","display_name":"Jincheng Wang","orcid":"https://orcid.org/0000-0002-9918-1563"},"institutions":[{"id":"https://openalex.org/I177725633","display_name":"Chinese University of Hong Kong","ror":"https://ror.org/00t33hh48","country_code":"CN","type":"education","lineage":["https://openalex.org/I177725633"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Jincheng Wang","raw_affiliation_strings":["Computer Science and Engineering, The Chinese University of Hong Kong, China"],"affiliations":[{"raw_affiliation_string":"Computer Science and Engineering, The Chinese University of Hong Kong, China","institution_ids":["https://openalex.org/I177725633"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5012872551","display_name":"Zhuohua Li","orcid":"https://orcid.org/0000-0002-1390-0222"},"institutions":[{"id":"https://openalex.org/I177725633","display_name":"Chinese University of Hong Kong","ror":"https://ror.org/00t33hh48","country_code":"CN","type":"education","lineage":["https://openalex.org/I177725633"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhuohua Li","raw_affiliation_strings":["The Chinese University of Hong Kong, China"],"affiliations":[{"raw_affiliation_string":"The Chinese University of Hong Kong, China","institution_ids":["https://openalex.org/I177725633"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103105383","display_name":"Mingshen Sun","orcid":"https://orcid.org/0000-0003-4775-0362"},"institutions":[{"id":"https://openalex.org/I98301712","display_name":"Baidu (China)","ror":"https://ror.org/03vs3wt56","country_code":"CN","type":"company","lineage":["https://openalex.org/I98301712"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Mingshen Sun","raw_affiliation_strings":["Baidu, China"],"affiliations":[{"raw_affiliation_string":"Baidu, China","institution_ids":["https://openalex.org/I98301712"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5068489266","display_name":"John C. S. Lui","orcid":"https://orcid.org/0000-0001-7466-0384"},"institutions":[{"id":"https://openalex.org/I177725633","display_name":"Chinese University of Hong Kong","ror":"https://ror.org/00t33hh48","country_code":"CN","type":"education","lineage":["https://openalex.org/I177725633"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"John C.S. Lui","raw_affiliation_strings":["The Chinese University of Hong Kong, China"],"affiliations":[{"raw_affiliation_string":"The Chinese University of Hong Kong, China","institution_ids":["https://openalex.org/I177725633"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5100769837"],"corresponding_institution_ids":["https://openalex.org/I177725633"],"apc_list":null,"apc_paid":null,"fwci":1.0401,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.75535142,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"292","last_page":"307"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9980000257492065,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10772","display_name":"Distributed systems and fault tolerance","score":0.9968000054359436,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6807310581207275},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.60401850938797},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4896162152290344},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.4081961214542389}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6807310581207275},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.60401850938797},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4896162152290344},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.4081961214542389}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3545948.3545953","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3545948.3545953","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 25th International Symposium on Research in Attacks, Intrusions and Defenses","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W233122475","https://openalex.org/W1510222797","https://openalex.org/W1518363720","https://openalex.org/W1967182706","https://openalex.org/W2029693536","https://openalex.org/W2115309705","https://openalex.org/W2132334337","https://openalex.org/W2166656159","https://openalex.org/W2350778671","https://openalex.org/W2686848947","https://openalex.org/W2733765803","https://openalex.org/W2735927446","https://openalex.org/W2766295581","https://openalex.org/W2809727329","https://openalex.org/W2889233068","https://openalex.org/W2890188242","https://openalex.org/W2911962130","https://openalex.org/W2968774960","https://openalex.org/W2983277367","https://openalex.org/W2987215725","https://openalex.org/W3043887689","https://openalex.org/W3045097643","https://openalex.org/W3046246673","https://openalex.org/W3081208988","https://openalex.org/W3097298087","https://openalex.org/W4244434362","https://openalex.org/W6863951927"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W4245926026","https://openalex.org/W4311097251","https://openalex.org/W2586548817","https://openalex.org/W2390279801","https://openalex.org/W2625093826","https://openalex.org/W4391913857","https://openalex.org/W2358668433"],"abstract_inverted_index":{"Internet":[0],"of":[1,33,40,140,146,172,189],"Things":[2],"(IoT)":[3],"services":[4],"are":[5,12],"gaining":[6],"increasing":[7],"popularity,":[8],"and":[9,35,47,137,180,187,200,219],"IoT":[10,22,178],"devices":[11,34,67,175],"widely":[13],"deployed":[14],"at":[15],"many":[16],"smart":[17],"homes.":[18],"Among":[19],"all":[20,202],"the":[21,38,92,138,181,185,204,216],"communication":[23],"protocols,":[24],"Zigbee":[25,41,135,155,174,212,217],"is":[26],"a":[27,88,102,154],"dominant":[28],"one":[29],"used":[30],"by":[31,51],"billions":[32],"customers.":[36],"However,":[37],"design":[39,104,111,123,153],"has":[42],"not":[43,99],"been":[44],"carefully":[45],"evaluated":[46],"could":[48],"be":[49],"exploited":[50],"attackers.":[52],"In":[53],"this":[54,96],"paper,":[55],"we":[56,98,114,168,193],"focus":[57],"on":[58,91],"Zigbee\u2019s":[59],"network":[60,72],"rejoin":[61,93],"procedure,":[62],"which":[63],"aims":[64],"to":[65,68,86,120,133,148,159,197,214],"allow":[66],"automatically":[69],"recover":[70],"their":[71],"status":[73],"when":[74],"they":[75,201],"accidentally":[76],"go":[77],"offline.":[78],"We":[79,151,208],"develop":[80],"an":[81],"automated":[82],"verification":[83],"tool":[84,157],"Verejoin":[85],"perform":[87],"systematic":[89],"study":[90],"procedure.":[94],"Using":[95,166],"tool,":[97],"only":[100],"confirm":[101,160],"well-known":[103],"flaw,":[105],"but":[106],"also":[107],"reveal":[108],"two":[109],"undiscovered":[110],"flaws.":[112,124],"Moreover,":[113],"construct":[115],"four":[116],"proof-of-concept":[117],"(PoC)":[118],"attacks":[119],"exploit":[121],"these":[122,141,161,190],"These":[125],"vulnerabilities":[126,142,162],"create":[127],"new":[128],"attack":[129],"surfaces":[130],"for":[131],"attackers":[132],"manipulate":[134],"devices,":[136],"damage":[139],"ranges":[143],"from":[144,176],"denial":[145],"service":[147],"device":[149],"hijacking.":[150],"further":[152,209],"testing":[156],"ZigHomer":[158],"in":[163],"real-world":[164],"devices.":[165],"ZigHomer,":[167],"conduct":[169],"thorough":[170],"evaluations":[171],"off-the-shelf":[173],"leading":[177],"vendors,":[179],"evaluation":[182],"result":[183],"shows":[184],"prevalence":[186],"severity":[188],"vulnerabilities.":[191,224],"Finally,":[192],"reported":[194,223],"our":[195,222],"findings":[196],"related":[198],"parties,":[199],"acknowledged":[203],"significant":[205],"security":[206],"impact.":[207],"collaborate":[210],"with":[211],"Alliance":[213],"amend":[215],"specification,":[218],"successfully":[220],"addressed":[221]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}