{"id":"https://openalex.org/W4308562596","doi":"https://doi.org/10.1145/3560835.3564551","title":"Inferring Software Update Practices on Smart Home IoT Devices Through User Agent Analysis","display_name":"Inferring Software Update Practices on Smart Home IoT Devices Through User Agent Analysis","publication_year":2022,"publication_date":"2022-11-08","ids":{"openalex":"https://openalex.org/W4308562596","doi":"https://doi.org/10.1145/3560835.3564551"},"language":"en","primary_location":{"id":"doi:10.1145/3560835.3564551","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3560835.3564551","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5066945602","display_name":"Vijay Prakash","orcid":"https://orcid.org/0000-0002-6987-4262"},"institutions":[{"id":"https://openalex.org/I57206974","display_name":"New York University","ror":"https://ror.org/0190ak572","country_code":"US","type":"education","lineage":["https://openalex.org/I57206974"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Vijay Prakash","raw_affiliation_strings":["New York University, New York, NY, USA"],"affiliations":[{"raw_affiliation_string":"New York University, New York, NY, USA","institution_ids":["https://openalex.org/I57206974"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5008095837","display_name":"Sicheng Xie","orcid":null},"institutions":[{"id":"https://openalex.org/I57206974","display_name":"New York University","ror":"https://ror.org/0190ak572","country_code":"US","type":"education","lineage":["https://openalex.org/I57206974"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sicheng Xie","raw_affiliation_strings":["New York University, New York, NY, USA"],"affiliations":[{"raw_affiliation_string":"New York University, New York, NY, USA","institution_ids":["https://openalex.org/I57206974"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5042935400","display_name":"Danny Yuxing Huang","orcid":"https://orcid.org/0000-0002-1794-6105"},"institutions":[{"id":"https://openalex.org/I57206974","display_name":"New York University","ror":"https://ror.org/0190ak572","country_code":"US","type":"education","lineage":["https://openalex.org/I57206974"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Danny Yuxing Huang","raw_affiliation_strings":["New York University, New York, NY, USA"],"affiliations":[{"raw_affiliation_string":"New York University, New York, NY, USA","institution_ids":["https://openalex.org/I57206974"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5066945602"],"corresponding_institution_ids":["https://openalex.org/I57206974"],"apc_list":null,"apc_paid":null,"fwci":0.5949,"has_fulltext":false,"cited_by_count":5,"citation_normalized_percentile":{"value":0.64899713,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"93","last_page":"103"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7712113857269287},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.6403655409812927},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.6230501532554626},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.6125948429107666},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6018860936164856},{"id":"https://openalex.org/keywords/python","display_name":"Python (programming language)","score":0.5928947329521179},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.5001096725463867},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3689597547054291},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.13119667768478394}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7712113857269287},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.6403655409812927},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.6230501532554626},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.6125948429107666},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6018860936164856},{"id":"https://openalex.org/C519991488","wikidata":"https://www.wikidata.org/wiki/Q28865","display_name":"Python (programming language)","level":2,"score":0.5928947329521179},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.5001096725463867},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3689597547054291},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.13119667768478394},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3560835.3564551","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3560835.3564551","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.4300000071525574}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":29,"referenced_works":["https://openalex.org/W1490011260","https://openalex.org/W1580060001","https://openalex.org/W1778339073","https://openalex.org/W1966831243","https://openalex.org/W1979820341","https://openalex.org/W2060986432","https://openalex.org/W2077667328","https://openalex.org/W2112736324","https://openalex.org/W2113693268","https://openalex.org/W2114712239","https://openalex.org/W2166336492","https://openalex.org/W2167415250","https://openalex.org/W2170656934","https://openalex.org/W2515870206","https://openalex.org/W2588857602","https://openalex.org/W2624735790","https://openalex.org/W2767011015","https://openalex.org/W2770054117","https://openalex.org/W2913816431","https://openalex.org/W2966979469","https://openalex.org/W2980558733","https://openalex.org/W2980730236","https://openalex.org/W2982540289","https://openalex.org/W2986967943","https://openalex.org/W3015969036","https://openalex.org/W3080382294","https://openalex.org/W3141872514","https://openalex.org/W3206818901","https://openalex.org/W4288080331"],"related_works":["https://openalex.org/W2097492617","https://openalex.org/W2341492732","https://openalex.org/W3187193180","https://openalex.org/W106542691","https://openalex.org/W4287027380","https://openalex.org/W1699080303","https://openalex.org/W4297799326","https://openalex.org/W2753240997","https://openalex.org/W3116064965","https://openalex.org/W1764168690"],"abstract_inverted_index":{"Smart":[0],"home":[1],"IoT":[2,17,66,75,79,87,134,169],"devices":[3,121,135],"are":[4,35,43],"known":[5],"to":[6,27,57,164],"be":[7,165],"breeding":[8],"grounds":[9],"for":[10,167],"security":[11,60],"and":[12,39,45,112,139,157],"privacy":[13],"vulnerabilities.":[14],"Although":[15],"some":[16,168],"vendors":[18],"deploy":[19],"updates,":[20],"the":[21,50,59,70,91,146,159],"update":[22,72],"process":[23],"is":[24,30],"mostly":[25],"opaque":[26],"researchers.":[28],"It":[29],"unclear":[31],"what":[32,118,128],"software":[33,62,71,103],"components":[34,42,104,126],"on":[36,74,101,145],"devices,":[37,76],"whether":[38],"when":[40],"these":[41,125,143],"updated,":[44],"how":[46],"vulnerabilities":[47],"change":[48],"alongside":[49],"updates.":[51],"This":[52],"opaqueness":[53],"makes":[54],"it":[55],"difficult":[56],"understand":[58,69],"of":[61,65,82,117,120,124,142,161],"supply":[63],"chains":[64],"devices.":[67,88,170],"To":[68],"practices":[73],"we":[77,130],"leverage":[78],"Inspector's":[80],"dataset":[81],"network":[83],"traffic":[84],"from":[85,95],"real-world":[86],"We":[89,99],"analyze":[90],"User":[92,107,147],"Agent":[93],"strings":[94],"plain-text":[96],"HTTP":[97],"connections.":[98],"focus":[100],"four":[102],"included":[105],"in":[106],"Agents:":[108],"cURL,":[109],"Wget,":[110],"OkHttp,":[111],"python-requests.":[113],"By":[114],"keeping":[115],"track":[116],"kinds":[119],"have":[122],"which":[123],"at":[127],"versions,":[129],"find":[131],"that":[132,158],"many":[133],"potentially":[136],"used":[137],"outdated":[138],"vulnerable":[140],"versions":[141,154],"components---based":[144],"Agents---even":[148],"though":[149],"less":[150],"vulnerable,":[151],"more":[152],"updated":[153],"were":[155],"available;":[156],"rollout":[160],"updates":[162],"tends":[163],"slow":[166]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":2}],"updated_date":"2025-11-19T23:35:23.961156","created_date":"2025-10-10T00:00:00"}