{"id":"https://openalex.org/W4383221413","doi":"https://doi.org/10.1145/3579856.3595806","title":"Uncovering Vulnerabilities of Bluetooth Low Energy IoT from Companion Mobile Apps with Ble-Guuide","display_name":"Uncovering Vulnerabilities of Bluetooth Low Energy IoT from Companion Mobile Apps with Ble-Guuide","publication_year":2023,"publication_date":"2023-07-05","ids":{"openalex":"https://openalex.org/W4383221413","doi":"https://doi.org/10.1145/3579856.3595806"},"language":"en","primary_location":{"id":"doi:10.1145/3579856.3595806","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3579856.3595806","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5061061176","display_name":"Pallavi Sivakumaran","orcid":"https://orcid.org/0000-0002-7102-6318"},"institutions":[{"id":"https://openalex.org/I184558857","display_name":"Royal Holloway University of London","ror":"https://ror.org/04g2vpn86","country_code":"GB","type":"education","lineage":["https://openalex.org/I124357947","https://openalex.org/I184558857"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Pallavi Sivakumaran","raw_affiliation_strings":["Royal Holloway, University of London, United Kingdom"],"raw_orcid":"https://orcid.org/0000-0002-7102-6318","affiliations":[{"raw_affiliation_string":"Royal Holloway, University of London, United Kingdom","institution_ids":["https://openalex.org/I184558857"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035752577","display_name":"Chaoshun Zuo","orcid":"https://orcid.org/0000-0003-3581-1500"},"institutions":[{"id":"https://openalex.org/I52357470","display_name":"The Ohio State University","ror":"https://ror.org/00rs6vg23","country_code":"US","type":"education","lineage":["https://openalex.org/I52357470"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Chaoshun Zuo","raw_affiliation_strings":["Ohio State University, USA"],"raw_orcid":"https://orcid.org/0000-0003-3581-1500","affiliations":[{"raw_affiliation_string":"Ohio State University, USA","institution_ids":["https://openalex.org/I52357470"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026864098","display_name":"Zhiqiang Lin","orcid":"https://orcid.org/0000-0001-6527-5994"},"institutions":[{"id":"https://openalex.org/I52357470","display_name":"The Ohio State University","ror":"https://ror.org/00rs6vg23","country_code":"US","type":"education","lineage":["https://openalex.org/I52357470"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Zhiqiang Lin","raw_affiliation_strings":["Ohio State University, United States of America"],"raw_orcid":"https://orcid.org/0000-0001-6527-5994","affiliations":[{"raw_affiliation_string":"Ohio State University, United States of America","institution_ids":["https://openalex.org/I52357470"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5043279954","display_name":"Jorge Blasco","orcid":"https://orcid.org/0000-0003-4392-9023"},"institutions":[{"id":"https://openalex.org/I88060688","display_name":"Universidad Polit\u00e9cnica de Madrid","ror":"https://ror.org/03n6nwv02","country_code":"ES","type":"education","lineage":["https://openalex.org/I88060688"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Jorge Blasco","raw_affiliation_strings":["Universidad Polit\u00e9cnica de Madrid, Spain"],"raw_orcid":"https://orcid.org/0000-0003-4392-9023","affiliations":[{"raw_affiliation_string":"Universidad Polit\u00e9cnica de Madrid, Spain","institution_ids":["https://openalex.org/I88060688"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5061061176"],"corresponding_institution_ids":["https://openalex.org/I184558857"],"apc_list":null,"apc_paid":null,"fwci":1.1805,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.79639618,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1004","last_page":"1015"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12801","display_name":"Bluetooth and Wireless Communication Technologies","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12801","display_name":"Bluetooth and Wireless Communication Technologies","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9901000261306763,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.983299970626831,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7800208926200867},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.7034074068069458},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.6678122878074646},{"id":"https://openalex.org/keywords/bluetooth","display_name":"Bluetooth","score":0.6283131837844849},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.605759859085083},{"id":"https://openalex.org/keywords/bluetooth-low-energy","display_name":"Bluetooth Low Energy","score":0.5369949340820312},{"id":"https://openalex.org/keywords/identifier","display_name":"Identifier","score":0.5114964246749878},{"id":"https://openalex.org/keywords/mobile-device","display_name":"Mobile device","score":0.4826820194721222},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.473722368478775},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.444945365190506},{"id":"https://openalex.org/keywords/security-analysis","display_name":"Security analysis","score":0.42790257930755615},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.4242859482765198},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.3333544433116913},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3019309937953949},{"id":"https://openalex.org/keywords/wireless","display_name":"Wireless","score":0.158805251121521},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.13635987043380737},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.1199328601360321}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7800208926200867},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.7034074068069458},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.6678122878074646},{"id":"https://openalex.org/C546215728","wikidata":"https://www.wikidata.org/wiki/Q39531","display_name":"Bluetooth","level":3,"score":0.6283131837844849},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.605759859085083},{"id":"https://openalex.org/C2776418194","wikidata":"https://www.wikidata.org/wiki/Q1638779","display_name":"Bluetooth Low Energy","level":4,"score":0.5369949340820312},{"id":"https://openalex.org/C154504017","wikidata":"https://www.wikidata.org/wiki/Q853614","display_name":"Identifier","level":2,"score":0.5114964246749878},{"id":"https://openalex.org/C186967261","wikidata":"https://www.wikidata.org/wiki/Q5082128","display_name":"Mobile device","level":2,"score":0.4826820194721222},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.473722368478775},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.444945365190506},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.42790257930755615},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.4242859482765198},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.3333544433116913},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3019309937953949},{"id":"https://openalex.org/C555944384","wikidata":"https://www.wikidata.org/wiki/Q249","display_name":"Wireless","level":2,"score":0.158805251121521},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.13635987043380737},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.1199328601360321},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3579856.3595806","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3579856.3595806","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Affordable and clean energy","score":0.6600000262260437,"id":"https://metadata.un.org/sdg/7"}],"awards":[{"id":"https://openalex.org/G8498677286","display_name":"Centre for Doctoral Training in Cyber Security at Royal Holloway: Renewal of the CS-CDT at RHUL","funder_award_id":"EP/P009301/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"}],"funders":[{"id":"https://openalex.org/F4320334627","display_name":"Engineering and Physical Sciences Research Council","ror":"https://ror.org/0439y7842"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W1561908597","https://openalex.org/W1598140581","https://openalex.org/W2081580037","https://openalex.org/W2400269587","https://openalex.org/W2508433864","https://openalex.org/W2532717356","https://openalex.org/W2945255320","https://openalex.org/W2963660578","https://openalex.org/W2964144088","https://openalex.org/W2983028905","https://openalex.org/W2986203625","https://openalex.org/W3108723500","https://openalex.org/W3160453532","https://openalex.org/W4281396476","https://openalex.org/W4308430162"],"related_works":["https://openalex.org/W2026217228","https://openalex.org/W2460679371","https://openalex.org/W1566557084","https://openalex.org/W1981475037","https://openalex.org/W2956056877","https://openalex.org/W2058711580","https://openalex.org/W2572635530","https://openalex.org/W2223325499","https://openalex.org/W2911404179","https://openalex.org/W3136975152"],"abstract_inverted_index":{"Increasingly,":[0],"with":[1,96],"embedded":[2],"intelligence":[3],"and":[4,18,88,101,113,178],"control,":[5],"IoT":[6,16,42],"devices":[7,112],"are":[8,22,54],"being":[9],"adopted":[10],"faster":[11],"than":[12,158],"ever.":[13],"However,":[14],"the":[15,45,89,106,115,125,143,174],"landscape":[17],"its":[19],"security":[20,66,91,108,116,167,176],"implications":[21],"not":[23],"yet":[24],"fully":[25],"understood.":[26],"This":[27],"paper":[28],"seeks":[29],"to":[30,81,104,151],"shed":[31],"light":[32],"on":[33,37,124],"this":[34,95,152],"by":[35],"focusing":[36],"a":[38,60,131],"particular":[39],"type":[40],"of":[41,134,160],"devices,":[43],"namely":[44],"ones":[46],"using":[47],"Bluetooth":[48],"Low":[49],"Energy":[50],"(BLE).":[51],"Our":[52],"contributions":[53],"two-fold:":[55],"First,":[56],"we":[57,129,154],"present":[58,130],"Ble-Guuide,":[59],"framework":[61],"for":[62],"performing":[63],"mobile":[64],"app-centric":[65],"issue":[67],"identification.":[68],"We":[69,93,169],"exploit":[70],"Universally":[71],"Unique":[72],"Identifiers":[73],"(UUIDs),":[74],"which":[75],"underpin":[76],"data":[77],"transmissions":[78],"in":[79,110],"BLE,":[80],"glean":[82],"rich":[83],"information":[84,97],"regarding":[85],"device":[86,126],"functionality":[87],"underlying":[90],"issues.":[92],"combine":[94],"from":[98,142],"app":[99],"descriptions":[100],"BLE":[102,111],"libraries,":[103],"identify":[105],"corresponding":[107],"vulnerabilities":[109,177],"determine":[114],"or":[117],"privacy":[118],"impact":[119],"they":[120],"could":[121],"have":[122],"depending":[123],"functionality.":[127],"Second,":[128],"large-scale":[132],"analysis":[133],"17,243":[135],"free,":[136],"BLE-enabled":[137],"Android":[138],"APKs,":[139],"systematically":[140],"crawled":[141],"official":[144],"Google":[145],"Play":[146],"store.":[147],"By":[148],"applying":[149],"Ble-Guuide":[150],"dataset,":[153],"uncover":[155],"that":[156],"more":[157],"70%":[159],"these":[161],"APKs":[162],"contain":[163],"at":[164],"least":[165],"one":[166],"vulnerability.":[168],"also":[170],"obtain":[171],"insights":[172],"into":[173],"identified":[175],"their":[179],"impact.":[180]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}