FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W4313305615> ?p ?o ?g. }

• W4313305615 abstract "Currently, the development of IoT firmware heavily depends on third-party components (TPCs) to improve development efficiency. Nevertheless, TPCs are not secure, and the vulnerabilities in TPCs will influence the security of IoT firmware. Existing works pay less attention to the vulnerabilities caused by TPCs, and we still lack a comprehensive understanding of the security impact of TPC vulnerability against firmware. To fill in the knowledge gap, we design and implement FirmSec, which leverages syntactical features and control-flow graph features to detect the TPCs in firmware, and then recognizes the corresponding vulnerabilities. Based on FirmSec, we present the first large-scale analysis of the security risks raised by TPCs on $34,136$ firmware images. We successfully detect 584 TPCs and identify 128,757 vulnerabilities caused by 429 CVEs. Our in-depth analysis reveals the diversity of security risks in firmware and discovers some well-known vulnerabilities are still rooted in firmware. Besides, we explore the geographical distribution of vulnerable devices and confirm that the security situation of devices in different regions varies. Our analysis also indicates that vulnerabilities caused by TPCs in firmware keep growing with the boom of the IoT ecosystem. Further analysis shows 2,478 commercial firmware images have potentially violated GPL/AGPL licensing terms." @default.
• W4313305615 created "2023-01-06" @default.
• W4313305615 creator A5011351573 @default.
• W4313305615 creator A5022316895 @default.
• W4313305615 creator A5025651569 @default.
• W4313305615 creator A5033073212 @default.
• W4313305615 creator A5042968579 @default.
• W4313305615 creator A5043763521 @default.
• W4313305615 creator A5044396095 @default.
• W4313305615 creator A5047459900 @default.
• W4313305615 creator A5058611515 @default.
• W4313305615 creator A5071457448 @default.
• W4313305615 creator A5083982433 @default.
• W4313305615 date "2022-12-28" @default.
• W4313305615 modified "2023-10-16" @default.
• W4313305615 title "One Bad Apple Spoils the Barrel: Understanding the Security Risks Introduced by Third-Party Components in IoT Firmware" @default.
• W4313305615 doi "https://doi.org/10.48550/arxiv.2212.13716" @default.
• W4313305615 hasPublicationYear "2022" @default.
• W4313305615 type Work @default.
• W4313305615 citedByCount "0" @default.
• W4313305615 crossrefType "posted-content" @default.
• W4313305615 hasAuthorship W4313305615A5011351573 @default.
• W4313305615 hasAuthorship W4313305615A5022316895 @default.
• W4313305615 hasAuthorship W4313305615A5025651569 @default.
• W4313305615 hasAuthorship W4313305615A5033073212 @default.
• W4313305615 hasAuthorship W4313305615A5042968579 @default.
• W4313305615 hasAuthorship W4313305615A5043763521 @default.
• W4313305615 hasAuthorship W4313305615A5044396095 @default.
• W4313305615 hasAuthorship W4313305615A5047459900 @default.
• W4313305615 hasAuthorship W4313305615A5058611515 @default.
• W4313305615 hasAuthorship W4313305615A5071457448 @default.
• W4313305615 hasAuthorship W4313305615A5083982433 @default.
• W4313305615 hasBestOaLocation W43133056151 @default.
• W4313305615 hasConcept C111919701 @default.
• W4313305615 hasConcept C22174128 @default.
• W4313305615 hasConcept C38652104 @default.
• W4313305615 hasConcept C41008148 @default.
• W4313305615 hasConcept C67212190 @default.
• W4313305615 hasConcept C81860439 @default.
• W4313305615 hasConcept C95713431 @default.
• W4313305615 hasConceptScore W4313305615C111919701 @default.
• W4313305615 hasConceptScore W4313305615C22174128 @default.
• W4313305615 hasConceptScore W4313305615C38652104 @default.
• W4313305615 hasConceptScore W4313305615C41008148 @default.
• W4313305615 hasConceptScore W4313305615C67212190 @default.
• W4313305615 hasConceptScore W4313305615C81860439 @default.
• W4313305615 hasConceptScore W4313305615C95713431 @default.
• W4313305615 hasLocation W43133056151 @default.
• W4313305615 hasOpenAccess W4313305615 @default.
• W4313305615 hasPrimaryLocation W43133056151 @default.
• W4313305615 hasRelatedWork W2371072962 @default.
• W4313305615 hasRelatedWork W2605158125 @default.
• W4313305615 hasRelatedWork W2966979469 @default.
• W4313305615 hasRelatedWork W3084814329 @default.
• W4313305615 hasRelatedWork W3176445685 @default.
• W4313305615 hasRelatedWork W3188635106 @default.
• W4313305615 hasRelatedWork W4220894477 @default.
• W4313305615 hasRelatedWork W4236908327 @default.
• W4313305615 hasRelatedWork W4245327557 @default.
• W4313305615 hasRelatedWork W4308086982 @default.
• W4313305615 isParatext "false" @default.
• W4313305615 isRetracted "false" @default.
• W4313305615 workType "article" @default.