skip to main content


Search for: All records

Creators/Authors contains: "Zhao, Ziming"

Note: When clicking on a Digital Object Identifier (DOI) number, you will be taken to an external site maintained by the publisher. Some full text articles may not yet be available without a charge during the embargo (administrative interval).
What is a DOI Number?

Some links on this page may take you to non-federal websites. Their policies may differ from this site.

  1. To study the security properties of the Internet of Things (IoT), firmware analysis is crucial. In the past, many works have been focused on analyzing Linux-based firmware. Less known is the security landscape of MCU-based IoT devices, an essential portion of the IoT ecosystem. Existing works on MCU firmware analysis either leverage the companion mobile apps to infer the security properties of the firmware (thus unable to collect low-level properties) or rely on small-scale firmware datasets collected in ad-hoc ways (thus cannot be generalized). To fill this gap, we create a large dataset of MCU firmware for real IoT devices. Our approach statically analyzes how MCU firmware is distributed and then captures the firmware. To reliably recognize the firmware, we develop a firmware signature database, which can match the footprints left in the firmware compilation and packing process. In total, we obtained 8,432 confirmed firmware images (3,692 unique) covering at least 11 chip vendors across 7 known architectures and 2 proprietary architectures. We also conducted a series of static analyses to assess the security properties of this dataset. The result reveals three disconcerting facts: 1) the lack of firmware protection, 2) the existence of N-day vulnerabilities, and 3) the rare adoption of security mitigation. 
    more » « less
    Free, publicly-accessible full text available August 14, 2025
  2. Free, publicly-accessible full text available August 14, 2025
  3. Free, publicly-accessible full text available August 14, 2025
  4. Free, publicly-accessible full text available August 14, 2025
  5. Free, publicly-accessible full text available July 1, 2025
  6. Free, publicly-accessible full text available May 20, 2025
  7. Free, publicly-accessible full text available May 20, 2025
  8. Free, publicly-accessible full text available May 19, 2025
  9. Free, publicly-accessible full text available December 15, 2024