ArXivCSExplorer
☆☆Bookmarks🏆RSSHow to UseFAQ
Built with and by Teycir Ben Soltane•
How to Use•FAQ•GitHub•arXiv.org•
Share:

~ similar to 2605.31326v1· 20 results

cs.CRRecentMay 28, 2026

FIDEM: A Standard-Compliant Framework for Secure Binding of MUD Profiles to IoT Devices

Alessandro Lotto, Savio Sciancalepore, Alessandro Brighente, Mauro Conti

FIDEM introduces a standard-compliant framework that uses Zero-Knowledge Proofs to securely bind IoT devices to their Manufacturer Usage Description (MUD) profiles, mitigating risks associated with in…

View →
cs.NIcs.CRcs.LGRecentMay 24, 2026

Device Context Protocol: A Compact, Safety-First Architecture for LLM-Driven Control of Constrained Devices

Dongxu Yang

The Device Context Protocol (DCP) introduces a compact, safety-first communication standard designed to allow LLMs to reliably control resource-constrained physical microcontrollers, significantly imp…

View →
cs.NIcs.CRcs.DCRecentMay 25, 2026

TIP: A Decentralized Intent-Based Protocol for Declarative IoT Interoperability and Sandboxed Schema Adaptation

Yeison David Mejia Mosquera

TIP introduces a decentralized, declarative protocol that enables flexible IoT interoperability by resolving abstract intents and performing on-the-fly, sandboxed schema adaptation across heterogeneou…

View →
cs.CRcs.AIRecentApr 2, 2026

RefinementEngine: Automating Intent-to-Device Filtering Policy Deployment under Network Constraints

Davide Colaiacomo, Chiara Bonfanti, Cataldo Basile

RefinementEngine is an automated system that translates high-level security intents and threat intelligence into deployable, low-level network filtering policies, overcoming manual deployment challeng…

View →
cs.CRRecentMay 26, 2026

Intent-based Security Management Using the TM Forum TR292I Security Ontology

Loay Abdelrazek

The paper proposes a declarative, autonomous, self-protecting framework for securing complex 5G/6G networks by leveraging a standardized security ontology and automated graph reasoning to neutralize l…

View →
cs.CRRecentApr 17, 2026

ProcRoute: Process-Scoped Authorization of Split-Tunnel Routes

Arul Thileeban Sagayam

ProcRoute is a system that restricts internal network route access to specific, authorized applications, preventing unprivileged processes from exploiting split-tunnel VPN routes.

View →
cs.NIcs.CRRecentMar 17, 2026

Persistent Device Identity for Network Access Control in the Era of MAC Address Randomization: A RADIUS-Based Framework

Premanand Seralathan

The paper proposes a RADIUS-based framework to maintain persistent device identity for Network Access Control (NAC) despite modern operating system MAC address randomization, ensuring regulatory compl…

View →
cs.CRcs.LGRecentMar 25, 2026

Toward a Multi-Layer ML-Based Security Framework for Industrial IoT

Aymen Bouferroum, Valeria Loscri, Abderrahim Benslimane

This paper proposes a lightweight, multi-layer Machine Learning-based security framework for Industrial IoT (IIoT) to enhance trust convergence and detect advanced threats.

View →
cs.CRRecentApr 1, 2026

Multi-Agent LLM Governance for Safe Two-Timescale Reinforcement Learning in SDN-IoT Defense

Saeid Jamshidi, Negar Shahabi, Foutse Khomh, Carol Fung +1 more

The paper proposes a two-timescale governance framework using a multi-agent LLM to safely update and guide RL agents for SDN-IoT defense, significantly improving performance and stability under advers…

View →
cs.CRcs.NIRecentMay 5, 2026

Binary Image-Based Intrusion Detection for Operational Technology Networks: Extending the SPHBI Methodology from IoT to Modbus TCP

Aamir Omar

This paper adapts the Single Packet Header Binary Image (SPHBI) intrusion detection method from IoT to Modbus TCP, achieving high binary accuracy (98.1%) and strong multiclass classification performan…

View →
cs.CRcs.AIRecentMay 4, 2026

APIOT: Autonomous Vulnerability Management Across Bare-Metal Industrial OT Networks

Adel ElZemity, Budi Arief, Shujun Li, Calvin Brierley +5 more

The paper introduces APIOT, the first LLM framework capable of autonomously performing the full discovery, exploitation, patching, and verification cycle against bare-metal industrial OT devices.

View →
cs.CRcs.AIcs.NIRecentApr 5, 2026

NetSecBed: A Container-Native Testbed for Reproducible Cybersecurity Experimentation

Leonardo Bitzki, Diego Kreutz, Tiago Heinrich, Douglas Fideles +3 more

NetSecBed is a container-native, scenario-oriented testbed designed to generate reproducible and auditable network traffic evidence and execution artifacts for complex cybersecurity research.

View →
cs.CRcs.AIRecentMar 24, 2026

Targeted Adversarial Traffic Generation : Black-box Approach to Evade Intrusion Detection Systems in IoT Networks

Islam Debicha, Tayeb Kenaza, Ishak Charfi, Salah Mosbah +2 more

This paper evaluates a novel black-box adversarial attack to demonstrate the vulnerability of ML-based IoT Intrusion Detection Systems (IDS) and proposes a robust defense mechanism to mitigate these e…

View →
cs.CRRecentMay 9, 2026

WATSON: Leveraging Data Watchpoints for Shadow Stack Protection on Embedded Systems

Xi Tan, Sagar Mohan, Ziming Zhao

WATSON is a novel, efficient shadow stack protection mechanism for embedded systems that utilizes standard hardware data watchpoints to mitigate control-flow hijacking vulnerabilities without relying…

View →
cs.CRRecentMay 1, 2026

Self-Adaptive Multi-Agent LLM-Based Security Pattern Selection for IoT Systems

Saeid Jamshidi, Foutse Khomh, Carol Fung, Kawser Wazed Nafi

The paper introduces ASPO, a self-adaptive multi-agent system that uses LLM-based reasoning combined with deterministic optimization to select conflict-free and resource-feasible security mitigation p…

View →
cs.CRRecentApr 9, 2026

Your Agent Is Mine: Measuring Malicious Intermediary Attacks on the LLM Supply Chain

Hanzhi Liu, Chaofan Shou, Hongbo Wen, Yanju Chen +2 more

This paper systematically analyzes the threat posed by malicious third-party API routers in the LLM supply chain, finding that a significant number of routers actively perform payload injection, crede…

View →
cs.CRcs.AIRecentMar 25, 2026

AIP: Agent Identity Protocol for Verifiable Delegation Across MCP and A2A

Sunil Prakash

The paper introduces AIP, a novel protocol using Invocation-Bound Capability Tokens (IBCTs) to provide verifiable identity and secure delegation across Model Context Protocol (MCP) and Agent-to-Agent…

View →
cs.CRcs.AIRecentMay 26, 2026

Grimlock: Guarding High-Agency Systems with eBPF and Attested Channels

Qiancheng Wu, Wenhui Zhang, Gan Fang, Sheng Mao +4 more

Grimlock is an Agent Guard that enhances security for high-agency systems by enforcing identity, authorization, and scope-bound communication through eBPF and attested TLS channels, without modifying…

View →
cs.CRcs.NIRecentMay 29, 2026

Thou Shall Not Pass: Gatekeeping Outbound TLS Connections

Henrique B. Brum, Matteo Franzil, Riccardo Germenia, Salvatore Manfredi +2 more

The paper analyzes persistent TLS misconfigurations and introduces TLSGatekeeper, a high-performance, network-based tool that enforces security policies by monitoring TLS handshakes without requiring…

View →
cs.CRRecentMar 18, 2026

On Securing the Software Development Lifecycle in IoT RISC-V Trusted Execution Environments

Annika Wilde, Samira Briongos, Claudio Soriente, Ghassan Karame

The paper introduces a novel toolkit to enhance RISC-V Trusted Execution Environments (TEEs) by adding modular extensions for secure enclave update, migration, state continuity, and trusted time, ther…

View →