Static analysis of IoT Firmware: identifying systemic vulnerabilities with RMMIDL

Ahmad Al-Zuraiqi; Des Greer

doi:10.1109/EnCyCriS66464.2025.00008

Static analysis of IoT Firmware: identifying systemic vulnerabilities with RMMIDL

Ahmad Al-Zuraiqi^*, Des Greer^*

^*Corresponding author for this work

School of Electronics, Electrical Engineering and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

2 Downloads (Pure)

Abstract

The unprecedented surge in Internet of Things (IoT) device deployment has brought forth significant security challenges, primarily arising from vulnerabilities within firmware that facilitate unauthorized access, data exfiltration, and network exploitation. This study undertakes a comprehensive static analysis of 1,520 IoT firmware samples using the Firmware Analysis and Comparison Tool (FACT) alongside metadata from the WikiDevi archive to systematically identify inherent security flaws. Among the key vulnerabilities discovered are improper handling of format strings (CWE-134, 10.07%), memory mismanagement issues (CWE-416, 10.06 %; CWE-415, 10.03 %), and the presence of exposed debugging interfaces (CWE-782, 10.07%). These results highlight enduring risks in critical domains such as healthcare and industrial IoT, often magnified by insecure coding practices and reliance on outdated software components. To address these systemic shortcomings, this study proposes the Risk Mitigation Modeling for IoT Development Lifecycle (RMMIDL), a secure-by-design framework that embeds proactive security measures throughout each phase of IoT development. RMMIDL offers a systematic and well-defined framework for addressing pervasive risks, enhancing the resilience of IoT ecosystems, and promoting the implementation of robust security measures. Furthermore, this study outlines prospective research directions, emphasizing the potential of integrating large language models (LLMs), broadening the scope of firmware datasets, and fostering industry-wide collaboration to drive advancements in IoT security.

Original language	English
Title of host publication	IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS): Proceedings
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	7-14
ISBN (Electronic)	9798331538101
ISBN (Print)	9798331538118
DOIs	https://doi.org/10.1109/EnCyCriS66464.2025.00008
Publication status	Published - 13 Jun 2025
Event	IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS) - Rogers Center, Ottawa, Canada Duration: 03 May 2025 → 03 May 2025 https://conf.researchr.org/home/icse-2025/encycris-2025

Conference

Conference	IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS)
Abbreviated title	EnCyCriS
Country/Territory	Canada
City	Ottawa
Period	03/05/2025 → 03/05/2025
Internet address	https://conf.researchr.org/home/icse-2025/encycris-2025

Keywords

static analysis
IoT
firmware

Access to Document

10.1109/EnCyCriS66464.2025.00008Licence: Unspecified

Static analysis of IoT Firmware: identifying systemic vulnerabilities with RMMIDL
Copyright 2025 IEEE. This work is made available online in accordance with the publisher’s policies. Please refer to any applicable terms of use of the publisher.
Accepted author manuscript, 902 KBLicence: Unspecified

Secure internet of things using deep learning: applying transformer-based NLP techniques for enhanced IoT security
Al-Zuraiqi, A. M. (Author), McMullan, P. (Supervisor) & Greer, D. (Supervisor), Jul 2025
Student thesis: Doctoral Thesis › Doctor of Philosophy

Cite this

@inproceedings{737609f89132402e9418e58028de45f8,

title = "Static analysis of IoT Firmware: identifying systemic vulnerabilities with RMMIDL",

abstract = "The unprecedented surge in Internet of Things (IoT) device deployment has brought forth significant security challenges, primarily arising from vulnerabilities within firmware that facilitate unauthorized access, data exfiltration, and network exploitation. This study undertakes a comprehensive static analysis of 1,520 IoT firmware samples using the Firmware Analysis and Comparison Tool (FACT) alongside metadata from the WikiDevi archive to systematically identify inherent security flaws. Among the key vulnerabilities discovered are improper handling of format strings (CWE-134, 10.07%), memory mismanagement issues (CWE-416, 10.06 %; CWE-415, 10.03 %), and the presence of exposed debugging interfaces (CWE-782, 10.07%). These results highlight enduring risks in critical domains such as healthcare and industrial IoT, often magnified by insecure coding practices and reliance on outdated software components. To address these systemic shortcomings, this study proposes the Risk Mitigation Modeling for IoT Development Lifecycle (RMMIDL), a secure-by-design framework that embeds proactive security measures throughout each phase of IoT development. RMMIDL offers a systematic and well-defined framework for addressing pervasive risks, enhancing the resilience of IoT ecosystems, and promoting the implementation of robust security measures. Furthermore, this study outlines prospective research directions, emphasizing the potential of integrating large language models (LLMs), broadening the scope of firmware datasets, and fostering industry-wide collaboration to drive advancements in IoT security.",

keywords = "static analysis, IoT, firmware",

author = "Ahmad Al-Zuraiqi and Des Greer",

year = "2025",

month = jun,

day = "13",

doi = "10.1109/EnCyCriS66464.2025.00008",

language = "English",

isbn = "9798331538118",

pages = "7--14",

booktitle = "IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS): Proceedings",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

address = "United States",

note = " IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS), EnCyCriS ; Conference date: 03-05-2025 Through 03-05-2025",

url = "https://conf.researchr.org/home/icse-2025/encycris-2025",

}

Al-Zuraiqi, A & Greer, D 2025, Static analysis of IoT Firmware: identifying systemic vulnerabilities with RMMIDL. in IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS): Proceedings. Institute of Electrical and Electronics Engineers Inc., pp. 7-14, IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS), Ottawa, Ontario, Canada, 03/05/2025. https://doi.org/10.1109/EnCyCriS66464.2025.00008

Static analysis of IoT Firmware: identifying systemic vulnerabilities with RMMIDL. / Al-Zuraiqi, Ahmad ; Greer, Des.
IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS): Proceedings. Institute of Electrical and Electronics Engineers Inc., 2025. p. 7-14.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Static analysis of IoT Firmware: identifying systemic vulnerabilities with RMMIDL

AU - Al-Zuraiqi, Ahmad

AU - Greer, Des

PY - 2025/6/13

Y1 - 2025/6/13

N2 - The unprecedented surge in Internet of Things (IoT) device deployment has brought forth significant security challenges, primarily arising from vulnerabilities within firmware that facilitate unauthorized access, data exfiltration, and network exploitation. This study undertakes a comprehensive static analysis of 1,520 IoT firmware samples using the Firmware Analysis and Comparison Tool (FACT) alongside metadata from the WikiDevi archive to systematically identify inherent security flaws. Among the key vulnerabilities discovered are improper handling of format strings (CWE-134, 10.07%), memory mismanagement issues (CWE-416, 10.06 %; CWE-415, 10.03 %), and the presence of exposed debugging interfaces (CWE-782, 10.07%). These results highlight enduring risks in critical domains such as healthcare and industrial IoT, often magnified by insecure coding practices and reliance on outdated software components. To address these systemic shortcomings, this study proposes the Risk Mitigation Modeling for IoT Development Lifecycle (RMMIDL), a secure-by-design framework that embeds proactive security measures throughout each phase of IoT development. RMMIDL offers a systematic and well-defined framework for addressing pervasive risks, enhancing the resilience of IoT ecosystems, and promoting the implementation of robust security measures. Furthermore, this study outlines prospective research directions, emphasizing the potential of integrating large language models (LLMs), broadening the scope of firmware datasets, and fostering industry-wide collaboration to drive advancements in IoT security.

AB - The unprecedented surge in Internet of Things (IoT) device deployment has brought forth significant security challenges, primarily arising from vulnerabilities within firmware that facilitate unauthorized access, data exfiltration, and network exploitation. This study undertakes a comprehensive static analysis of 1,520 IoT firmware samples using the Firmware Analysis and Comparison Tool (FACT) alongside metadata from the WikiDevi archive to systematically identify inherent security flaws. Among the key vulnerabilities discovered are improper handling of format strings (CWE-134, 10.07%), memory mismanagement issues (CWE-416, 10.06 %; CWE-415, 10.03 %), and the presence of exposed debugging interfaces (CWE-782, 10.07%). These results highlight enduring risks in critical domains such as healthcare and industrial IoT, often magnified by insecure coding practices and reliance on outdated software components. To address these systemic shortcomings, this study proposes the Risk Mitigation Modeling for IoT Development Lifecycle (RMMIDL), a secure-by-design framework that embeds proactive security measures throughout each phase of IoT development. RMMIDL offers a systematic and well-defined framework for addressing pervasive risks, enhancing the resilience of IoT ecosystems, and promoting the implementation of robust security measures. Furthermore, this study outlines prospective research directions, emphasizing the potential of integrating large language models (LLMs), broadening the scope of firmware datasets, and fostering industry-wide collaboration to drive advancements in IoT security.

KW - static analysis

KW - IoT

KW - firmware

U2 - 10.1109/EnCyCriS66464.2025.00008

DO - 10.1109/EnCyCriS66464.2025.00008

M3 - Conference contribution

SN - 9798331538118

SP - 7

EP - 14

BT - IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS): Proceedings

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - IEEE/ACM 6th International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS)

Y2 - 3 May 2025 through 3 May 2025

ER -

Static analysis of IoT Firmware: identifying systemic vulnerabilities with RMMIDL

Abstract

Conference

Keywords

Access to Document

Fingerprint

Student theses

Secure internet of things using deep learning: applying transformer-based NLP techniques for enhanced IoT security

Cite this