Your search keyword '"Yang-Heng, Zhang"' showing total 3 results

1. Hardcoded vulnerability detection approach for IoT device firmware

Author

Chao MU, Xin WANG, Ming YANG, Heng ZHANG, Zhenya CHEN, Xiaoming WU

Subjects

big data, iot security, hard coding, vulnerability detection, Electronic computers. Computer science, QA75.5-76.95

Abstract

With the popularization of IoT devices, more and more valuable data is generated.Analyzing and mining big data based on IoT devices has become a hot topic in the academic and industrial circles in recent years.However, due to the lack of necessary detection and protection methods, many IoT devices have serious information security risks.In particular, device hard-coded information is closely related to system encryption and decryption, identity authentication and other functions, which can provide confidentiality protection for core data.Once this information is exploited by malicious attackers, serious consequences such as sensitive information leakage, backdoor attacks, and unauthorized logins will occur.In response to this problem, a multi-type character recognition and positioning scheme was designed and a hard-coded vulnerability detection method in executable files was proposed based on the study of the characteristics of hard-coded vulnerabilities in IoT devices.The proposed method extracted the firmware of IoT devices and filtered all executable files as the source to be analyzed.Then, a solution to identify and locate three types of hard-coded characters was provided.Further, the reachability of the function, where the hard-coded character was located, was analyzed according to the function call relationship.Meanwhile, the instruction heterogeneity was mitigated by an intermediate representation (IR) model.The character and parameter hard-coded values was obtained through a data flow analysis approach.A symbolic execution method was devised to determine the trigger conditions of the hard-coded vulnerabilities, and then the vulnerability detection result was output.On the one hand, the proposed method introduced the method of symbolic execution based on the use of the intermediate representation model, which eliminated the dependency of instruction architecture and reduces the false positive rate of vulnerabilities; On the other hand, this method can integrate characters, files, and cryptographic implementation to realize the different characteristics of three types of hard-coded characters, which increased the coverage of vulnerability detection and improves the versatility of the detection method.The experimental results show that the proposed method can effectively detect three types of hard-coded vulnerabilities of characters, files and cryptographic implementation in various IoT devices, and has good detection accuracy, which can provide certain guidance for the deployment of subsequent security protection technologies.

Published

2022

2. [Clinical effects of scaling and root planing with an adjunctive periodontal endoscope for residual pockets: a randomized controlled clinical study]

Author

Yang-Heng, Zhang, Hou-Xuan, Li, Fu-Hua, Yan, and Bao-Chun, Tan

Subjects

Endoscopes, 临床研究, Dental Scaling, Humans, Dental Care, Periodontitis, environment and public health, Root Planing

Abstract

To evaluate the efficacy of scaling and root planing (SRP) with a periodontal endoscope in the treatment of residual pockets in patients with periodontitis after initial periodontal therapy.Patients with residual pockets [probing depth (PD)≥5 mm] were included and randomly assigned to the endoscope group (SRP with a periodontal endoscope) or SRP group (SRP alone). The PD, attachment loss (AL), and bleeding on probing (BOP) of residual pockets were recorded before treatment and at 3 and 6 months after treatment. Data were analyzed with SPSS 20.0 software.Compared with the baseline values, the percentage of PD≥5 mm sites, PD, AL, and BOP (+)% in the endoscope group and SRP group at 3 and 6 months after treatment decreased (P0.05). Compared with the values at 3 months after treatment, the percentage of PD≥5 mm sites, PD, AL, and BOP (+)% at 3 and 6 months after treatment decreased in the endoscope group (P0.05), whereas no statistical difference in these values was observed in the SRP group (P0.05). Compared with those in the SRP group, the percentage of PD≥5 mm sites and PD at 3 and 6 months after treatment and AL and BOP (+)% at 6 months after treatment in the endoscope group decreased (P0.05).SRP with a periodontal endoscope shows a better effect in improving the PD, AL, and BOP of residual pockets (PD≥5 mm) in patients with periodontitis after initial periodontal therapy and has advantages in improving the long-term curative effect of this therapy.目的 比较牙周内窥镜辅助龈下刮治和根面平整（SRP）与传统SRP对慢性牙周炎患者基础治疗后残留牙周袋的临床疗效。方法 将牙周基础治疗后口内每个区至少有1个位点探诊深度（PD）≥5 mm的患者纳入研究，随机分为内窥镜组和SRP组，分别对残留牙周袋位点进行内窥镜辅助SRP治疗和传统SRP治疗。在治疗前（基线）、治疗后3、6个月检查PD、探诊出血（BOP）和附着丧失（AL），采用SPSS 20.0统计学软件对数据进行统计分析。结果 与基线相比，治疗后3、6个月内窥镜组及SRP组PD≥5 mm位点百分比、PD、AL、BOP阳性位点百分比均降低（P0.05）。治疗后6个月与3个月相比，内窥镜组PD≥5 mm位点百分比、PD、AL、BOP阳性位点百分比均降低（P0.05），而SRP组差异无统计学意义（P0.05）。与SRP组相比，内窥镜组治疗后3及6个月PD≥5 mm位点百分比、PD均降低，治疗后6个月AL、BOP阳性位点百分比降低（P0.05）。结论 牙周内窥镜辅助SRP对于基础治疗后的残留牙周袋（PD≥5 mm）的临床疗效优于传统SRP，尤其具有更好的远期预后。.

Published

2020

3. Mystery behind labial and oral melanotic macules: Clinical, dermoscopic and pathological aspects of Laugier-Hunziker syndrome

Author

Xiang Wang, Ning Duan, Wenmei Wang, and Yang-Heng Zhang

Subjects

medicine.medical_specialty, Peutz-Jeghers syndrome, Carney complex, Mucocutaneous zone, Peutz–Jeghers syndrome, Dermoscopy, Disease, Review, 030207 dermatology & venereal diseases, 03 medical and health sciences, 0302 clinical medicine, Pathology, Medicine, Pathological, business.industry, Pigmentation, 030206 dentistry, General Medicine, Laugier–Hunziker syndrome, medicine.disease, Dermatology, Laugier-Hunziker syndrome, Melanonychia, Differential diagnosis, business, Neurofibromatosis type 1

Abstract

Labial and oral melanotic macules are commonly encountered in a broad range of conditions ranging from physiologic pigmentation to a sign of an underlying life-threatening disease. Although Laugier-Hunziker syndrome (LHS) shares some features of labial and oral pigmentation with a variety of conditions, it is a benign and acquired condition, frequently associated with longitudinal melanonychia. Herein, the demographic, clinical, dermoscopic, and pathological aspects of LHS were reviewed comprehensively. The important differential diagnoses of mucocutaneous and nail pigmentation are provided. An accurate diagnosis is crucial to design a reasonable medical strategy, including management options, malignant transformation surveillance, and psychological support. It is important that clinicians conduct long-term follow-up and surveillance due to the potential risks of malignant transformation and local severe complications in some conditions.

Published

2018