Abstract
With the rapid popularization of the Internet of Things (IoT) in our daily lives, the communication security and identity privacy of IoT devices must be ensured. However, traditional authentication mechanisms utilized in IoT cannot completely ensure a user’s privacy when his/her messages are routed via an untrusted intermediate device. Strong designated-verifier proxy re-signature (SDVPRS) is a new cryptographic technology that combines the advantages of strong designated verifier signature and proxy re-signature. Therefore, SDVPRS is considered to be a better approach to maintain data integrity and protect the identity privacy of the signer in a resource-limited IoT device. Nevertheless, designing a secure SDVPRS scheme without random oracles is still a challenging task. In this paper, we mainly focus on such a construction by providing a new method. We first provide the formal definition of SDVPRS and its security model. Then, we present the first SDVPRS scheme, which is bidirectional, multi-use and non-transferable, and we prove its security under the standard complexity assumptions in the standard model. The analysis results show that our SDVPRS scheme can not only protect the privacy of the signer’s identity, but also provide non-delegatability for signature verification. We present an example of potential application to environmental monitoring systems using our SDVPRS scheme.
Highlights
The Internet of Things (IoT) is rapidly entering all aspects of our daily lives
To secure IoT devices, a new Strong designated-verifier proxy re-signature (SDVPRS) technique applied to the IoT environment is presented in this paper
We present the security concepts of SDVPRS, and we propose the first construction of an SDVPRS scheme without random oracles
Summary
The Internet of Things (IoT) is rapidly entering all aspects of our daily lives. IoT uses sensors, radio frequency identification (RFID), wireless data communications and other technologies to construct a network that covers all things in the world to make the interactions between people and things and between things and things more intelligent and convenient [1]. Due to the combination of the features of strong designated verifier signature (SDVS) and proxy re-signature (PRS), SDVPRS maintains the integrity of IoT data during transmission, and protects the identity privacy of the IoT device that signs IoT data. In SDVPRS, the designated verifier’s secret key is required in the signature verification; the validity of the signature can only be checked by the signer or the designated verifier. This approach ensures that an adversary who captures a signature only knows that either the signer or the designated verifier created the signature, but the adversary cannot infer which one of them is the real signature generator. Constructing a secure (S)DVPRS scheme without random oracles in the standard model is an unsolved problem
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have