Certificateless Aggregate Signcryption Research Articles

Secure pairing-free certificateless aggregate signcryption scheme for IoT

The widespread application of wireless sensor technology in the Internet of Things (IoT) industry significantly enhances productivity. However, the large scale deployment of IoT and the inherent vulnerabilities of wireless communication methods to attacks present significant new challenges. Consequently, there is a need to address the efficiency and security of information transfer in IoT. To effectively solve these issues, this paper presents a secure and efficient pairing-free certificateless aggregated signcryption (CL-ASC) scheme for IoT based on the elliptic curve cryptosystem. Our scheme avoids the complex certificate management issues associated with Public Key Cryptography (PKC) and the key escrow problem found in identity-based cryptography, while maintaining the storage and communication efficiency benefits of aggregated signcryption. The use of secure signcryption and aggregation techniques effectively resists a variety of potential attacks. Both formal and informal security analyses demonstrate that our scheme meets the expected security requirements. Specifically, our scheme shows significant improvements in computational and communication overheads. Compared to other state-of-the-art protocols, our scheme achieves signcryption computation cost of 0.691 ms, unsigncryption computation cost of 3.917 ms for 5 messages, and a total cost of 4.608 ms for 5 messages. Additionally, it provides a signcryption communication overhead of 128 bytes and aggregated communication overhead of 580 bytes for 5 messages.

ECC-Based Certificateless Aggregate Signcryption Scheme in Cyber-Physical Power Systems

ECC-Based Certificateless Aggregate Signcryption Scheme in Cyber-Physical Power Systems

A New Lightweight and Secure Certificateless Aggregate Signcryption Scheme for Industrial Internet of Things

A New Lightweight and Secure Certificateless Aggregate Signcryption Scheme for Industrial Internet of Things

A Secure and Efficient Pairing-Free Certificateless Aggregate Signcryption Scheme for V2G Networks

A Secure and Efficient Pairing-Free Certificateless Aggregate Signcryption Scheme for V2G Networks

CASKA-CRT: Chinese Remainder Theorem Empowered Certificateless Aggregate Signcryption Scheme with Key Agreement in IoVs

CASKA-CRT: Chinese Remainder Theorem Empowered Certificateless Aggregate Signcryption Scheme with Key Agreement in IoVs

BCSoM: Blockchain-based certificateless aggregate signcryption scheme for Internet of Medical Things

The integration of fog computing and blockchain in the Internet of Medical Things (IoMT) domain has wholly transformed the healthcare industry and e-health services. In IoMT, the patient’s personal health data is shared on an open channel that makes the IoMT system an easy target for attackers. Therefore, confidentiality and authentication are the key security requirements for an IoMT system. Although few works have been proposed to provide secure communication in conventional healthcare infrastructures, limited work has been done to achieve data confidentiality and authentication in blockchain-based IoMT under fog environment. Therefore, this work proposes a blockchain-assisted certificateless aggregate signcryption called BCSoM scheme that achieves data confidentiality and device/patient authentication. In the proposed work, first, IoMT devices generate a signcrypted text and transmit it to an aggregator that generates an aggregated signcrypted text and sends it to a receiver fog server. The receiver fog server verifies the signcrypted text through the blockchain and also performs unsigncryption to retrieve the original message. The proposed scheme is proven secure under the Discrete Logarithm (DL) and Computational Diffe–Hellman (CDH) assumptions. Finally, a thorough performance analysis using the Hyperledger Fabric platform and cryptographic libraries shows that the proposed scheme is computationally more efficient when compared to existing works.

Efficient and Secure Certificateless Signcryption Without Pairing for Edge Computing-Based Internet of Vehicles

The emergence of the vehicular ad-hoc network (VANETs) could meet the need for an efficient and safe transportation. Vehicles wirelessly interact with nearby road-side units (RSUs) and send the data to the cloud servers (CS), but this approach has limitations (i.e. network congestion and privacy leakage). Edge computing can effectively solve problems of network congestion, feedback delay and privacy leakage during transmission caused by CS. Thus, this paper proposes a certificateless aggregate signcryption with online/offline encryption (CLOASC) based on edge computing (EDC). Correspondingly, certificateless signcryption (CLSC), online/offline encryption (OOE) and aggregate signcryption technology solve the key escrow problem, shorten the encryption time and realize the quick verification of multiple users, respectively. Furthermore, it is worth mentioning that the scheme we propose does not have any bilinear pairings or scalar multiplications in the online encryption stage, which greatly reduces the computational cost in the online stage. In the random oracle model, our scheme was proved to be existential unforgeability under adaptive chosen message attacks (EUF-ACM) and adaptive indistinguishability under chosen-ciphertext attack (IND-CCA2) security. Simulation results show that our scheme is computationally and communication based lightweight as compared to the related.

A Security-Enhanced and Privacy-Preserving Certificateless Aggregate Signcryption Scheme-Based Artificial Neural Network in Wireless Medical Sensor Network

With the recent advances in mobile sensing and beyond-5G technologies, wireless medical sensor networks (WMSNs) have become an emerging hot topic in smart healthcare. Under the condition of limited resources of medical sensor nodes (MSNs), ensuring the accuracy and integrity of a large number of patients’ medical data is a crux for security and data privacy issues. In order to overcome the limitations of medical sensors in communication and computing capabilities, and to achieve privacy in WMSN, we propose a low complexity certificateless aggregate signcryption (CL-ASC) scheme-based artificial neural network (NN) for safely achieving authentication and unforgeability of medical nodes. We use an adaptive sigma filter for denoising, adopt Levenshtein entropy for encoding, and design cryptographic protocol for signcrypting in the hidden layer of deep feedforward artificial NN (DFANN). The CL-ASC can authenticate all sensing bioinformation at once in a privacy-preserving way. Given the challenge of applying a discrete logarithm and computational Diffie-Hellman problems based on an elliptic curve, the proposed scheme satisfies the indistinguishability against chosen-ciphertext attacks (IND-CCA) and the adaptive chosen message attack (UF-CMA) security properties under the random oracle model (ROM). Finally, the benchmark evaluation shows that ours is ahead of similar state-of-the-art schemes, due to its low complexity and higher computational efficiency. Researchers interested in the provable security protocol design and framework of NNs can gain useful insights from this research and identify future cross domain of cybersecurity and NNs research directions based on the proposed scheme herein.

Pairing-Free Certificateless Aggregate Signcryption Scheme for Vehicular Sensor Networks

Smart vehicle applications play an increasingly significant role in constructing intelligent transportation systems. Vehicles with sensors are able to form temporary vehicular sensor networks dynamically, in which a mass of data are collected, shared, and aggregated to the traffic administration for improving road safety and efficiency. In such networks, vehicles exchange urgent or sensitive information with others in open wireless channels. To ensure secure and privacy-preserving communications, we develop a new pairing-free certificateless aggregate signcryption scheme based on the elliptic curve cryptosystem. The certificateless setting prevents the proposed scheme from both certificate management and key escrow issues. Aggregate signcryption without pairings realizes the aggregation and simultaneous authentication of multisource data by efficient cryptographic computing. The proposed scheme is proved to achieve confidentiality and unforgeability with the random oracle model. The security analysis shows that the proposed scheme provides forward secrecy, immunity to various known attacks, and pseudonym-based conditional privacy for vehicles. The performance analysis demonstrates that it satisfies more security properties with higher computation efficiency and lower communication overhead than state-of-the-art schemes.

Certificateless Aggregate Signcryption Scheme with Publicly Verifiable Pairless Operation

Certificateless Aggregate Signcryption Scheme with Publicly Verifiable Pairless Operation

Editorial for special issue on security, trust, and privacy in internet of things: Challenges and solutions

Editorial for special issue on security, trust, and privacy in internet of things: Challenges and solutions

SenseCrypt: A Security Framework for Mobile Crowd Sensing Applications.

The proliferation of mobile devices such as smartphones and tablets with embedded sensors and communication features has led to the introduction of a novel sensing paradigm called mobile crowd sensing. Despite its opportunities and advantages over traditional wireless sensor networks, mobile crowd sensing still faces security and privacy issues, among other challenges. Specifically, the security and privacy of sensitive location information of users remain lingering issues, considering the “on” and “off” state of global positioning system sensor in smartphones. To address this problem, this paper proposes “SenseCrypt”, a framework that automatically annotates and signcrypts sensitive location information of mobile crowd sensing users. The framework relies on K-means algorithm and a certificateless aggregate signcryption scheme (CLASC). It incorporates spatial coding as the data compression technique and message query telemetry transport as the messaging protocol. Results presented in this paper show that the proposed framework incurs low computational cost and communication overhead. Also, the framework is robust against privileged insider attack, replay and forgery attacks. Confidentiality, integrity and non-repudiation are security services offered by the proposed framework.

A Lightweight Data Aggregation Protocol With Privacy-Preserving for Healthcare Wireless Sensor Networks

In recent years, healthcare wireless sensor networks (HWSNs) have received extensive attention. Due to the direct participation of patients' personal health data, privacy issues, and security are very sensitive in HWSNs. How to aggregate the sensitive patient information securely and efficiently is still a challenging task to the HWSNs communication scenario. In this article, a lightweight data aggregation protocol with privacy-preserving is proposed to achieve enhancing security in HWSNs. With the proposed protocol, patients' personal health data collected by the data collect client can be aggregated by data aggregator and efficiently obtained by the medical service provider in a privacy-preserving manner. In particular, we first propose an efficient certificateless aggregate signcryption scheme, and then, design a data aggregation protocol for patient condition monitoring with information confidentiality, integrity, mutual authenticity, and public verifiability. Performance comparisons show that our newly proposed protocol significantly reduces computing overhead compared to the latest protocols in the field.

Privacy‐preserving cloud‐fog–based traceable road condition monitoring in VANET

SummaryWith the development of intelligent vehicles, the research on road condition monitoring has attracted much attention in the vehicular ad hoc network (VANET). The combination of VANET, cloud computing, and fog computing provides on‐demand computational resources while creating a lot of new challenges. In this paper, we propose an efficient privacy‐preserving cloud‐fog–based traceable road surface condition monitoring scheme. We use certificateless aggregate signcryption technology to implement multiple messages aggregation verification, which greatly saves computing resources and bandwidth. Moreover, we also use a traceable vehicle pseudo identity generated by a trace authority (TRA) to achieve identity privacy protection. To ensure the privacy of the fog and cloud server, the road condition information is reported in ciphertext format. In addition, the cloud server can perform ciphertext equivalence test operation to distinguish different road condition information of the same area without compromising the confidentiality. The ciphertext, which exceeds the set threshold, is uploaded to the blockchain. It can be stored permanently and never be tampered with or deleted. Finally, we demonstrate the correctness of the proposed scheme and show that the proposed scheme has higher efficiency.

An Efficient and Safe Road Condition Monitoring Authentication Scheme Based on Fog Computing

In recent years, with the development of intelligent vehicles and wireless sensor network technology, the research on road safety has attracted much attention in vehicular ad-hoc networks (VANETs). By sensing events on the road, vehicles can broadcast information to inform others of traffic jams or accidents. However, the mobile vehicle network has a large transmission delay, which makes real-time content transmission impossible. In this paper, a new certificateless aggregate signcryption scheme (CLASC) is proposed by using a fog computing framework that supports mobility, low latency, and location awareness. It is combined with online/offline encryption (OOE) technology, which reduces many time-consuming operations and improves the security of vehicle users and the efficiency of message authentication. In addition, the scheme has the characteristics of mutual authentication, anonymity, untraceability, and nondeniability. Based on the difficulty of the discrete logarithm problem (DLP) and the computational Diffie-Hellman (CDH) problem, the scheme is further proved to be unforgeability and confidentiality under the random oracle model. The simulation results show that compared with the existing schemes, this scheme can not only ensure the security requirements of the system but also achieve higher efficiency in computing and communication.

Towards secure and privacy preserving collision avoidance system in 5G fog based Internet of Vehicles

Current avoidance systems mainly focus on the safety of the car occupants. The surrounding entities including the pedestrians, the cyclists are assumed to use a different avoidance system for their safety. Vehicle speed is reported as one of the major factors that causes such severe road accidents that affect other entities on the road. In response, several solutions have been implemented to control the causalities of over speeding ranging from speed camera, speed detectors to car avoidance systems. However, those solutions have not significantly improved the rate of traffic accidents and their impact. Additionally, the current solutions do not ensure timely notification of all the road users (surrounding vehicle drivers, pedestrians or others) that can alleviate crash causalities in case of fatal traffic accidents. The fifth generation (5G) cellular network is predicted to overcome the current limitations of Internet-of-Vehicles (IoV) by offering fast, low latency and reliable connections to enable IoV based applications. Fog computing has also been proposed to complement IoV by bringing computational entities in nearby proximity of the vehicles. 5G based fog vehicular networks is a new paradigm that empower real-time and low latency services for Intelligent Transportation System (ITS). In this paper we proposed a secure and privacy-preserving collision avoidance system in 5G fog based IoV. The fog devices are used to collect speed violation report (TVR) sent by the vehicles’ speed sensors. The fog nodes aggregate multiple TVRs, verify the signatures on the TVRs and broadcast anonymous notifications to other entities in the vicinity. The protocol makes use of certificateless aggregate signcryption coupled with pseudonymous technique as the building blocks to ensure authentication, integrity, confidentiality and privacy preservation respectively. The batch verification technique is used by the fog devices to allow simultaneous TVRs signature verification for a timely response. The authorization of reporting speed sensors is both guaranteed by the location-based information along with the digital signature to discard all the bogus TVRs. The analysis of the protocol confirms its lightweightness and efficiency.

Privacy-Preserving Data Aggregation Protocol for Fog Computing-Assisted Vehicle-to-Infrastructure Scenario

Vehicle-to-infrastructure (V2I) communication enables moving vehicles to upload real-time data about road surface situation to the Internet via fixed roadside units (RSU). Thanks to the resource restriction of mobile vehicles, fog computation-enhanced V2I communication scenario has received increasing attention recently. However, how to aggregate the sensed data from vehicles securely and efficiently still remains open to the V2I communication scenario. In this paper, a light-weight and anonymous aggregation protocol is proposed for the fog computing-based V2I communication scenario. With the proposed protocol, the data collected by the vehicles can be efficiently obtained by the RSU in a privacy-preserving manner. Particularly, we first suggest a certificateless aggregate signcryption (CL-A-SC) scheme and prove its security in the random oracle model. The suggested CL-A-SC scheme, which is of independent interest, can achieve the merits of certificateless cryptography and signcryption scheme simultaneously. Then we put forward the anonymous aggregation protocol for V2I communication scenario as one extension of the suggested CL-A-SC scheme. Security analysis demonstrates that the proposed aggregation protocol achieves desirable security properties. The performance comparison shows that the proposed protocol significantly reduces the computation and communication overhead compared with the up-to-date protocols in this field.

A Privacy-Preserving Vehicular Crowdsensing-Based Road Surface Condition Monitoring System Using Fog Computing

In the recent past, great attention has been directed toward road surface condition monitoring. As a matter of fact, this activity is of critical importance in transportation infrastructure management. In response, multiple solutions have been proposed which make use of mobile sensing, more specifically contemporary applications and architectures that are used in both crowdsensing and vehicle-based sensing. This has allowed for automated control as well as analysis of road surface quality. These innovations have thus encouraged and showed the importance of cloud to provide reliable transport services to clients. Nonetheless, these initiatives have not been without challenges that range from mobility support, locational awareness, low latency, as well as geo-distribution. As a result, a new term has been coined for this novel paradigm, called, fog computing. In this paper, we propose a privacy-preserving protocol for enhancing security in vehicular crowdsensing-based road surface condition monitoring system using fog computing. At the onset, this paper proposes a certificateless aggregate signcryption scheme that is highly efficient. On the basis of the proposed scheme, a data transmission protocol for monitoring road surface conditions is designed with security aspects such as information confidentiality, mutual authenticity, integrity, privacy, as well as anonymity. In analyzing the system, the ability of the proposed protocol to achieve the set objectives and exercise higher efficiency with respect to computational and communication abilities in comparison to existing systems is also considered.

Certificateless aggregate signcryption: Security model and a concrete construction secure in the random oracle model

The concept of aggregate signcryption was first introduced in 2009 by Selvi et al. [Identity based aggregate signcryption schemes, Lecture Notes in Computer Science 5922 LNCS, 2009, pp. 378–397]. The aggregation process of these schemes reduces the amount of exchanged information and is particularly useful in low-bandwidth communication networks and computationally-restricted environments such as wireless sensor networks. Selvi et al.’s scheme is in the identity-based setting and suffers from the key escrow problem. The goal of this paper is to overcome this problem and propose a suitable security model for aggregate signcryption in the certificateless setting. We further propose a concrete certificateless aggregate signcryption scheme which is based on Barbosa and Farshim’s certificateless signcryption scheme [Certificateless signcryption. In: M. Abe, V. Gligor (Eds.), Proceedings of the 2008 ACM Symposium on Information, Computer and Communications Security (ASIACCS-08), ACM, New York. pp. 369–372]. We then prove the security of the proposed scheme in the random oracle model under the gap Bilinear Diffie–Hellman and computational Diffie–Hellman intractability assumptions.

Certificateless aggregate signcryption scheme with public verifiability

The research on aggregate signcryption is mostly based on identity-based encryption to provide confidentiality and authentication,thus improving efficiency.But aggregate signcryption has the problem in certificate management and key escrow.Therefore,it needs to design new aggregate signcryption schemes,which not only solve the problem of certificate management and key escrow,but also guarantee the confidentiality and authentication of the scheme.This paper analyzed the main stream aggregate signcryption schemes and their development.Combined with the scheme of Zhang et al.(ZHANG L,ZHANG F T.A new certificateless aggregate signature scheme.Computer Communications,2009,32(6):1079-1085) and the needs mentioned above,this article designed a certificateless aggregate signcryption scheme,and proved its confidentiality and unforgeability based on the Bilinear Diffie-Hellman(BDH) problem and Computational Diffie-Hellman(CDH) problem.The experimental results show that the proposed scheme is more efficient and the amount of computation is equal or lower in comparison with the other schemes.What's more,the new scheme is publicly verifiable,and it eliminates the use of public key certificate and solves the problem in key escrow.