Elliptic Curve Digital Signature Research Articles

Recent Progress in ECDSA and DSA Digital Signature Algorithms

Digital signatures are essential for verifying the authenticity and integrity of information, thus facilitating digital authentication. The Elliptic Curve Digital Signature Algorithm (ECDSA) and the Digital Signature Algorithm (DSA) play critical roles in the field of digital signatures. This paper explores the conceptual frameworks and mathematical underpinnings of these algorithms, providing an in-depth analysis of their advantages and disadvantages with a focus on computational time complexity and key length requirements. The distinct applications of ECDSA and DSA in various fields are examined, highlighting how the selection of an algorithm influences security and efficiency in different scenarios. This analysis also considers the algorithms' suitability for specific security applications, offering insights into their strategic deployment. By comparing these characteristics, the study aims to guide the selection of appropriate digital signature technology, tailored to meet operational needs and security specifications. This comparative approach not only elucidates the practical implications of each algorithm but also contributes to a broader understanding of their roles in securing digital transactions.

Advancing the deployment and information management of direct air capture: A solution enabled by integrating consortium blockchain system

Direct air capture (DAC) is a critical and emerging Negative Emissions Technology (NET) that directly removes CO2 from the atmosphere, significantly contributing to climate change. However, the deployment and management of large-scale DAC faces challenges such as collections and analysis of energy consumption data, intricate device and system management, emission prediction and operation strategy, precise carbon footprint tracking, etc. This paper proposes the integration of blockchain technology with DAC systems to address these challenges, utilizing blockchain's inherent properties of immutability, security, and transparency. The implementation strategy includes the development of a DAC consortium blockchain system, leveraging a consensus mechanism11Consensus mechanism: The programming and process used in blockchain systems to achieve distributed agreement about the ledger's state or the state of a data set. (Source: Investopedia), ECDSA encryption22Elliptic Curve Digital Signature Algorithm (ECDSA): In cryptography, the Elliptic Curve Digital Signature Algorithm (ECDSA) offers a variant of the Digital Signature Algorithm (DSA) which uses elliptic-curve cryptography. As with elliptic-curve cryptography in general, the bit size of the private key believed to be needed for ECDSA is about twice the size of the security level, in bits. (Source: Wikipedia), IoT33Internet of things (IoT): describes devices with sensors, processing ability, software and other technologies that connect and exchange data with other devices and systems over the Internet or other communication networks. (Source: Wikipedia) integration, and digital signatures. Preliminary modeling of the proposed system suggests potential improvements in operational efficiency and a reduction in data inaccuracies. The proposed system underscores the system's ability to streamline identity verification, improve data collection accuracy, and facilitate secure, confidential information sharing among DAC stakeholders. By enhancing the efficiency and reliability of DAC operations, this approach supports the scalable and effective deployment of NETs in the global effort to combat climate change. Future research will focus on empirical validation through pilot projects and simulations to further substantiate these claims.

ECDSA-secured blockchain architecture for interoperable healthcare in the Internet of Robotic Things (IoRT)

ABSTRACT The ever-growing Internet of Robotic Things (IoRT) in healthcare settings introduces new challenges in securing sensitive patient data. Existing communication networks within IoRT environments are vulnerable to security breaches. This paper proposes an ECDSA-secured blockchain architecture specifically designed to address these challenges. A key innovation is the implementation of a private blockchain network on ZedBoard development boards for access control and data integrity verification. IoT devices collect patient health data, which is then securely transmitted to a Mobius server for storage, minimizing resource impact on ZedBoards. To further strengthen the security framework, the architecture integrates the Elliptic Curve Digital Signature Algorithm (ECDSA) with Radix- 2 w optimizations. These optimizations result in a 28% reduction in CPU usage and an 8.96% reduction in memory usage, significantly enhancing cryptographic performance. Practical implementation validates the effectiveness of the proposed approach, providing a robust solution for securing IoRT networks. This research offers valuable insights for industries reliant on the seamless integration of IoT and robotics and concludes with key findings and future research directions, including exploring energy-efficient cryptographic protocols, enhancing scalability through advanced consensus mechanisms, and developing user-friendly interfaces for managing IoRT networks.

Developing a security enhancement for healthcare applications using blockchain-based firefly-optimized elliptic curve digital signature algorithm

Developing a security enhancement for healthcare applications using blockchain-based firefly-optimized elliptic curve digital signature algorithm

CoinFA: an efficient coin mixing scheme with flexible amounts

Abstract Coin mixing is an efficient anonymization technology of cryptocurrency used to eliminate the linkability of transaction parties by hiding their addresses in an anonymous set. However, a common weakness with most existing coin mixing schemes is that the amount of mixed coins must be the same for all requests within a mixing cycle, otherwise it is easy for an attacker to restore the linkability of transaction parties. In this paper, we design a stage-payable puzzle solution mechanism, named CoinFA, which reverses the control of the requesting amounts to the users for flexible mixing amounts. In our design, the payee (with an output address) first requests a puzzle from the mixers and the latter are the only ones who know the solution of the puzzle. If the payee solves the puzzle successfully, he can be rewarded with the corresponding Bitcoins. The payer (allowed to have multiple input addresses) then requests the solution by paying in installments. We achieve better security by weakening the rights of the involved third parties, while the hierarchical structure allows our solution to have better efficiency and robustness. We perform a security analysis on CoinFA based on the standard Rivest-Shamir-Adleman (RSA) assumption and Elliptic Curve Digital Signature Algorithm unforgeability. We also analyze the performance of CoinFA by comparing it with two related schemes, and the results show that our CoinFA scheme has a greater advantage when the mixing amount is relatively small.

The impact of Block chain-Based System on Goods Tracking and management in Industrial Environment

In the domain of Industrial Internet of Things (IIoT), the demand for robust and secure methods for goods tracking and management has become growingly critical. Conventional methods face significant challenges, including authentication, computational overhead, cyber security, and data integrity. To address these issues, this paper proposes a block-chain based system for goods management and tracking with enhanced authentication mechanism by leveraging the decentralized nature of block-chain technology and integrating Elliptic Curve Digital Signature Algorithm (ECDSA) with Elliptic Curve Cryptography-Zero Knowledge Proof (ECC-ZKP). The proposed solution aims to ensure the authenticity and the integrity for all the transaction while providing high level privacy-preserving verification without revealing information. The research in this paper demonstrates that the proposed block-chain-based system significantly enhances security performance, key management and operational efficiency, addressing the existing challenges in IIoT goods tracking and management, providing a resilient framework for more secure industrial operations in managing goods.

Hierarchical signature scheme based on elliptic curve digital signature algorithm

Hierarchical signature scheme based on elliptic curve digital signature algorithm

Blockchain-Based Quality Assurance System for Academic Programs

Nowadays, technology is increasingly being adopted in different kinds of businesses to process, store, and share sensitive information in digital environments that include enormous numbers of users. However, this has also increased the likelihood of cyberattacks and misuse of information, potentially causing severe damage. One promising technology, which can provide the required security services with an improved level of efficiency, is blockchain. This research explores the use of Ethereum blockchain and smart contracts to create a secure and efficient quality assurance system (QAS) for academic programs. By utilizing blockchain and smart contracts, the proposed approach improves the integrity and reliability of sensitive information processed by the QAS, promotes transparency and governance, and reduces the time and effort required for quality operations. The current approach uses an additional access control layer to further enhance user privacy. Smart contracts automate various quality transactions and saves time and resources, and hence increases the efficiency of the QAS. The interplanetary file system (IPFS) is used to address the challenge of size limitations in blockchain. Additionally, this research investigates the use of various cryptographic schemes to provide robust security services at the application layer. The experimental results showed that the use of a hybrid cryptosystem relying on an Elliptic curve digital signature and AES encryption (AES_ECCDSA) outperforms other counterparts’ cryptosystems using an RSA digital signature and AES encryption (AES_RSADSA) and Elliptic Curve Integrated Encryption Scheme (ECIES) in terms of speed. The performance results showed that AES_ECCDSA consumes 188 ms to perform the required cryptographic operations for a standard-quality document with a size of 8088 KB, compared to the 231 ms and 739 ms consumed by the AES_RSADSA and ECIES schemes, respectively. This study presents a prototype implementation of the blockchain-based QAS, which outlines the processing model and system requirements for key QAS processes. It has been found that the cost and time required for blockchain operations vary depending on the size of the input data—a larger data size requires more time and costs more to process. The results of the current study showed that the time delay for blockchain transactions ranges from 15 to 120 s, while the cost ranges from USD 50 to USD 400. This research provides evidence that blockchain and smart contract technologies have the potential to create a secure, efficient, and trustworthy QAS environment for academic programs.

Atomic cross-chain swap based on private key exchange

Atomic Cross-Chain Swap (ACCS) is one important topic in cryptocurrency, where users can securely and trustlessly exchange assets between two different blockchains. However, most known ACCS schemes assume specific scripting functionalities of the underlying blockchains, such as Hash Time Locked Contracts (HTLC). In addition, these schemes are typically only applicable to certain digital signature schemes, like Schnorr or Elliptic Curve Digital Signature Algorithm (ECDSA) signatures. In this paper, we propose a generic ACCS scheme, independent from the underlying blockchains. To the best of our knowledge, this is the first solution of this kind. Our results are as follows. First, we define a formal system model of ACCS. Next, we present a generic ACCS scheme meets our model. This scheme admits atomicity in cross-chain swaps without the need for a Trusted Third Party (TTP) and protects users’ privacy. Finally, by using the Non-Interactive Zero-Knowledge (NIZK) proof protocol as a tool, we instantiate our generic scheme for Elliptic Curve Discrete Logarithm Problem-based (ECDLP-based) signatures. In addition, we implement our scheme, and the experimental results show that our protocol outperforms the existing ACCS schemes, such as the HTLC-based schemes.

Two-Layered Multi-Factor Authentication Using Decentralized Blockchain in an IoT Environment.

Internet of Things (IoT) technology is evolving over the peak of smart infrastructure with the participation of IoT devices in a wide range of applications. Traditional IoT authentication methods are vulnerable to threats due to wireless data transmission. However, IoT devices are resource- and energy-constrained, so building lightweight security that provides stronger authentication is essential. This paper proposes a novel, two-layered multi-factor authentication (2L-MFA) framework using blockchain to enhance IoT devices and user security. The first level of authentication is for IoT devices, one that considers secret keys, geographical location, and physically unclonable function (PUF). Proof-of-authentication (PoAh) and elliptic curve Diffie-Hellman are followed for lightweight and low latency support. Second-level authentication for IoT users, which are sub-categorized into four levels, each defined by specific factors such as identity, password, and biometrics. The first level involves a matrix-based password; the second level utilizes the elliptic curve digital signature algorithm (ECDSA); and levels 3 and 4 are secured with iris and finger vein, providing comprehensive and robust authentication. We deployed fuzzy logic to validate the authentication and make the system more robust. The 2L-MFA model significantly improves performance, reducing registration, login, and authentication times by up to 25%, 50%, and 25%, respectively, facilitating quicker cloud access post-authentication and enhancing overall efficiency.

A blockchain-based hybrid encryption technique with anti-quantum signature for securing electronic health records

Electronic health records (EHRs) are important for the efficient management of healthcare data. However, Healthcare data travels across an open route, i.e., the Internet, making EHR security a difficult process to do. This puts healthcare data vulnerable to cyber assaults. A possible method for protecting EHRs is blockchain technology. In this work, we develop an EHR architecture based on blockchain, which ensures all stakeholder's safety and privacy. We analyze various security architectures used for EHRs and the standard encryption system is integrated with quantum computing (QC). To safeguard the conventional traditional encrypting system against quantum assaults, we provide a hybrid signature technique that combines the Elliptic Curve Digital Signature Algorithm (ECDSA) and Dilithium within the anti-quantum lattice-based blind signature. Based on the difficulty of lattice problems over finite fields, Dilithium is a lattice-based signature method that is substantially safe against selected message assaults. The developed technique creates high entropy secret keys using the lattice basis delegation mechanism. The combination of ECDSA and Dilithium provides an efficient and secure signature system that is resilient to quantum attacks. The proposed scheme ensures that only authorized users with a defined role can use the database to access the data. We evaluate the efficiency of our scheme by comparing its performance to other state-of-the-art solutions in terms of transaction throughput, resource utilization, and communication cost. Results demonstrate that the developed technique outperforms the existing techniques in terms of efficiency and security.

Enhancing IoT Security: A Blockchain-Based Mitigation Framework for Deauthentication Attacks

AbstractThe proposed Blockchain-Based Mitigation of Deauthentication Attacks (BBMDA) Framework aims to enhance the security and trustworthiness of IoT environments by leveraging blockchain technology, the Elliptic Curve Digital Signature Algorithm (ECDSA) for secure authentication, and Multi-Task Transformer (MTT) for efficient traffic classification. This paper presents a novel approach to mitigate de-authentication attacks in IoT ecosystems. The research methodology involves developing and implementing the BBMDA framework, followed by a comprehensive evaluation and comparison with existing techniques. Key findings indicate that the BBMDA framework outperforms traditional methods such as Support Vector Machine (SVM), k-nearest Neighbors (KNN), and Convolutional Neural Network (CNN) in terms of accuracy, false positive rate, false negative rate, precision, recall, and F1-score. These results underscore the effectiveness and efficiency of the proposed framework in enhancing IoT security.

Exploring on Cloud Security Landscapes:A Comprehensive Review

Nowadays, the massive growth of data and the adoption of the cloud-based architecture indicate that the secure storage of data is a very essential issue. Cloud storage is the solution to convenient, scalable and cost-effective storage, yet security issues persist, especially regarding the protection of sensitive information. The encryption plays a vital role in which data is made unreadable and only accessible by those with the proper authorization. This helps in data management and minimizes data leaks. Shared responsibility in cloud security entails collaboration between the operators and users through the encryption strategy and a number of security measures to protect the data, apps, and infrastructure. This paper deals with the different cryptographic techniques and technologies used for improving cloud security. It discusses the notion of Non-Deterministic Cryptographic Scheme (NCS), which is a secure technique that effectively utilizes randomness in cryptographic algorithms. Regarding the Intel architecture compatibility, SGX and blockchain technology implementation not only ensures data immutability, but it also strengthens the data against cyber threats. SGX produces secure compartments inside cloud platforms, while blockchain makes data integrity possible through decentralized and immutable ledger technology. The research gives an impression of the seaside and multi sided cloud security. Involving encryption, access control, data loss prevention, and intrusion detection systems. Technologies of cryptography like Group Key Based Attribute Encryption (GKBAE) and Modified Random Fibonacci Cryptography (MRFC) offers both data protection and reduced resource requirement in clouds. GKBAE enables fine-grained access control and attribute-based encryption that ensures high data security without any additional computation. In addition, the paper also talks about the privacy-preserving technology, and policy-oriented access control framework. Techniques like Linear Elliptical Curve Digital Signature (LECDS) that combine digital signatures with blockchain technologies can also be used to implement the above features. To sum up, the changing scenario of cloud security requires ceaseless innovation and application of the latest cryptographic methods. Through encryption, hardware level security features and distributed ledger technology implementation, data environment is more strengthened and vulnerabilities to hacking, data leakage, and unauthorized access are decreased. Making use of the modern security tools not only does the data safety but also is responsible for the trustworthiness and stability of the cloud computing infrastructure. Keywords— Cloud Security, Encryption, Data Protection, Non-Deterministic Cryptographic Scheme (NCS), Intel SGX, Blockchain, Group Key Based Attribute Encryption (GKBAE), Modified Random Fibonacci Cryptography (MRFC), Data Confidentiality.

CryptoCard: Blockchain-Powered Library Card Management System

Abstract: Institutions such as libraries often face challenges in managing and verifying the authenticity of issued library cards. Traditional methods of card issuance and verification may be susceptible to fraud and manipulation. To address these challenges, we present a Blockchain-Enabled Library Card Management System. Our system leverages blockchain technology to securely store and manage library card data. Each library card issuance is recorded as a block on the blockchain, ensuring transparency, immutability, and tamper-resistance. Digital signatures generated using the Elliptic Curve Digital Signature Algorithm (ECDSA) are employed to authenticate the integrity of each card. The system allows users to easily issue library cards by providing their personal information and a photo. The generated library card includes user details and a unique identifier, along with a digital signature to validate its authenticity. Additionally, users can verify the validity of library cards by querying the blockchain and verifying the digital signatures. By employing blockchain technology, our system enhances the security and trustworthiness of library card management, reducing the risk of fraud and ensuring the integrity of issued cards. It provides a robust and efficient solution for libraries to manage their card issuance process whilemaintaining data integrity and security.

Secure ECDSA SRAM-PUF Based on Universal Single/Double Scalar Multiplication Architecture.

Physically unclonable functions (PUFs) are crucial for enhancing cybersecurity by providing unique, intrinsic identifiers for electronic devices, thus ensuring their authenticity and preventing unauthorized cloning. The SRAM-PUF, characterized by its simple structure and ease of implementation in various scenarios, has gained widespread usage. The soft-decision Reed-Muller (RM) code, an error correction code, is commonly employed in these designs. This paper introduces the design of an RM code soft-decision attack algorithm to reveal its potential security risks. To address this problem, we propose a soft-decision SRAM-PUF structure based on the elliptic curve digital signature algorithm (ECDSA). To improve the processing speed of the proposed secure SRAM-PUF, we propose a custom ECDSA scheme. Further, we also propose a universal architecture for the critical operations in ECDSA, elliptic curve scalar multiplication (ECSM), and elliptic curve double scalar multiplication (ECDSM) based on the differential addition chain (DAC). For ECSMs, iterations can be performed directly; for ECDSMs, a two-dimensional DAC is constructed through precomputation, followed by iterations. Moreover, due to the high similarity of ECSM and ECDSM data paths, this universal architecture saves hardware resources. Our design is implemented on a field-programmable gate array (FPGA) and an application-specific integrated circuit (ASIC) using a Xilinx Virtex-7 and an TSMC 40 nm process. Compared to existing research, our design exhibits a lower bit error rate (2.7×10-10) and better area-time performance (3902 slices, 6.615 μs ECDSM latency).

Dual Attention Graph Convolutional Network optimized with the Sun Flower Optimization for Differential Privacy Protection Mechanism for Smart Grid against Security Attacks

A smart grid combines information and communication technology with the conventional power system to provide efficient and dependable electricity generation, transmission, distribution, and control. Utilities and users share information and electricity in a smart grid. This manuscript presents a Dual Attention Graph Convolutional Network (DAGCN) optimized with the Sun Flower Optimization Algorithm (SFO) predicting the differential privacy protection mechanism for smart grid (DPSG-DAGCN-SFO). Initially, the data is collected from NSL-KDD datasets. Afterward, the data is fed to an Adaptive Robust Cubature Kalman Filter (ARCKF) based preprocessing process. Then the preprocessed data’s are fed to Adaptive and Concise Empirical Wavelet Transform (ACEWT)for extracting features such as authentication, integrity and trusted authority. The extracted features are fed to Dual Attention Graph Convolutional Network (DAGCN)to classify the privacy protection in smart grid such as stealthy attack and no attack. The weight parameters of DAGCN are optimized using SFO. The proposed DPSG-DAGCN-SFO is implemented in python, effectiveness assessed by several performance metrics such as accuracy, error rate, precision, sensitivity, F1-score and recall. The proposed method error rate attains 2% stealthy attack and4% no attack of the of the privacy protection in smart grid. The proposed method shows better results in all existing systems like Bayesian Clustering Algorithm (BCA), Self-Adaptive Grid-Partitioning Algorithm (SGNA) and Elliptic Curve Digital Signature Algorithm (ECDSA).From the result it is concludes that the proposed DPSG-DAGCN-SFO method based error rate lower than the existing methods.

MATHEMATICAL MODEL OF DIGITAL SIGNATURE BASED ON ECDSA AND SCHMIDT-SAMOA CRYPTOSYSTEM

Digital Signature Technology is replacing paper-based work for customers and employees in various industries and e-commercial environment. Digital Signature provides cryptographic services like authentication, non-repudiation, and integrity for the digital data. With the development of internet, Digital Signature becomes increasingly important for security because of its integrity and authenticity. It is an electronic signature that can be used to authenticate the identity of the sender. Digital Signature does not provide confidentiality until an encryption algorithm is applied. In this study, a new model of Digital Signature is introduced using the Elliptic Curve Digital Signature Algorithm (ECDSA)with an encryption technique Schmidt Samoa Cryptosystem. This model provides double layer security with encryption as well as signing protocol. Proposed model provides features like confidentiality, non-repudiation, and authenticity.

Asynchronous Threshold ECDSA With Batch Processing

Threshold Elliptic Curve Digital Signature Algorithm (ECDSA) has attracted a lot of attention due to the wide applications of ECDSA in crypto asset. Although several variants of threshold signature protocols can provide functions, such as key generation and signing, they suffer from two shortfalls. First, these schemes only discuss a single signature computation task in a synchronous algorithm context, which is difficult to adapt to real crypto-asset applications, such as custody. Second, these schemes are computing intensive and not scalable, hence can hardly support large-scale processing operations in real life even after traditional optimization, such as multithreading, is applied. In this article, we propose an innovative computation method called asynchronous threshold ECDSA with batch processing, based on the interactive threshold signature protocols. The method provides a reliable solution for critical operational scenarios, such as threshold signing and distributed key generation (DKG) in crypto-asset custody, and can be a future reference in secure data distribution mechanisms. The performance and scalability of our methods are validated through a benchmark testing.

Temporal ECDSA: A timestamp and signature mask enabled ECDSA algorithm for IoT client node authentication

Internet of Things (IoT) networks are vulnerable to various security threats, especially in client authentication. The current authentication methods require significant resources and are vulnerable to specific attacks. The Non-Interactive Zero Knowledge Proof (NIZKP) concept suits IoT device authentication. Elliptic Curve Digital Signature (ECDSA) is a popular algorithm for IoT device authentication based on elliptic curve cryptography (ECC) and NIZKP. However, an intelligent attacker who captures the ECDSA signatures generated by the same random number can recover the private key. This paper proposes a timestamp based approach to prevent signature reuse and fake signature generation in the ECDSA algorithm. The signature proof is generated differently at each occurrence to prevent the generation of valid signatures from leaked private keys. The proposed approach eliminates the expensive modular inversion operations in signature generation and verification phases, enhancing execution efficiency. The analysis results indicate that the proposed Temporal ECDSA algorithm effectively prevents most attacks on client authentication in IoT networks. Various metrics, including computational complexity and security measures, were used to evaluate the effectiveness of the proposed approach, demonstrating that it outperforms most ECDSA variants.

Стандартизація еліптичних кривих: аналіз та впровадження в криптографічні протоколи

The purpose of the article is to consider the current state of elliptic cryptography, the prerequisites for its use, as well as the requirements of modern standards related to the use of elliptic cryptography The use of elliptic curves in cryptography is considered one of the most promising areas of development of modern security algorithms. This mathematical approach is based on the complexity of solving the discrete logarithm problem in a group of points of an elliptic curve over a finite field. The use of cryptography on elliptic curves allows you to ensure the security of data exchange using effective encryption algorithms and the creation of digital signatures (DI). This study examines elliptic curves for cryptographic purposes, and provides basic operations on the point group of elliptic curves. Special attention is paid to Elliptic curve Diffie-Hellman (ECDH) and Elliptic Curve Digital Signature Algorithm (ECDSA) key exchange algorithms. The standards regulating the use of elliptic curves in cryptographic systems are also analyzed, and the advantages of this cryptographic paradigm compared to the main asymmetric algorithms are considered. Potential threats and vulnerabilities of cryptographic algorithms based on elliptic curves are investigated. Examples of popular standardized curves recommended by relevant organizations, such as NIST, used in real-world cryptographic applications are also provided. Elliptic curve cryptography (ECC) is currently one of the foundations for the development of modern public-key cryptographic algorithms. ECC has gained recognition in cryptography for providing a high level of security with shorter key lengths (compared to other cryptographic approaches), high speed, resource savings, and versatility, giving it an advantage over other methods such as RSA and others. It provides a secure network connection, generates secret keys for TLS servers and their clients, and is also used to create digital signatures that guarantee the authenticity of transactions in cryptocurrency systems.