scholarly journals A Traceable and Authenticated IoTs Trigger Event of Private Security Record Based on Blockchain

2021 ◽  
Vol 11 (6) ◽  
pp. 2843
Author(s):  
Chin-Ling Chen ◽  
Zi-Yi Lim ◽  
Hsien-Chou Liao ◽  
Yong-Yuan Deng
Keyword(s):  
Mutual Authentication ◽  
Security Analysis ◽  
Private Security ◽  
Replay Attack ◽  
Forgery Attack ◽  
Communication Performance ◽  
Control Center ◽  
Blockchain Technology ◽  
Private Security Companies ◽  
Security Event

Recently, private security services have become increasingly needed by the public. The proposed scheme involves blockchain technology with a smart contract. When a private security company signs a contract with a client, they install an Internet of Things (IoTs) device in the client’s house and connect it with the IoT main controller; then, the IoT main controller connects to the security control center (SCC). Once there is an event triggered (e.g., a break-in or fire incident) by the IoTs device, the controller sends a message to the SCC. The SCC allocates a security guard (SG) to the incident scene immediately. After the task is accomplished, the SG sends a message to the SCC. All of these record the messages and events chained in the blockchain center. The proposed scheme makes security event records have the following characteristics: authenticated, traceable, and integral. The proposed scheme is proved by a security analysis with mutual authentication, traceability, integrity, and non-repudiation. The known attacks (e.g., man-in-the-middle attack, replay attack, forgery attack) are avoided by message encryption and a signing mechanism. Threat models in the communication phase can also be avoided. Finally, computation cost, communication performance, and comparison with related works are also discussed to prove its applicability. We also provide an arbitration mechanism, so that the proposed scheme can reduce disputes between private security companies and the client.

scholarly journals Password Based Client-Server-User Authenticated Key Agreement Mechanism for Cloud System

2019 ◽  
Vol 8 (4) ◽  
pp. 12839-12841
Keyword(s):  
Key Agreement ◽  
Identity Management ◽  
Mutual Authentication ◽  
Security Analysis ◽  
Impersonation Attack ◽  
Session Key ◽  
Replay Attack ◽  
Authentication Mechanism ◽  
Diffie Hellman ◽  
Cloud Server

The authentication is an essential concern in the cloud environment to restrict the unauthorized users to retrieve the files from cloud server. Moreover, authentication mechanisms are used to prevent illegal access of resources over insecure channel. Thus proposed work provides the strong and efficient authentication process in cloud computing environment by chebyshev polynomial based chaotic maps Diffie Hellman property. The proposed authentication mechanism does not disclose the identity of the user to CSP. Moreover proposed authentication mechanism enables mutual authentication, Identity management, and session-key agreement. The Proposed mechanism of security analysis includes the enabling mutual authentication and key agreement, restricting the impersonation attack, man in the middle attack and replay attack.

scholarly journals A Time-Bound Ticket-Based Mutual Authentication Scheme for Cloud Computing

2011 ◽  
Vol 6 (2) ◽  
pp. 227 ◽  
Author(s):  
Zhuo Hao ◽  
Sheng Zhong ◽  
Nenghai Yu
Keyword(s):  
Cloud Computing ◽  
Mutual Authentication ◽  
Security Analysis ◽  
Data Integrity ◽  
Authentication Scheme ◽  
Replay Attack ◽  
Good Efficiency ◽  
Password Guessing Attack ◽  
Integrity Checking ◽  
Guessing Attack

<p>Cloud computing is becoming popular quickly. In cloud computing, people store their important data in the cloud, which makes it important to ensure the data integrity and availability. Remote data integrity checking enables the client to perform data integrity verification without access to the complete file. This service brings convenience to clients, but degrades the server’s performance severely. Proper schemes must be designed to reduce the performance degradation.<br /> In this paper, a time-bound ticket-based mutual authentication scheme is proposed for solving this problem. The proposed authentication scheme achieves mutual authentication between the server and the client. The use of timebound tickets reduces the server’s processing overhead efficiently. The correspondence relationship between the digital ticket and the client’s smart card prevents user masquerade attack effectively. By security analysis, we show that the proposed scheme is resistant to masquerade attack, replay attack and password guessing attack. By performance analysis, we show that the proposed scheme has good efficiency. The proposed scheme is very suitable for cloud computing.</p>

scholarly journals A Lightweight Key Agreement Protocol Based on Chinese Remainder Theorem and ECDH for Smart Homes

Sensors ◽  
2020 ◽  
Vol 20 (5) ◽  
pp. 1357 ◽  
Author(s):  
Yi Jiang ◽  
Yong Shen ◽  
Qingyi Zhu
Keyword(s):  
Smart Home ◽  
Key Agreement ◽  
Chinese Remainder Theorem ◽  
Mutual Authentication ◽  
Security Analysis ◽  
Sensor Nodes ◽  
Replay Attack ◽  
Key Agreement Protocol ◽  
Diffie Hellman ◽  
Home Systems

Security and efficiency are the two main challenges for designing a smart home system. In this paper, by incorporating Chinese remainder theorem (CRT) into the elliptic curve Diffie–Hellman (ECDH), a lightweight key agreement protocol for smart home systems is constructed. Firstly, one-way hash authentication is used to identify the sensor nodes instead of mutual authentication to reduce the authentication cost. Secondly, the CRT is introduced to enhance the security of the original ECDH key agreement. Security analysis showed that the proposed protocol can validate the data integrity and resist the replay attack, the man-in-middle attack, and other attacks. Performance analysis and experiments showed that the protocol achieves high security with low communication and computation costs, and can be implemented in smart home systems.

scholarly journals A Blockchain-Based Secure Inter-Hospital EMR Sharing System

2020 ◽  
Vol 10 (14) ◽  
pp. 4958
Author(s):  
Chin-Ling Chen ◽  
Yong-Yuan Deng ◽  
Wei Weng ◽  
Hongyu Sun ◽  
Ming Zhou
Keyword(s):  
Private Information ◽  
Medical Technology ◽  
Medical Information ◽  
Personal Information ◽  
Mutual Authentication ◽  
Current Medical ◽  
Replay Attack ◽  
The Past ◽  
Blockchain Technology ◽  
Medical Materials

In recent years, blockchain-related technologies and applications have gradually emerged. Blockchain technology is essentially a decentralized database maintained by the collective, and it is now widely applied in various fields. At the same time, with the growth of medical technology, medical information is becoming increasingly important in terms of patient identity background, medical payment records, and medical history. Medical information can be the most private information about a person, but due to issues such as operation errors within the network or a hacking attack by a malicious person, there have been major leaks of sensitive personal information in the past. In any case, this has become an issue worth studying to ensure the privacy of patients and protect these medical materials. On the other hand, under the current medical system, the patient’s EMR (electronic medical record) cannot be searched across the hospital. When the patient attends the hospital for treatment, repeated examinations will occur, resulting in a waste of medical resources. Therefore, we propose a blockchain-based secure inter-hospital EMR sharing system in this article. Through the programmatic authorization mechanism by smart contracts, the security of EMR is guaranteed. In addition to the essential mutual authentication, the proposed scheme also provides and guarantees data integrity, nonrepudiation, user untraceability, forward and backward secrecy, and resistance to replay attack.

Security Analysis of Wireless Authentication Protocols

2019 ◽  
Vol 9 (2) ◽  
pp. 247-252 ◽  
Author(s):  
Ashish Joshi ◽  
Amar Kumar Mohapatra
Keyword(s):  
Execution Time ◽  
Communication Systems ◽  
Security Analysis ◽  
Cryptographic Protocols ◽  
Command Line ◽  
Time Analysis ◽  
Authentication Protocols ◽  
Replay Attack ◽  
Peer Communication ◽  
Digital Communication Systems

Background & Objective: Cryptographic protocols had been evident method for ensuring con dentiality, Integrity and authentication in various digital communication systems. However the validation and analysis of such cryptographic protocols was limited to usage of formal mathematical models until few years back. Methods: In this paper, various popular cryptographic protocols have been studied. Some of these protocols (PAP, CHAP, and EAP) achieve security goals in peer to peer communication while others (RADIUS, DIAMETER and Kerberos) can work in multiparty environment. These protocols were validated and analysed over two popular security validation and analysis tools AVISPA and Scyther. The protocols were written according to their documentation using the HLPSL and SPDL for analysis over AVISPA and Scyther respectively. The results of these tools were analysed to nd the possible attack an each protocol. Afterwards The execution time analysis of the protocols were done by repeating the experiment for multiple iterations over the command line versions of these tools.As the literature review suggested, this research also validates that using password based protocols (PAP) is faster in terms of execution time as compared to other methods, Usage of nonces tackles the replay attack and DIAMETER is secure than RADIUS. Results and Conclusion: The results also showed us that DIAMETER is faster than RADIUS. Though Kerberos protocol was found to safe, the results tell us that it is compromisable under particular circumstances.

scholarly journals Privacy-Preserving Smart Road-Pricing System with Trustworthiness Evaluation in VANETs

Sensors ◽  
2021 ◽  
Vol 21 (11) ◽  
pp. 3658
Author(s):  
Qingfeng Zhu ◽  
Sai Ji ◽  
Jian Shen ◽  
Yongjun Ren
Keyword(s):  
Traffic Control ◽  
Traffic Management ◽  
Location Privacy ◽  
Vehicular Ad Hoc Networks ◽  
Intelligent Transportation System ◽  
Smart Cities ◽  
Security Analysis ◽  
Geographical Location ◽  
Experimental Simulation ◽  
Control Center

With the advanced development of the intelligent transportation system, vehicular ad hoc networks have been observed as an excellent technology for the development of intelligent traffic management in smart cities. Recently, researchers and industries have paid great attention to the smart road-tolling system. However, it is still a challenging task to ensure geographical location privacy of vehicles and prevent improper behavior of drivers at the same time. In this paper, a reliable road-tolling system with trustworthiness evaluation is proposed, which guarantees that vehicle location privacy is secure and prevents malicious vehicles from tolling violations at the same time. Vehicle route privacy information is encrypted and uploaded to nearby roadside units, which then forward it to the traffic control center for tolling. The traffic control center can compare data collected by roadside units and video surveillance cameras to analyze whether malicious vehicles have behaved incorrectly. Moreover, a trustworthiness evaluation is applied to comprehensively evaluate the multiple attributes of the vehicle to prevent improper behavior. Finally, security analysis and experimental simulation results show that the proposed scheme has better robustness compared with existing approaches.

scholarly journals Drivers and barriers to workplace-based HIV self-testing among high-risk men in Uganda: a qualitative study

2021 ◽  
Vol 21 (1) ◽  
Author(s):  
Patience A. Muwanguzi ◽  
Robert C. Bollinger ◽  
Stuart C. Ray ◽  
LaRon E. Nelson ◽  
Noah Kiwanuka ◽  
...  
Keyword(s):  
Focus Group ◽  
Hiv Testing ◽  
Private Security ◽  
Focus Group Discussions ◽  
Group Discussions ◽  
Private Security Companies ◽  
Self Testing ◽  
Key Informant ◽  
Hiv Testing Services ◽  
Security Companies

Abstract Background Men in Sub-Saharan Africa are less engaged than women in accessing HIV testing and treatment and, consequently, experience higher HIV-related mortality. Reaching men with HIV testing services is challenging, thus, increasing the need for innovative ways to engage men with low access and those at higher risk. In this study, we explore men’s perceptions of drivers and barriers of workplace-based HIV self-testing in Uganda. Methods An exploratory study involving men working in private security companies employing more than 50 men in two districts, in central and western Uganda. Focus group discussions and key informant interviews were conducted. Data were analyzed using inductive content analysis. Results Forty-eight (48) men from eight private security companies participated in 5 focus group discussions and 17 key informant interviews. Of the 48 men, 14(29.2%) were ages 26–35 years. The majority 31(64.6%) were security guards. The drivers reported for workplace-based HIV self-testing included convenience, autonomy, positive influence from work colleagues, the need for alternative access for HIV testing services, incentives, and involvement of employers. The barriers reported were the prohibitive cost of HIV tests, stigma, lack of testing support, the fear of discrimination and isolation, and concerns around decreased work productivity in the event of a reactive self-test. Conclusions We recommend the involvement of employers in workplace-based HIV self-testing to encourage participation by employees. There is need for HIV self-testing support both during and after the testing process. Both employers and employees recommend the use of non-monetary incentives, and regular training about HIV self-testing to increase the uptake and acceptability of HIV testing services at the workplace.

Sign in / Sign up

Export Citation Format

Share Document