A Strong Designated Verifier Proxy Re-Signature Scheme for IoT Environments

Xiao-Dong Yang; Li-Kun Xiao; Chun-Lin Chen; Cai-Fen Wang

doi:10.3390/sym10110580

A Strong Designated Verifier Proxy Re-Signature Scheme for IoT Environments

Symmetry ◽

10.3390/sym10110580 ◽

2018 ◽

Vol 10 (11) ◽

pp. 580 ◽

Cited By ~ 3

Author(s):

Xiao-Dong Yang ◽

Li-Kun Xiao ◽

Chun-Lin Chen ◽

Cai-Fen Wang

Keyword(s):

Security Model ◽

Daily Lives ◽

Random Oracles ◽

Resource Limited ◽

The Standard Model ◽

Identity Privacy ◽

Designated Verifier ◽

Iot Devices ◽

Definition Of ◽

The Internet Of Things

With the rapid popularization of the Internet of Things (IoT) in our daily lives, the communication security and identity privacy of IoT devices must be ensured. However, traditional authentication mechanisms utilized in IoT cannot completely ensure a user’s privacy when his/her messages are routed via an untrusted intermediate device. Strong designated-verifier proxy re-signature (SDVPRS) is a new cryptographic technology that combines the advantages of strong designated verifier signature and proxy re-signature. Therefore, SDVPRS is considered to be a better approach to maintain data integrity and protect the identity privacy of the signer in a resource-limited IoT device. Nevertheless, designing a secure SDVPRS scheme without random oracles is still a challenging task. In this paper, we mainly focus on such a construction by providing a new method. We first provide the formal definition of SDVPRS and its security model. Then, we present the first SDVPRS scheme, which is bidirectional, multi-use and non-transferable, and we prove its security under the standard complexity assumptions in the standard model. The analysis results show that our SDVPRS scheme can not only protect the privacy of the signer’s identity, but also provide non-delegatability for signature verification. We present an example of potential application to environmental monitoring systems using our SDVPRS scheme.

Download Full-text

A Strongly Unforgeable Certificateless Signature Scheme and Its Application in IoT Environments

Sensors ◽

10.3390/s19122692 ◽

2019 ◽

Vol 19 (12) ◽

pp. 2692 ◽

Cited By ~ 4

Author(s):

Xiaodong Yang ◽

Xizhen Pei ◽

Guilan Chen ◽

Ting Li ◽

Meiding Wang ◽

...

Keyword(s):

Security Requirements ◽

Widespread Application ◽

Random Oracles ◽

Replay Attacks ◽

Security Research ◽

Viable Solution ◽

Iot Devices ◽

Certificateless Signature ◽

The Internet Of Things ◽

Strong Unforgeability

With the widespread application of the Internet of Things (IoT), ensuring communication security for IoT devices is of considerable importance. Since IoT data are vulnerable to eavesdropping, tampering, forgery, and other attacks during an open network transmission, the integrity and authenticity of data are fundamental security requirements in the IoT. A certificateless signature (CLS) is a viable solution for providing data integrity, data authenticity, and identity identification in resource-constrained IoT devices. Therefore, designing a secure and efficient CLS scheme for IoT environments has become one of the main objectives of IoT security research. However, the existing CLS schemes rarely focus on strong unforgeability and replay attacks. Herein, we design a novel CLS scheme to protect the integrity and authenticity of IoT data. In addition to satisfying the strong unforgeability requirement, the proposed scheme also resists public key replacement attacks, malicious-but-passive key-generation-centre attacks, and replay attacks. Compared with other related CLS schemes without random oracles, our CLS scheme has a shorter private key, stronger security, and lower communication and computational costs.

Download Full-text

A Machine Learning-Based Exploration of Relationship Between Security Vulnerabilities of IoT Devices and Manufacturers

International Journal of Data Analytics ◽

10.4018/ijda.2020070101 ◽

2020 ◽

Vol 1 (2) ◽

pp. 1-12

Author(s):

Ritu Chauhan ◽

Gatha Tanwar

Keyword(s):

Cyber Security ◽

Automated System ◽

Smart Devices ◽

Protocol Stack ◽

Security Vulnerabilities ◽

Local Networks ◽

Daily Lives ◽

Security Issues ◽

Iot Devices ◽

The Internet Of Things

The internet of things has brought in innovations in the daily lives of users. The enthusiasm and openness of consumers have fuelled the manufacturers to dish out new devices with more features and better aesthetics. In an attempt to keep up with the competition, the manufacturers are not paying enough attention to cyber security of these smart devices. The gravity of security vulnerabilities is further aggravated due to their connected nature. As a result, a compromised device would not only stop providing the intended service but could also act as a host for malware introduced by an attacker. This study has focused on 10 manufacturers, namely Fitbit, D-Link, Edimax, Ednet, Homematic, Smarter, Osram, Belkin Wemo, Philips Hue, and Withings. The authors studied the security issues which have been raised in the past and the communication protocols used by devices made by these brands. It was found that while security vulnerabilities could be introduced due to lack of attention to details while designing an IoT device, they could also get introduced by the protocol stack and inadequate system configuration. Researchers have iterated that protocols like TCP, UDP, and mDNS have inherent security shortcomings and manufacturers need to be mindful of the fact. Furthermore, if protocols like EAPOL or Zigbee have been used, then the device developers need to be aware of safeguarding the keys and other authentication mechanisms. The authors also analysed the packets captured during setup of 23 devices by the above-mentioned manufacturers. The analysis gave insight into the underlying protocol stack preferred by the manufacturers. In addition, they also used count vectorizer to tokenize the protocols used during device setup and use them to model a multinomial classifier to identify the manufacturers. The intent of this experiment was to determine if a manufacturer could be identified based on the tokenized protocols. The modelled classifier could then be used to drive an algorithm to checklist against possible security vulnerabilities, which are characteristic of the protocols and the manufacturer history. Such an automated system will be instrumental in regular diagnostics of a smart system. The authors then wrapped up this report by suggesting some measures a user can take to protect their local networks and connected devices.

Download Full-text

Defining the IoT

Proceedings of the International Conference on Business Excellence ◽

10.2478/picbe-2018-0013 ◽

2018 ◽

Vol 12 (1) ◽

pp. 118-128 ◽

Cited By ~ 3

Author(s):

Dan-Radu Berte

Keyword(s):

Internet Of Things ◽

Smart Home ◽

Economies Of Scale ◽

The Internet ◽

Clear Understanding ◽

Everyday Objects ◽

The Media ◽

Iot Devices ◽

Definition Of ◽

The Internet Of Things

Abstract IoT, or the Internet of Things, has been in use since circa 1999. It defines a next chapter in the evolution of the Internet where computing devices embedded in everyday objects are able to send and receive data themselves. In recent years miniaturization and economies of scale brought a boon of new devices to the consumer and enterprise market, prompting Gartner to predict over 20bln live IoT devices by 2020. However, the definition of IoT is loose and, for the purpose of predicting trends or discussing security, formulating a clear understanding of the term is crucial. In fact, Internet of Things is a term only mostly used by the media, academia and the industry. Customers in the consumer space refer to the technologies by their benefit describing term of “Smart Home”. A quick analysis of this gap shows how it’s entirely possible no knowledge permeates the business and market worlds because of the incompatible terms used. As more devices, OSes and heterogeneous platforms entrench the concept of a new digital lifestyle, the new “Digital Kingdom” opens its doors to radical disruption, such as the latest massive Mirai and Reaper attacks. Our ability to correctly define the IoT, it’s platforms and components, should lead to better market dynamics and better preparedness, as one can’t secure something that can’t be defined. This paper proposes to further understand the IoT by exploring available definitions, reiterating misuse and equivocal perception, concluding with a more suiting, contemporary definition.

Download Full-text

Improving the Bluetooth Hopping Sequence for Better Security in IoT Devices

International Journal of Software Innovation ◽

10.4018/ijsi.2018100109 ◽

2018 ◽

Vol 6 (4) ◽

pp. 117-131

Author(s):

Matt Sinda ◽

Tyler Danner ◽

Sean O'Neill ◽

Abeer Alqurashi ◽

Haeng-Kon Kim

Keyword(s):

The Internet ◽

Random Pattern ◽

Market Demand ◽

Daily Lives ◽

Current Algorithm ◽

Small Footprint ◽

Iot Devices ◽

Work Done ◽

The Internet Of Things ◽

New Framework

The Internet of Things (IoT) is becoming more pervasive in our daily lives and is being used to add conveniences to our everyday items. There are several standards that are allowing these devices to communicate with each other and ultimately, with our mobile devices. However, in a rush to meet market demand, security was not considered until after the device had already been placed on the market. Most of the work done in improving security has been in the area of encryption. However, with the relatively small footprint of IoT devices, this makes strong encryption difficult. The authors' method will show that the current algorithm used to determine the next Bluetooth frequency hop is vulnerable to attack, and will suggest a novel algorithm to more securely select the next frequency to use. They will simulate their solution algorithmically to showcase their approach and in so doing demonstrate that it moves to the next frequency in a more random pattern than the existing model achieves. In this article, the authors present a new framework for improving security that focuses on the timing of frequency hopping, particularly in Bluetooth. The results show that focusing on different timing sequences for how long a device stays on a particular frequency both fits the current Bluetooth Lite architecture and provides adequate security for IoT devices, as it is demonstrably more random that the existing architecture.

Download Full-text

Review of the Role of the Internet of Things (IoT) on the Consumer Market

Examining the Socio-Technical Impact of Smart Cities - Advances in Human and Social Aspects of Technology ◽

10.4018/978-1-7998-5326-8.ch009 ◽

2021 ◽

pp. 180-198

Author(s):

Yong Kyu Lee

Keyword(s):

Internet Of Things ◽

Wearable Devices ◽

The Internet ◽

Consumer Market ◽

Daily Lives ◽

Information And Communication ◽

Iot Devices ◽

The Internet Of Things

This chapter reviews the internet of things (IoT) as a key component of a smart city and how it is applied to consumers' daily lives and business. The IoT is a part of information and communication technology (ICT) and is considered a powerful means to improve consumers' quality of life. The “thing” could be any object which has internet capability, such as wearable devices and smart TVs/phones/speakers. Several studies have identified driving factors that have led consumers to adopting them, but also concerns of consumers' resistance to IoT devices. The three major fields of application of IoT technologies were selected to review the role of the IoT in consumers' daily lives and business.

Download Full-text

Reusable Mesh Signature Scheme for Protecting Identity Privacy of IoT Devices

Sensors ◽

10.3390/s20030758 ◽

2020 ◽

Vol 20 (3) ◽

pp. 758 ◽

Cited By ~ 8

Author(s):

Ke Gu ◽

WenBin Zhang ◽

Se-Jung Lim ◽

Pradip Kumar Sharma ◽

Zafer Al-Makhadmeh ◽

...

Keyword(s):

Public Key ◽

Signature Verification ◽

Signature Scheme ◽

Memory Consumption ◽

Computational Costs ◽

Processing Data ◽

Identity Privacy ◽

Iot Devices ◽

The Internet Of Things ◽

Specific Identity

The development of the Internet of Things (IoT) plays a very important role for processing data at the edge of a network. Therefore, it is very important to protect the privacy of IoT devices when these devices process and transfer data. A mesh signature (MS) is a useful cryptographic tool, which makes a signer sign any message anonymously. As a result, the signer can hide his specific identity information to the mesh signature, namely his identifying information (such as personal public key) may be hidden to a list of tuples that consist of public key and message. Therefore, we propose an improved mesh signature scheme for IoT devices in this paper. The IoT devices seen as the signers may sign their publishing data through our proposed mesh signature scheme, and their specific identities can be hidden to a list of possible signers. Additionally, mesh signature consists of some atomic signatures, where the atomic signatures can be reusable. Therefore, for a large amount of data published by the IoT devices, the atomic signatures on the same data can be reusable so as to decrease the number of signatures generated by the IoT devices in our proposed scheme. Compared with the original mesh signature scheme, the proposed scheme has less computational costs on generating final mesh signature and signature verification. Since atomic signatures are reusable, the proposed scheme has more advantages on generating final mesh signature by reconstructing atomic signatures. Furthermore, according to our experiment, when the proposed scheme generates a mesh signature on 10 MB message, the memory consumption is only about 200 KB. Therefore, it is feasible that the proposed scheme is used to protect the identity privacy of IoT devices.

Download Full-text

New Constructions of Hierarchical Identity-Based Signature in the Standard Model

Key Engineering Materials ◽

10.4028/www.scientific.net/kem.474-476.1356 ◽

2011 ◽

Vol 474-476 ◽

pp. 1356-1361

Author(s):

Qing Wu ◽

Su Xia Sun

Keyword(s):

Standard Model ◽

Provable Security ◽

Security Model ◽

Private Key ◽

Random Oracles ◽

Diffie Hellman ◽

The Standard Model ◽

Cdh Assumption ◽

Identity Based ◽

Provably Secure

In this paper, a new construct of hierarchical identity-based signature(HIBS) scheme is proposed at first. It has many advantages over those available, such as fully secure without using random oracles, efficient signing algorithm. Additionally, it is provably secure under the computational Diffie-Hellman(CDH) assumption. This assumption is more natural than many of the hardness assumptions recently introduced to HIBS in the standard model. However, the length of its private key and signature increases as the hierarchy depth expands. Then a modified scheme is presented. The signature of modified scheme consists of three group elements and the private keys size shrinks as the identity depth increases. Under the h-CDH assumption, it is provable security in full security model without using random oracles.

Download Full-text

Detecting security attacks in cyber-physical systems: a comparison of Mule and WSO2 intelligent IoT architectures

PeerJ Computer Science ◽

10.7717/peerj-cs.787 ◽

2021 ◽

Vol 7 ◽

pp. e787

Author(s):

José Roldán-Gómez ◽

Juan Boubeta-Puig ◽

Gabriela Pachacama-Castillo ◽

Guadalupe Ortiz ◽

Jose Luis Martínez

Keyword(s):

Real Time ◽

Smart Cities ◽

Cyber Physical Systems ◽

Security Attacks ◽

Physical Systems ◽

The Real ◽

Real Time Detection ◽

Iot Devices ◽

Definition Of ◽

The Internet Of Things

The Internet of Things (IoT) paradigm keeps growing, and many different IoT devices, such as smartphones and smart appliances, are extensively used in smart industries and smart cities. The benefits of this paradigm are obvious, but these IoT environments have brought with them new challenges, such as detecting and combating cybersecurity attacks against cyber-physical systems. This paper addresses the real-time detection of security attacks in these IoT systems through the combined used of Machine Learning (ML) techniques and Complex Event Processing (CEP). In this regard, in the past we proposed an intelligent architecture that integrates ML with CEP, and which permits the definition of event patterns for the real-time detection of not only specific IoT security attacks, but also novel attacks that have not previously been defined. Our current concern, and the main objective of this paper, is to ensure that the architecture is not necessarily linked to specific vendor technologies and that it can be implemented with other vendor technologies while maintaining its correct functionality. We also set out to evaluate and compare the performance and benefits of alternative implementations. This is why the proposed architecture has been implemented by using technologies from different vendors: firstly, the Mule Enterprise Service Bus (ESB) together with the Esper CEP engine; and secondly, the WSO2 ESB with the Siddhi CEP engine. Both implementations have been tested in terms of performance and stress, and they are compared and discussed in this paper. The results obtained demonstrate that both implementations are suitable and effective, but also that there are notable differences between them: the Mule-based architecture is faster when the architecture makes use of two message broker topics and compares different types of events, while the WSO2-based one is faster when there is a single topic and one event type, and the system has a heavy workload.

Download Full-text

INTERNET OF THINGS SECURITY FRAMEWORK

STRATEGIES XXI - Security and Defense Faculty ◽

10.53477/2668-2001-21-36 ◽

2021 ◽

Vol 17 (1) ◽

pp. 287-293

Author(s):

Dorin IORDACHE

Keyword(s):

Internet Of Things ◽

Cyber Security ◽

Smart Devices ◽

Daily Lives ◽

Long Run ◽

New Meanings ◽

Iot Devices ◽

E Mail ◽

Access Data ◽

The Internet Of Things

It was unimaginable for a non-professional user that access data to personal e-mail, bank or identity accounts could be stolen via a mobile phone interface or connection, no more than twenty years ago. Nowadays, people with bad intentions – hacker – can use smart devices, such as: webcams, microwaves, refrigerators, door controllers, and others, generically we named it IoT[1], to access accounts like the ones mentioned above, without much effort. The Internet of Things is the place where devices are digitally interconnected, interacts with almost every domain. IoT development is closely correlated with growing of Internet. These issues have generated an unprecedented upward trend in Wi-Fi and IoT interconnecting networks. Cyber-security has gained new meanings because of the increasing number and scope of IoT devices. By developing these devices, especially among regular users, it is necessary to improve their security more than ever. How prepared are regular users and how can they protect themselves in the context of IoT penetration into their daily lives? it is a question that needs to be answered, in terms of the actions it can take immediately or in the long run. [1] IoT - Internet of Things

Download Full-text

Automating IoT Data Ingestion Enabling Visual Representation

Sensors ◽

10.3390/s21248429 ◽

2021 ◽

Vol 21 (24) ◽

pp. 8429

Author(s):

Ala Arman ◽

Pierfrancesco Bellini ◽

Daniele Bologna ◽

Paolo Nesi ◽

Gianni Pantaleo ◽

...

Keyword(s):

Visual Analytics ◽

Visual Representation ◽

Heterogeneous Devices ◽

Device Model ◽

Whole Process ◽

Data Ingestion ◽

Iot Devices ◽

Definition Of ◽

The Internet Of Things

The Internet of things has produced several heterogeneous devices and data models for sensors/actuators, physical and virtual. Corresponding data must be aggregated and their models have to be put in relationships with the general knowledge to make them immediately usable by visual analytics tools, APIs, and other devices. In this paper, models and tools for data ingestion and regularization are presented to simplify and enable the automated visual representation of corresponding data. The addressed problems are related to the (i) regularization of the high heterogeneity of data that are available in the IoT devices (physical or virtual) and KPIs (key performance indicators), thus allowing such data in elements of hypercubes to be reported, and (ii) the possibility of providing final users with an index on views and data structures that can be directly exploited by graphical widgets of visual analytics tools, according to different operators. The solution analyzes the loaded data to extract and generate the IoT device model, as well as to create the instances of the device and generate eventual time series. The whole process allows data for visual analytics and dashboarding to be prepared in a few clicks. The proposed IoT device model is compliant with FIWARE NGSI and is supported by a formal definition of data characterization in terms of value type, value unit, and data type. The resulting data model has been enforced into the Snap4City dashboard wizard and tool, which is a GDPR-compliant multitenant architecture. The solution has been developed and validated by considering six different pilots in Europe for collecting big data to monitor and reason people flows and tourism with the aim of improving quality of service; it has been developed in the context of the HERIT-DATA Interreg project and on top of Snap4City infrastructure and tools. The model turned out to be capable of meeting all the requirements of HERIT-DATA, while some of the visual representation tools still need to be updated and furtherly developed to add a few features.

Download Full-text