Astrape: An Efficient Concurrent Cloud Attestation with Ciphertext-Policy Attribute-Based Encryption

Ba, Haihe; Zhou, Huaizhe; Mei, Songzhu; Qiao, Huidong; Hong, Tie; Wang, Zhiying; Ren, Jiangchun

doi:10.3390/sym10100425

Cited by 4 publications

(2 citation statements)

References 43 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, symmetric attestation secret sharing is not suitable for open scenarios, such as the remote attestation of confidential container clusters or other systems in cloud computing [39][40][41][42][43]. Instead, aggregate remote attestation based on asymmetric cryptography could be considered for confidential container clusters, as it eliminates the need for secret sharing.…”

Section: Discussionmentioning

confidence: 99%

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

Yu,

Huang

2024

Symmetry

View full text Add to dashboard Cite

Efficient safeguarding of the security of interconnected devices, which are often resource-constrained, can be achieved through collective remote attestation schemes. However, in existing schemes, the attestation keys are independent of the device configuration, leading to increased requirements for the trusted computing base. This paper introduces a symmetrical aggregate trust attestation that is compatible with devices adhering to the device identifier composition engine framework. The proposed scheme simplifies the trusted computing base requirements by generating an attestation key that is derived from the device configuration. Moreover, the scheme employs distributed aggregate message authentication codes to reduce both the communication volume within the device network and the size of the attestation report, thereby enhancing the aggregation efficiency. In addition, the scheme incorporates interactive authentication to accurately identify compromised devices.

show abstract

Section: Discussionmentioning

confidence: 99%

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

Yu,

Huang

2024

Symmetry

View full text Add to dashboard Cite

show abstract

“…Ramadan et al published a survey of public key infrastructure (PKI)-based security for mobile systems (see [19]) covering aspects such as authentication, key agreement, and privacy. Qiao et al described a black-box traceable ciphertext-policy attribute-based encryption (CP-ABE, see [20,21]) that is scalable and efficient and, therefore, better suited for cryptographic cloud storage. Zhu et al cryptanalyzed an image encryption algorithm based on a chaos s-box (see [22]), proposing an improved version with better security and performance.…”

Section: Related Workmentioning

confidence: 99%

Optimizing a Password Hashing Function with Hardware-Accelerated Symmetric Encryption

2018

View full text Add to dashboard Cite

Password-based key derivation functions (PBKDFs) are commonly used to transform user passwords into keys for symmetric encryption, as well as for user authentication, password hashing, and preventing attacks based on custom hardware. We propose two optimized alternatives that enhance the performance of a previously published PBKDF. This design is based on (1) employing a symmetric cipher, the Advanced Encryption Standard (AES), as a pseudo-random generator and (2) taking advantage of the support for the hardware acceleration for AES that is available on many common platforms in order to mitigate common attacks to password-based user authentication systems. We also analyze their security characteristics, establishing that they are equivalent to the security of the core primitive (AES), and we compare their performance with well-known PBKDF algorithms, such as Scrypt and Argon2, with favorable results.

show abstract

A Secret and Traceable Approach for Cloud Data Sharing

Yin

Chen

2023

2023 IEEE 10th International Conference on Cyber Security and Cloud Computing (CSCloud)/2023 IEEE 9th International Conference

View full text Add to dashboard Cite

Astrape: An Efficient Concurrent Cloud Attestation with Ciphertext-Policy Attribute-Based Encryption

Cited by 4 publications

References 43 publications

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

SDATA: Symmetrical Device Identifier Composition Engine Complied Aggregate Trust Attestation

Optimizing a Password Hashing Function with Hardware-Accelerated Symmetric Encryption

A Secret and Traceable Approach for Cloud Data Sharing

Contact Info

Product

Resources

About