Distributed Public Key Certificate-Issuing Infrastructure for Consortium Certificate Authority Using Distributed Ledger Technology

Kumagai, Keita; Kakei, Shohei; Shiraishi, Yoshiaki; Saito, Shôichi

doi:10.1155/2023/9559439

Cited by 3 publications

(2 citation statements)

References 37 publications

(45 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To mitigate this threat in our proposed scheme, robust verification mechanisms are essential. Implementing protocols for public key authentication enables users to verify the legitimacy of received keys [43] while leveraging certificate authorities (CAs) provides digital certificates to validate the identities of communication parties [44]. Additionally, adopting trust-on-first-use (TOFU) mechanisms allows users to verify public keys during initial interactions [45].…”

Section: Side-channel Attacksmentioning

confidence: 99%

Securing Data Exchange with Elliptic Curve Cryptography: A Novel Hash-Based Method for Message Mapping and Integrity Assurance

Lahraoui,

Lazaar,

Amal

et al. 2024

Cryptography

View full text Add to dashboard Cite

To ensure the security of sensitive data, elliptic curve cryptography (ECC) is adopted as an asymmetric method that balances security and efficiency. Nevertheless, embedding messages into elliptic curve (EC) points poses a significant challenge. The intricacies of this process can greatly affect the overall security and efficiency of the cryptosystem, reflecting security vulnerabilities observed in many existing schemes that utilize ElGamal ECC-based encryption. In this paper, we introduce an innovative hash-based technique for securely embedding messages into EC points before encryption. A random parameter and a shared secret point generated through the EC Diffie–Hellman protocol are used to bolster the scheme’s security. The security of the proposed method is evaluated against various attack models; moreover, the complexity, and sensitivity of the encryption scheme, as well as its inputs, are analyzed. The randomness assessment of the ciphertext was performed using the NIST statistical test suite. Additionally, we propose a mechanism to ensure the integrity of the message by securely appending a tag to the ciphertext. As a consequence, a comprehensive analysis of our scheme demonstrates its effectiveness in maintaining data security and integrity against various attack models. The algorithm also meets more criteria such as the strict avalanche criterion, linear complexity, and operability.

show abstract

Section: Side-channel Attacksmentioning

confidence: 99%

Securing Data Exchange with Elliptic Curve Cryptography: A Novel Hash-Based Method for Message Mapping and Integrity Assurance

Lahraoui,

Lazaar,

Amal

et al. 2024

Cryptography

View full text Add to dashboard Cite

show abstract

“…However, in light of the expansion of consortium-based IoT systems involving multiple stakeholders, the challenge is how to operate a private CA without relying on a specific party in the consortium. We have proposed a distributed public key certificate-issuing infrastructure (DCII) [2] that uses distributed ledger technology (DLT) to address the problem of a SPOT for CA-based PKI in private environments where devices are interconnected. In the DCII, CA functions are shared among parties as smart contracts, and logs of the process are recorded in a distributed ledger (DL) to improve CA transparency.…”

Section: Introductionmentioning

confidence: 99%