Identity-based cryptography for grid security

Lim, Hoon Wei; Paterson, Kenneth G.

doi:10.1007/s10207-010-0116-z

Cited by 33 publications

(29 citation statements)

References 59 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Recently, identity-based cryptography (IBC) is considered suitable for securing grid and cloud computing environments [36], [37]. However, IBC suffers from the key escrow problem [38].…”

Section: A Overviewmentioning

confidence: 99%

Integrated Distributed Authentication Protocol for Smart Grid Communications

Saxena

Choi

2018

IEEE Systems Journal

View full text Add to dashboard Cite

Abstract-In the smart grid, an integrated distributed authentication protocol is needed to not only securely manage the system but also efficiently authenticate many different entities for the communications. In addition, a lightweight authentication protocol is required to handle frequent authentications among billions of devices. Unfortunately, in the literature, there is no such integrated protocol that provides mutual authentication among the home environment, energy provider, gateways, and advanced metering infrastructure network. Therefore, in this paper, we propose a lightweight cloud-trusted authorities-based integrated (centrally controlled) distributed authentication protocol that provides mutual authentications among communicated entities in a distributed manner. Based on certificateless cryptosystem, our protocol is lightweight and efficient even when there are invalid requests in a batch. Security and performance analysis show that the protocol provides privacy preservation, forward secrecy, semantic security, perfect key ambiguous, and protection against identity thefts while generating lower overheads in comparison with the existing protocols. Also, the protocol is secure against man-in-the-middle attacks, redirection attacks, impersonation attacks, and denial-of-service attacks. Moreover, our protocol provides a complete resistance against flood-based denial-of-service attacks.

show abstract

“…Recently, identity-based cryptography (IBC) is considered suitable for securing grid and cloud computing environments [36], [37]. However, IBC suffers from the key escrow problem [38].…”

Section: A Overviewmentioning

confidence: 99%

Integrated Distributed Authentication Protocol for Smart Grid Communications

Saxena

Choi

2018

IEEE Systems Journal

View full text Add to dashboard Cite

show abstract

“…First implementation of ID-PKC schemes was envisaged by Adi Shamir in 1984, which allowed users to verify the digital signatures using publicly available user information. Unlike PKI schemes ID-PKC system does not require certificate authority and eliminates the need for separate public key distribution infrastructure [7]. ID-PKC systems require private key generator (PKG) which holds the master private key and takes responsibility of generating the public keys corresponding to the identity.…”

Section: Fig 2: Pki System Supporting Certificate Servicementioning

confidence: 99%

Data Confidentiality in Public Cloud: A Method for Inclusion of ID-PKC Schemes in OpenStack Cloud

Gopularam¹,

Nalini²

2014

IJCA

View full text Add to dashboard Cite

The term data security refers to the degree of resistance of protection given to information from unintended or unauthorized access. The core principles of information security remain the same -Confidentiality, Integrity and Availability also referred as CIA triad. With cloud adoption the confidential enterprise data is moved from organization premises to untrusted public network and due to this the attack surface has increased manifold. Several cloud computing platforms like OpenStack, Eucalyptus, Amazon EC2 offer users to build and configure public, hybrid and private clouds. While the traditional encryption based on PKI infrastructure still works in cloud scenario the management of public-private keys and trust certificates is difficult. The Identity based Public Key Cryptography (also referred as ID-PKC) overcomes this problem by using publicly identifiable information for generating the keys and works well with decentralized systems. The users can exchange information securely without having to manage any trust information. Another advantage is that access control (role based access control policy) information can be embedded into data unlike in PKI where it is handled by separate component or system. In OpenStack cloud platform the keystone service acts as identity service for authentication and authorization and has support for public key infrastructure for auth services. The proposed approach explains cloud security model using OpenStack cloud platform and analyzes its security architecture for data confidentiality. It provides a method to integrate ID-PKC schemes for securing data when in transit and storage and explains the key measures for safe guarding data. The proposed approach uses JPBC crypto library for key-pair generation based on IEEE standard(s) P1636.3 for assuring data confidentiality in public cloud environment.

show abstract

“…Other threats in Cloud environment such as Repudiation, Denial of Services and Spoofing identity are probably ignored by authors. Honywei Li et al [7] present a Hierarchical Architecture for Cloud Computing. Then they proposed Identity-Base Encryption and Identity-Based Signature for that Hierarchical Architecture.…”

Section: Literature Surveymentioning

confidence: 99%

Implementation of Eap with RSA for Enhancing The Security of Cloud Computing

Marium¹,

Nazir²,

Shaikh

et al. 2012

International Journal of Basic and Applied Sciences

View full text Add to dashboard Cite

Cloud Computing is emerging approach because of high availability, efficient cost and performance. In Cloud Computing, services providers will provide the storage for data along with services. But due the lack of proper security policies, many business companies are reluctant to adopt the Cloud Computing technology. This paper has been written to highlight cloud security and privacy issues. Our research is mainly focus on service provider's side security. They must protect their client data by unauthorized access, modification or miss use, denial of services and repudiation. To ensure the security of client data in cloud, we purpose the implementation of Extensible Authentication Protocol through three way hand shake with RSA.

show abstract

Identity-based cryptography for grid security

Cited by 33 publications

References 59 publications

Integrated Distributed Authentication Protocol for Smart Grid Communications

Integrated Distributed Authentication Protocol for Smart Grid Communications

Data Confidentiality in Public Cloud: A Method for Inclusion of ID-PKC Schemes in OpenStack Cloud

Implementation of Eap with RSA for Enhancing The Security of Cloud Computing

Contact Info

Product

Resources

About