On security of a certificateless signcryption scheme

Miao, Shihai; Zhang, Futai; Li, Sujuan; Mu, Yi

doi:10.1016/j.ins.2011.11.045

Cited by 39 publications

(8 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the same year, by using the one-time Schnorr-based signature to the user's public key, Jin et al [39] give the improved version of the scheme proposed in [38]. After a year, in the Liu et al scheme [40], Weng et al [41] point out that the two malicious-but-passive KGCs attack. These attacks were managed in the improved scheme [40].…”

Section: Related Workmentioning

confidence: 99%

A Lightweight and Provable Secured Certificateless Signcryption Approach for Crowdsourced IIoT Applications

et al. 2019

View full text Add to dashboard Cite

Industrial Internet of Things (IIoT) is a new type of Internet of Things (IoT), which enables sensors to merge with several smart devices to monitor machine status, environment, and collect data from industrial devices. On the other hand, cloud computing provides a good platform for storing crowdsourced data of IIoT. Due to the semi-trusted nature of cloud computing and communication through open channels, the IIoT environment needs security services such as confidentiality and authenticity. One such solution is provided by the identity-based signcryption. Unfortunately, the identity-based signcryption approach suffers from the key escrow problem. Certificateless signcryption is the alternative of identity-based signcryption that can resolve the key escrow problem. Here, we propose a lightweight certificateless signcryption approach for crowdsourced IIoT applications with the intention of enhancing security and decreasing the computational cost and communication overhead. The security and efficiency of the proposed approach are based on the hyper elliptic curve cryptosystem. The hyper elliptic curve is the advance version of the elliptic curve having small parameters and key size of 80 bits as compared to the elliptic curve which has 160-bits key size. Further, we validate the security requirements of our approach through automated validation of Internet security protocols and applications (AVISPA) tool with the help of high level protocol specification language (HLPSL). Moreover, our lightweight and secured scheme will attract low resource devices and will become a perk in the environment of IIoT.

show abstract

Section: Related Workmentioning

confidence: 99%

A Lightweight and Provable Secured Certificateless Signcryption Approach for Crowdsourced IIoT Applications

et al. 2019

View full text Add to dashboard Cite

show abstract

“…Concept of CLSC was primarily introduced by Barbosa and Farshim to resist the key escrow attack in IBSC scheme. Since then, several works were proposed based on the concept of Reference . Subsequently, Wu and Cheng devised a new CLSC which has the facility to provide the public verifiability property.…”

Section: Introductionmentioning

confidence: 99%

A secure data transmission protocol for cloud‐assisted edge‐Internet of Things environment

Kumar

Verma

Sikka

2020

Trans Emerging Tel Tech

View full text Add to dashboard Cite

Cloud-edge (CE) is revolutionizing our modern world with a greater user experience through the Internet of Things (IoT). However, the edge devices, communication bridge between the cloud and users, are repeatedly exhibiting many security flaws which will inevitably lead to massive cyber attacks. Thus, providing a proper security, specifically, the confidentiality and authenticity of sensitive data become a prime focus for many of the researchers. In cryptography, certificateless signcryption (CLSC) is one of the recent public key techniques that meets the requirements of confidentiality and authenticity of sensitive data between parties with minimal overhead. This paper aims to present a new data sharing protocol where the safety of data is achieved through a new CLSC scheme. The proposed CLSC is designed using the bilinear pairing and modular exponentiation operations. Besides, the CLSC is secure based on the intractability of Diffie-Hellman inversion (DHI) and bilinear-DHI assumptions without considering the random oracle model (ROM). Performance assessment of proposed CLSC gives satisfactory results after comparing with other related CLSC schemes. Therefore, proposed CLSC can be installed in the cloud-based edge-IoT environment where both the authenticity and confidentiality with minimal computational overhead are the essential factors.Trans Emerging Tel Tech. 2020;31:e3883.wileyonlinelibrary.com/journal/ett

show abstract

“…In 2008, Barbosa and Farshim [15] first proposed certificateless signcryption scheme, however, its performance was not acceptable. In 2010, a certificateless signcryption scheme in the standard mode is proposed by Liu et al [16], but it is not secure against malicious KGC attacks [17], [18]. In 2015, certificateless hybrid signcryption [19] and Leakage-free certificateless signcryption [20] are proposed.…”

Section: Introductionmentioning

confidence: 99%

Construction of Certificateless Proxy Signcryption Scheme From CMGs

Wang

2019

IEEE Access

View full text Add to dashboard Cite

As a cryptography primitive for secure data transmission, certificateless proxy signcryption (CLPS) allows an original signcrypter to entrust his signing authority to a proxy signcrypter for signing specified message on his behalf. In this paper, we combine CLPS with cyclic multiplication groups (CMGs) to construct a new certificateless proxy signcryption scheme from CMGs (CMGs-CLPSS). CMGs-CLPSS will receive significant attention because it simplifies the traditional public key cryptosystem (PKC) and solves the key escrow issue suffered by identity-based public key cryptosystem (IB-PKC). In CMGs-CLPSS, an encrypted message can only be decrypted by a designated receiver who is also responsible for verifying the message; moreover, if a later dispute over repudiation occurs, the designated receiver can readily announce ordinary CLPS for public verification without any extra computation effort. CMGs-CLPSS is proved to have the indistinguishability under adaptive chosen-ciphertext attacks (IND-CCA2 security) and existential unforgeability under adaptive chosen-message attacks (UF-CMA security) in the random oracle model. CMGs-CLPSS outperforms the existing schemes on the basis of computational complexity and is suitable for applications in digital contract signing and online proxy auction, and so on.

show abstract

On security of a certificateless signcryption scheme

Cited by 39 publications

References 29 publications

A Lightweight and Provable Secured Certificateless Signcryption Approach for Crowdsourced IIoT Applications

A Lightweight and Provable Secured Certificateless Signcryption Approach for Crowdsourced IIoT Applications

A secure data transmission protocol for cloud‐assisted edge‐Internet of Things environment

Construction of Certificateless Proxy Signcryption Scheme From CMGs

Contact Info

Product

Resources

About