Provably secure and authenticated data sharing protocol for IoT‐based crowdsensing network

Cloud-edge (CE) is revolutionizing our modern world with a greater user experience through the Internet of Things (IoT). However, the edge devices, communication bridge between the cloud and users, are repeatedly exhibiting many security flaws which will inevitably lead to massive cyber attacks. Thus, providing a proper security, specifically, the confidentiality and authenticity of sensitive data become a prime focus for many of the researchers. In cryptography, certificateless signcryption (CLSC) is one of the recent public key techniques that meets the requirements of confidentiality and authenticity of sensitive data between parties with minimal overhead. This paper aims to present a new data sharing protocol where the safety of data is achieved through a new CLSC scheme. The proposed CLSC is designed using the bilinear pairing and modular exponentiation operations. Besides, the CLSC is secure based on the intractability of Diffie-Hellman inversion (DHI) and bilinear-DHI assumptions without considering the random oracle model (ROM). Performance assessment of proposed CLSC gives satisfactory results after comparing with other related CLSC schemes. Therefore, proposed CLSC can be installed in the cloud-based edge-IoT environment where both the authenticity and confidentiality with minimal computational overhead are the essential factors.Trans Emerging Tel Tech. 2020;31:e3883.wileyonlinelibrary.com/journal/ett

Section: Literature Surveymentioning

confidence: 99%

“…Shortly thereafter, Chow et al proposed a new IBSC to satisfy the properties of public verifiability and forward security functionalities. There are several IBSCs with their applications and security loopholes are studied.…”

Section: Introductionmentioning

confidence: 99%

A secure data transmission protocol for cloud‐assisted edge‐Internet of Things environment

Kumar

Verma

Sikka

2020

“…Al‐Turjman et al 13 highlights the main privacy and security issues in smart city application architectures, and presents research challenges that still need to be considered in the future to improve performance. Karati and Biswas 14 proposed a new cryptographic protocol to address these challenges in response to the privacy issues of data confidentiality and authenticity in IoT‐based crowd perception environments. It makes use of identity‐based encryption ideas and designated verifier signature schemes, and designs a pairless and random‐free encryption mechanism with small public parameters, which can maintain the anonymity of IoT receivers.…”

Section: Related Researchesmentioning

confidence: 99%

A data privacy protection scheme for Internet of things based on blockchain

Gong

Mei

Feng³

et al. 2020

In recent years, the Internet of things (IoT) equipment has grown rapidly, and the scale of the IoT has also expanded. The IoT is deployed in the system in a centralized manner. At the same time that massive data has put a certain amount of pressure on the storage, the open network environment has not fully protected the privacy of the IoT data, which has become one of the important factors restricting the development of the IoT. Blockchain is a point‐to‐point distributed ledger technology based on cryptographic algorithms. The characteristics of decentralization, tamper resistance, anonymity, and public verifiability can alleviate data security issues in IoT. Ring signature and proxy reencryption are common encryption technologies in the field of privacy protection. Therefore, this article combines blockchain technology with ring signature and proxy reencryption to propose a privacy protection solution for the IoT. Through this solution, the data authorized for sharing in the IoT is transmitted in the system in the form of ciphertext, the identity information of the data sender is protected, and the distributed ledger eases the pressure of mass data storage on a centralized server. The correctness and safety of the proposed scheme are also analyzed.

“…With the development of 5G wireless communication technology 1 and the popularization of smart mobile terminals, various heterogeneous objects with autonomous communication capabilities (eg, smart mobile devices, sensors, RFID devices) have been widely used. Consequently, a system of interrelated computing devices called Internet of Things (IoT) network 2 is formed, which consists of smart mobile terminals such as mobile phones, smart tablets, wearable smart devices, and so on. With smart mobile terminals, not only the efficiency of various IoT systems in collecting and exchanging data can be improved, but also the sensory capabilities of wireless communication networks can be enhanced so that the applications of IoT networks can be greatly broadened.…”

Section: Introductionmentioning

confidence: 99%

A verifiable and privacy‐preserving multidimensional data aggregation scheme in mobile crowdsensing

Jiang

Zhao

Tang

et al. 2020

Mobile crowdsensing has become a popular data collection paradigm and has been extensively studied. Since the analysis of sensory data usually reveals privacy of mobile users, data aggregation technology is widely used to avoid privacy disclosure. However, traditional privacy‐preserving data aggregation schemes cannot provide aggregate statistics of multidimensional data in fine‐grained areas or resist collusive attacks. Moreover, the cloud platform is not fully trusted, and it is challenging to verify the correctness of data aggregation results. To provide privacy‐preserving multidimensional statistics within fine‐grained areas and verify results of data aggregation, we propose a verifiable privacy‐preserving data aggregation scheme in this article, which is based on data double‐masking, Shamir's secret sharing, and bilinear mapping. Specifically, a key agreement is utilized to establish mask seeds for users, while the users are required to extend mask values and generate the verification key with bilinear mapping. The cloud platform aggregates masked data and provides proof of computational results. Theoretical analysis demonstrates our scheme can protect data and location privacy, verify the aggregation results, and improve the rubustness to failure. The simulation results show that the computational overhead of mobile devices by using the proposed anticollusion scheme is better than that of homomorphic encryption. In addition, the computational complexity of task requesters is less than that of the PVPA scheme for verification of multidimensional aggregation results.