A Lightweight Identity-Based Signature Scheme for Mitigation of Content Poisoning Attack in Named Data Networking With Internet of Things

Ullah, Syed Sajid; Ullah, Insaf; Khattak, Hizbullah; Khan, Muhammad Asghar; Adnan, Muhammad; Hussain, Saddam; Amin, Noor Ul; Khattak, Muazzam A. Khan

doi:10.1109/access.2020.2995080

Cited by 41 publications

(32 citation statements)

References 58 publications

(111 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To mitigate CPA, a number of proposals have been suggested in literature [26][27][28][29][30][31][32][33][34][35][36][37]. However, none of the suggested proposals can effectively mitigate the CPA.…”

Section: B Content Poisoning Attack (Cpa)mentioning

confidence: 99%

“…Recently in 2020, Ullah et al [37], proposed an OnDemand lightweight identity-based signature scheme for mitigation of CPA in NDN-based IoT, by using a lightweight HCC algorithm. According to the authors, a client and provider will register themselves with a network manager by sending their identities, the network manager then generates public and private keys by using their identities and send them to both.…”

Section: A Ndn Cpa Preservation Schemesmentioning

confidence: 99%

“…To assess the impact, the given scheme was compared with seven relevant schemes proposed by Yeh et al [45], Karati et al [46], Zhang et al [47], Sajid et al [37], Nasrollah and Vanda [48], Rezaeibagha et al [49] and Thumbur et al [50]. The key points from our comparison are explained in Table 4.…”

Section: A Computation Costmentioning

confidence: 99%

“…To test the simulation results, a workstation with the features used are mentioned in Table 3 [22,61]. Due to the smaller key size of 80 bits, ℳ ℋ is estimated to be 0.48milliseconds [18,37].…”

Section: A Computation Costmentioning

confidence: 99%

See 3 more Smart Citations

A Novel Efficient Certificateless Signature Scheme for the Prevention of Content Poisoning Attack in Named Data Networking-Based Internet of Things

et al. 2021

Self Cite

View full text Add to dashboard Cite

Recently, Named Data Networking (NDN) has emerged as a popular and active Internet architecture that addresses the issues of current host-centric communication. NDN is well suited for Internet of Things (IoT) which possesses massive applications that dominate the Internet today. It intends to provide named-based routing, in-networking caching, built-in mobility and multicast support as part of its design which leads to a substantial improvement in content delivery/retrieval. Though, this new architecture aches from some new challenges in terms of security. In this article, we seek our attention towards Content Poisoning Attack (CPA). The purpose of CPA is to inject poisoned content with an invalid signature into the NDN-based IoT networks. Unfortunately, none of the existing proposals work effectively when malicious attackers compromise the caches of NDN routers. To prevent this, we proposed a certificateless signature scheme for the preservation of CPA in NDN-based IoT networks. The proposed scheme is formally secure under the security hardness of Hyperelliptic Curve Discrete Logarithm Problem (HCDLP) with a security simulation/validation in "Automated Validation of Internet Security Protocols and Applications (AVISPA)". Besides, the formal proof we also compared the designed scheme with some existing solutions to show the cost-efficiency in terms of communication overhead and computation cost. To conclude, a robust deployment on NDN-based IoT networks is shown.

show abstract

Section: B Content Poisoning Attack (Cpa)mentioning

confidence: 99%

Section: A Ndn Cpa Preservation Schemesmentioning

confidence: 99%

Section: A Computation Costmentioning

confidence: 99%

Section: A Computation Costmentioning

confidence: 99%

See 2 more Smart Citations

A Novel Efficient Certificateless Signature Scheme for the Prevention of Content Poisoning Attack in Named Data Networking-Based Internet of Things

et al. 2021

Self Cite

View full text Add to dashboard Cite

show abstract

“…However, ζ cannot replay the old messages because he/she needs fresh FNs for every new session. Furthermore, we compare our scheme with the existing CGS and ID-BGS schemes in milliseconds (ms) by using the above major operation, according to the experiments performed in [50] with the following hardware and software specifications: [50], an SPBPM will take 4.32 ms, a single SBP will take 14.90 ms, SEXP will take 1.25 ms, and SEPM will take 0.97 ms. Based on the experiments performed in [51,52], we consider that a SHEDM will take 0.48 ms. On the bases of the above expansive mathematical operations, we conduct the computation cost comparison of our proposed scheme with existing CGS schemes which are Zhang et al [28], Zhou et al [29], Zhang et al [30], Zhou [31], Waheed et al [32], and Karati et al [33] as shown in Tables 2 and 3. Further, the computation cost comparison of our proposed scheme with existing ID-BGS schemes which are Wei et al [21] and Shen et al [23] is shown in Tables 4 and 5.…”

Section: Forward Secrecymentioning

confidence: 99%

A Lightweight Nature Heterogeneous Generalized Signcryption (HGSC) Scheme for Named Data Networking-Enabled Internet of Things

Rehman

Khattak

Alzahrani

et al. 2020

Wireless Communications and Mobile Computing

Self Cite

View full text Add to dashboard Cite

Internet of Things (IoT) is the collection of different types of smart objects like mobile phones, sensors, cars, smart cities, smart buildings, and healthcare, which can provide a quality life to humans around the globe. These smart objects sense and produce a huge amount of data for distribution. The current hostcentric networking paradigm is not that scalable to provide a suitable solution to the idea of IoT. For scalable connectivity and efficient distribution, Named Data Networking (NDN) has been envisioned as a promising solution for future internet architecture. On the other hand, the significant issues regarding the adaptation of NDN with IoT possess security concerns such as authentication, confidentiality, integrity, and forward secrecy. As IoT is a heterogeneous environment, it demands a different type of security, according to the environmental situation such as public key infrastructure (PKI), identity-based cryptosystem (IBC), and certificateless cryptosystem (CLC). This paper presents a new concept of CLC to IBC heterogeneous generalized signcryption for the first time to fulfil the prime security requirements of NDN-based IoT. The proposed scheme provides the security properties according to situational needs without disturbing the structural policy of NDN. Considering the resource-constrained nature of IoT, we used a lightweight type of elliptic curve called the hyperelliptic curve cryptosystem which offers the same level of security as that of bilinear pairing and an elliptic curve cryptosystem using a minimum key size. Further, we compare the proposed scheme with recently proposed identity-based as well as certificateless generalized signcryption schemes, and the results give satisfactory outputs in terms of computational and communication resources. Furthermore, we simulate the proposed scheme with Automated Validation of Internet Security Protocols and Applications (AVISPA), and the results show that our scheme is valid and safe. Additionally, we provide a practical scenario of the proposed on NDN with an IoT-based smart city.

show abstract

An anonymous and efficient certificateless signature scheme based on blockchain in NDN‐IoT environments

Wang,

Deng,

et al. 2024

Trans Emerging Tel Tech

View full text Add to dashboard Cite

The Named Data Networking (NDN) architecture, known for its caching strategies and name‐based routing, is an exemplary paradigm for content distribution across Internet of Things (IoT) devices. In the environment of NDN‐IoT, there is an urgent demand for a lightweight signature authentication scheme suitable for terminal devices to ensure the integrity of Data packets and the legitimacy of their sources. Many researchers opt for employing certificateless public key cryptography measures to enhance the security of communication among terminal devices in NDN‐IoT. However, among the array of proposed solutions, issues such as lack of resistance against signer identity exposure, susceptibility to man‐in‐the‐middle attacks, and replay attacks persist. Some researchers advocate for partitioning the devices in NDN‐IoT into different zones, yet there remains a deficiency in the design of packet exchange mechanisms across distinct zones. To address these issues, this paper proposes a novel blockchain‐based certificate‐less signature scheme in the NDN‐IoT environment that integrates key features such as distributed legitimate producer management, inter‐domain interaction mechanisms, anonymous identity protection, and blockchain storage optimization. The overarching goal is to provide robust security services for resource‐constrained devices within the NDN infrastructure while ensuring authenticity and integrity of data packets while alleviating the burden of certificate management on end devices. Compared to similar existing solutions, our proposed method incurs only 34% of the computational overhead required for Data packet signature verification, while maintaining equivalent cache occupancy and achieving higher security performance.

show abstract

A Lightweight Identity-Based Signature Scheme for Mitigation of Content Poisoning Attack in Named Data Networking With Internet of Things

Cited by 41 publications

References 58 publications

A Novel Efficient Certificateless Signature Scheme for the Prevention of Content Poisoning Attack in Named Data Networking-Based Internet of Things

A Novel Efficient Certificateless Signature Scheme for the Prevention of Content Poisoning Attack in Named Data Networking-Based Internet of Things

A Lightweight Nature Heterogeneous Generalized Signcryption (HGSC) Scheme for Named Data Networking-Enabled Internet of Things

An anonymous and efficient certificateless signature scheme based on blockchain in NDN‐IoT environments

Contact Info

Product

Resources

About