Secure smart health with privacy-aware aggregate authentication and access control in Internet of Things

Zhang, Yinghui; Deng, Robert H.; Han, Gang; Zheng, Dong

doi:10.1016/j.jnca.2018.09.005

Cited by 70 publications

(48 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In 2012, Tso et al [11] proposed a strong secure certificateless short signature, which is more suitable for low bandwidth channels and/or low computing power systems requiring higher security levels. In 2018, Jia et al [29] and Zhang et al [30] put forward their certificateless signature schemes respectively. Besides, some medical application schemes were proposed.…”

Section: Related Work a Certificateless Signaturementioning

confidence: 99%

A Certificateless Verifiable Strong Designated Verifier Signature Scheme

et al. 2019

View full text Add to dashboard Cite

Certificateless strong designated verifier signature schemes have realized the merit of CL-PKC against the traditional strong designated verifier signatures. However, when the signer and the designated verifier disagree with the signature, existing schemes cannot distinguish the original signature from the signature transcript. In addition, errors or malicious actions introduced by the designated verifier may lead to the failure of signature verification. To solve these issues, we propose a certificateless verifiable strong designated verifier signature scheme. When disputes arise between the signer and the verifier, the scheme can effectively prevent the signer from denying the signature generated by the signer, as well as the designated verifier from denying valid signatures or invalid ones. Our scheme does not rely on bilinear pairings. The proposed scheme satisfies the requirements of verifiability, unforgeability, non-delegability, non-transferability and signer ambiguity. We also provide formal security proof in the random oracle model for the proposed scheme. INDEX TERMS Certificateless signature, strong designated verifier signature, ECDLP, verifiable.

show abstract

Section: Related Work a Certificateless Signaturementioning

confidence: 99%

A Certificateless Verifiable Strong Designated Verifier Signature Scheme

et al. 2019

View full text Add to dashboard Cite

show abstract

“…Therefore, a robust authentication scheme securing this communication is essential. Recently, a lot of works have been conducted to address security and privacy for sensitive information distributed using IoT devices in mobility networks or edge computing networks [11]- [15].…”

Section: Introductionmentioning

confidence: 99%

A Privacy-Preserved E2E Authenticated Key Exchange Protocol for Multi-Server Architecture in Edge Computing Networks

Hsu

et al. 2020

IEEE Access

View full text Add to dashboard Cite

Edge computing has played an important role in enabling 5G technology which supports a great number of connected narrow-band IoT devices. In an edge computing architecture enabled with global mobile network, edge or IoT devices are wirelessly connected to the edge of the network. Data acquisition and processing will be handled at or close to the edge of the network in a distributed way. Since edge computing is a heterogeneous distributed interactive system with multiple domains and entities, it might suffer from potential attacks and threats. To provide a trusted edge computing, there must have a robust scheme that allows all participants to mutually authenticate in a secure and privacy-preserved way. With the rapid development of IoT technologies, mobile networks and edge computing architecture, single server has been unable to meet the needs of users. In this paper, we propose a privacy-preserved end-to-end passwordbased authenticated key exchange protocol for multi-server architecture in edge computing networks. Our protocol allows an end user to use an easy-to-remember password to login to the server, then through foreign agent compute a shared key with another end user for specific use of services. The proposed protocol provides strong user anonymity during communication process. Besides, the proposed protocol is proved to be secure using BAN logic and AVISPA tool. Furthermore, performance analysis shows that the proposed protocol gains stronger security and better computational efficiency. Providing lightweight computation with short key size of ECC, our work is a solution to lower latency and improve efficiency in edge computing networks. INDEX TERMS Edge computing, IoT, end-to-end, privacy protection, password-based, key exchange.

show abstract

“…Different from backbone networks, with the main purpose of providing reachability services, enterprise networks need to support much more fine-grained routing policies. For example, 1) Multi-homing: an enterprise should be able to deliver the traffic of IPTV users to one upstream ISP, and the traffic of VoIP users to another upstream ISP; 2) Access control: a hospital needs to implement strict access control to gurantee the security of patients' electronic records [5]; 3) Performance: a bank should choose secure paths for its bank applications, and low-latency paths for its financial applications [6]. Other examples in enerprise networks include load balancing, network virtualization, etc.…”

Section: Introductionmentioning

confidence: 99%

FISE: A Forwarding Table Structure for Enterprise Networks

Yang

Cui

Deng

et al. 2020

IEEE Trans. Netw. Serv. Manage.

View full text Add to dashboard Cite

With increasing demands for more flexible services, the routing policies in enterprise networks become much richer. This has placed a heavy burden to the current router forwarding plane in support of the increasing number of policies, primarily due to the limited capacity in TCAM, which further hinders the development of new network services and applications. The scalable forwarding table structures for enterprise networks have therefore attracted numerous attentions from both academia and industry.To tackle this challenge, in this paper we present the design and implementation of a new forwarding table structure. It separates the functions of TCAM and SRAM, and maximally utilizes the large and flexible SRAM. A set of schemes are progressively designed, to compress storage of forwarding rules, and maintain correctness and achieve line-card speeds of packet forwarding. We further design an incremental update algorithm that allows less access to memory. The proposed scheme is validated and evaluated through a realistic implementation on a commercial router using real datasets. Our proposal can be easily implemented in the existing devices. The evaluation results show that the performance of forwarding tables under the proposed scheme is promising.

show abstract

Secure smart health with privacy-aware aggregate authentication and access control in Internet of Things

Cited by 70 publications

References 35 publications

A Certificateless Verifiable Strong Designated Verifier Signature Scheme

A Certificateless Verifiable Strong Designated Verifier Signature Scheme

A Privacy-Preserved E2E Authenticated Key Exchange Protocol for Multi-Server Architecture in Edge Computing Networks

FISE: A Forwarding Table Structure for Enterprise Networks

Contact Info

Product

Resources

About