LAMA: A secure lattice-based authentication scheme for cloud storage against misbehaved private key generator

2022 ◽  
Author(s):  
Md Jakir Hossain ◽  
Chunxiang Xu ◽  
Yuan Zhang ◽  
Xiaojun Zhang ◽  
Wanpeng Li
Keyword(s):  
Cloud Storage ◽  
Authentication Scheme ◽  
Private Key

Cryptanalysis of a Fragile Watermark Based H.264/AVC Video Authentication Scheme

2011 ◽  
Vol 145 ◽  
pp. 552-556 ◽  
Author(s):  
Grace C.W. Ting ◽  
Bok Min Goi ◽  
S. W. Lee
Keyword(s):  
Hash Function ◽  
Hash Functions ◽  
Authentication Scheme ◽  
The Internet ◽  
Message Authentication ◽  
High Definition ◽  
Video Authentication ◽  
Fragile Watermark ◽  
Private Key ◽  
Watermark Embedding

H.264/AVC is a widespread standard for high definition video (HD) for example DVD and HD videos on the internet. To prevent unauthorized modifications, video authentication can be used. In this paper, we present a cryptanalysis of a H.264/AVC video authentication scheme proposed by Saadi et al. [1] at EUSIPCO 2009. Our result will prevent situations where newer schemes are developed from the scheme thus amplifying the flaw. The designers claimed that the scheme can detect modifications on watermarked video. However, we show that an attacker can modify the watermarked video and compute a valid watermark such that the recipient will retrieve a watermark from the modified watermarked video that will match what the recipient computes during video authentication check. Thus, the recipient will think the tampered video is authentic. The first main problem of the scheme is its use of hash functions for watermark generation. Since hash functions are public functions not depending on any secret, the attacker can modify the watermarked video and feed this through the hash function to compute a new watermark. The second problem is that it is possible for the attacker to perform watermark embedding thus producing a modified watermarked video. On receiving the modified video, the recipient recomputes the watermark and compares this with the watermark extracted from the video. They will match because the embedded watermark and recomputed watermark use the same hash function based watermark generation and the same input i.e. the modified video. Our cryptanalysis strategy applies to any watermarking based video authentication scheme where the watermark and embedding are not functions of secrets. As countermeasure, the functions should be designed so that only legitimate parties can perform them. We present two improved schemes that solve this problem based on private key signing functions and message authentication functions respectively.

scholarly journals An Improved Authentication Scheme for Remote Data Access and Sharing Over Cloud Storage in Cyber-Physical-Social-Systems

IEEE Access ◽  
2020 ◽  
Vol 8 ◽  
pp. 47144-47160 ◽  
Author(s):  
Zahid Ghaffar ◽  
Shafiq Ahmed ◽  
Khalid Mahmood ◽  
Sk Hafizul Islam ◽  
Mohammad Mehedi Hassan ◽  
...  
Keyword(s):  
Cloud Storage ◽  
Social Systems ◽  
Data Access ◽  
Authentication Scheme ◽  
Remote Data

scholarly journals A Blockchain-Based Hierarchical Authentication Scheme for Multiserver Architecture

2021 ◽  
Vol 2021 ◽  
pp. 1-20
Author(s):  
Miqi Wu ◽  
Lin You ◽  
Gengran Hu ◽  
Liang Li ◽  
Chengtang Cao
Keyword(s):  
Secure Communication ◽  
Random Oracle Model ◽  
Random Oracle ◽  
Authentication Scheme ◽  
Security Risks ◽  
Private Key ◽  
Blockchain Technology ◽  
Man In The Middle ◽  
User Revocation ◽  
Authentication Schemes

In a multiserver architecture, authentication schemes play an important role in the secure communication of the system. In many multiserver authentication schemes, the security of the mutual authentications among the participants is based on the security of the registration center’s private key. This centralized architecture can create security risks due to the leakage of the registration center’s private key. Blockchain technology, with its decentralized, tamper-proof, and distributed features, can provide a new solution for multiserver authentication schemes. In a lot of multiserver authentication schemes, users’ permission is generally controlled by the registration center (RC), but these permission control methods cannot be applied in the decentralized blockchain system. In this paper, a blockchain-based authentication scheme for multiserver architecture is proposed. Our scheme provides a hierarchical authentication method to solve the problems of user permission control and user revocation caused by no registration center. The security of our scheme is formally proved under the random oracle model. According to our analysis, our scheme is resistant to attacks such as impersonation attacks and man-in-the-middle attacks. In addition, our performance analysis shows that the proposed scheme has less computation overhead.

scholarly journals Access Policy’s Over Encrypted Cloud Storage for Secure Deduplication

2018 ◽  
Vol 7 (3.27) ◽  
pp. 27
Author(s):  
G Kiran Kumar ◽  
E Amarnath Reddy ◽  
B Mamatha ◽  
Kompally Manisha
Keyword(s):  
Cloud Storage ◽  
Data Access ◽  
Public Key Cryptography ◽  
Public Key ◽  
Symmetric Encryption ◽  
Private Key ◽  
Attribute Based Encryption ◽  
Original File ◽  
Ciphertext Policy ◽  
Access Policies

Attribute-Based Encryption (ABE) is a basic concept that considers public-key cryptography. Ciphertext-Policy ABE (CP-ABE) is one of the approaches used by ABE for data sharing in the cloud. In CP-ABE scheme, each user’s private key has a set of attributes and then the user decrypts a ciphertext if it holds a matching key. Our proposed system provides an extension to CP-ABE by implementing AES. AES uses a symmetric encryption key algorithm for a same set of keys. Our system provides a higher security through AES because of its complexity and helps in generating the content key . This key is used during the encryption of the original file over the cloud. Our methodology also focuses on deduplication to provide less consumption of cloud storage over the cloud. Another advantage of using this system is to provide an efficient way of data access via access policies for a certain set of credentials.  

scholarly journals Implementation of Cloud Security by Identity Based Encryption

2019 ◽  
Vol 8 (4) ◽  
pp. 9812-9816
Keyword(s):  
Cloud Storage ◽  
Storage System ◽  
Cloud Security ◽  
Human Identity ◽  
Ip Address ◽  
Contact Number ◽  
Private Key ◽  
Identity Based Encryption ◽  
User Data ◽  
Identity Based

This paper presents the concept of encrypting the Data from the client to the client. But using some Key generator which sets the password for sending the information. In this concept, we have two types of passwords those are Private Key and Cloud outsourced key. The password will be sent to the client through email by using unique human identity, example Special Name, user id, IP address, etc. This Paper Deals with the client, private key generator and cloud. First, the user has to register by giving their basic details for having user name and password, have to enter their personal details, including contact number, email id, country, etc. When the user Id has created, they have to log through the client login. If they have an account they can be logged in if they are not having an account, they have to register. If any loss of password can reset the password by providing the email Id. This Paper can provide the Security of the user Data. In this Paper we are using cloud storage system.

Research on the Design and Development of Mobil Identity Authentication

2014 ◽  
Vol 687-691 ◽  
pp. 1983-1986
Author(s):  
Cao Yu
Keyword(s):  
Digital Signature ◽  
Identity Authentication ◽  
Authentication Scheme ◽  
Digital Certificate ◽  
Design And Development ◽  
Specific Service ◽  
Private Key ◽  
Sim Card ◽  
Specific Device

A mobile identity authentication scheme of e-commerce based on proposed to solve the problem that present merchant system's digital certificate carrier is not convenient to carry and specific device can only be used for' specific service. Java-SIM card technology has optimized PKI operations, and supports multiple applets running independently and securely on one card. Using the java-SIM Card to store private key and do digital signature operations, users can conveniently and securely enjoy any merchant's any online transaction service.

Design and Research of Online Authentication Based on Conic Curves

2011 ◽  
Vol 480-481 ◽  
pp. 1598-1602
Author(s):  
Xin Xia Song ◽  
Zhi Gang Chen
Keyword(s):  
Rapid Development ◽  
Authentication Scheme ◽  
Public Key ◽  
The Public ◽  
Entire Process ◽  
Private Key ◽  
Security And Reliability ◽  
Front Stage ◽  
Enhance Efficiency ◽  
Comprehensive Framework

The rapid development of Internet is pushing the e-Business to go to the front stage. Online authentication involves much more than the obvious identification and validation problem. We present here a comprehensive framework for online authentication which has several important practical benefits. Our distributed E-Business authentication scheme based on conic curve is proposed. This scheme is composed of three parts, constructing license and validating license. Because the security of license is determined by private key, not the arithmetic itself, user can not construct new license by given license and the public key as long as the private key is not leaked. Since encoding and decoding over conic are easily implement on conic curves, it has enabled our scheme to greatly enhance efficiency. We also analysis its security. The entire process guarantees the security and reliability.

scholarly journals Data Integrity Auditing without Private Key Storage for Secure Cloud Storage

2019 ◽  
pp. 1-1 ◽  
Author(s):  
Wenting Shen ◽  
Jing Qin ◽  
Jia Yu ◽  
Rong Hao ◽  
Jiankun Hu ◽  
...  
Keyword(s):  
Cloud Storage ◽  
Data Integrity ◽  
Private Key ◽  
Secure Cloud Storage

scholarly journals Secure and Efficient Data Sharing Scheme Based on Certificateless Hybrid Signcryption for Cloud Storage

Electronics ◽  
2019 ◽  
Vol 8 (5) ◽  
pp. 590 ◽  
Author(s):  
Wei Luo ◽  
Wenping Ma
Keyword(s):  
Data Sharing ◽  
Key Management ◽  
Cloud Storage ◽  
Service Providers ◽  
Private Key ◽  
Sharing Scheme ◽  
Efficient Data ◽  
Certificateless Hybrid Signcryption ◽  
Derivation Method ◽  
Key Derivation

As cloud service providers are not completely trusted, people are increasingly concerned about security issues such as data confidentiality and user privacy. In many existing schemes, the private key generator (PKG) generates a full private key for each user, which means that the PKG can forge a valid signature or decrypt the ciphertext. To address the issue, we first present a novel certificateless hybrid signcryption (CL-HSC) scheme without pairing, in which the PKG only generates the partial private keys for users. It is provably secure under the Elliptic Curve Computational Diffie-Hellman (EC-CDH) assumption in the random oracle model. Then, we propose a key derivation method by which the data owner only needs to maintain the master key to get rid of the complex key management. By combining our proposed CL-HSC scheme and the key derivation method, we present a secure and efficient data-sharing scheme for cloud storage, which can resist collusion attacks, spoofing attacks, and replay attacks and makes user revocation easier. In addition, compared with some existing schemes, our scheme has a lower computational complexity.

Sign in / Sign up

Export Citation Format

Share Document