Noble Authentication Protocol with Privacy Preservation Policy for Public Auditing on Shared Data

The cloud based services today offers a large amount of services irrespective of the geographical location to individuals or a group. This opens the way to new security dangers to the protection and also the integrity of the information put away. Public Key Infrastructure mechanism, advanced endorsements, computerized marks are existing techniques to accomplish numerous security prerequisite sites, however late dangers make them powerless against genuine assaults when utilized without earlier trust-point establishments. At the time of open reviewing of the information by Third Party Auditor, it is quite possible that it might trade off in protecting client’s privacy. This outcome in two separate issues which represents the dangers of authentication and additionally the trustworthiness of the information that is being shared. In this paper, we propose a Noble Authentication Protocol with privacy preservation policy cloud that gives solid common verification framework utilizing the Pedersen Commitment scheme alongside using ring signature algorithm calculations that will authenticate the TPA and just give the essential data to checking the trustworthiness of the mutual information with keeping the privacy of the clients covered up. The proposed technique helps in staying away from conceivable hash crashes, approving the chain of trust to certificate authorities and different denial records.

Download Full-text

LogPicker: Strengthening Certificate Transparency Against Covert Adversaries

Proceedings on Privacy Enhancing Technologies ◽

10.2478/popets-2021-0066 ◽

2021 ◽

Vol 2021 (4) ◽

pp. 184-202

Author(s):

Alexandra Dirksen ◽

David Klein ◽

Robert Michael ◽

Tilman Stehr ◽

Konrad Rieck ◽

...

Keyword(s):

Distributed System ◽

Large Scale ◽

Public Key Infrastructure ◽

Third Party ◽

Public Key ◽

Smooth Transition ◽

Certificate Authority ◽

Trusted Third Party ◽

The Public

Abstract HTTPS is a cornerstone of privacy in the modern Web. The public key infrastructure underlying HTTPS, however, is a frequent target of attacks. In several cases, forged certificates have been issued by compromised Certificate Authorities (CA) and used to spy on users at large scale. While the concept of Certificate Transparency (CT) provides a means for detecting such forgeries, it builds on a distributed system of CT logs whose correctness is still insufficiently protected. By compromising a certificate authority and the corresponding log, a covert adversary can still issue rogue certificates unnoticed. We introduce LogPicker, a novel protocol for strengthening the public key infrastructure of HTTPS. LogPicker enables a pool of CT logs to collaborate, where a randomly selected log includes the certificate while the rest witness and testify the certificate issuance process. As a result, CT logs become capable of auditing the log in charge independently without the need for a trusted third party. This auditing forces an attacker to control each participating witness, which significantly raises the bar for issuing rogue certificates. LogPicker is efficient and designed to be deployed incrementally, allowing a smooth transition towards a more secure Web.

Download Full-text

Study on Strengthening Plan of Safety Network CCTV Monitoring by Steganography and User Authentication

Advances in Multimedia ◽

10.1155/2015/960416 ◽

2015 ◽

Vol 2015 ◽

pp. 1-9

Author(s):

Jung-oh Park ◽

Sanggeun Kim

Keyword(s):

Random Number ◽

User Authentication ◽

Authentication Protocol ◽

Public Key Infrastructure ◽

Public Key ◽

Closed Circuit ◽

Information Protection ◽

Malicious User ◽

Web Environment ◽

R Value

Recently, as the utilization of CCTV (closed circuit television) is emerging as an issue, the studies on CCTV are receiving much attention. Accordingly, due to the development of CCTV, CCTV has IP addresses and is connected to network; it is exposed to many threats on the existing web environment. In this paper, steganography is utilized to confirm the Data Masquerading and Data Modification and, in addition, to strengthen the security; the user information is protected based on PKI (public key infrastructure), SN (serial number), andR value(random number) attributed at the time of login and the user authentication protocol to block nonauthorized access of malicious user in network CCTV environment was proposed. This paper should be appropriate for utilization of user infringement-related CCTV where user information protection-related technology is not applied for CCTV in the future.

Download Full-text

An Efficient Identity Based Encryption in Cloud Computing with Outsourced Revocation

International Journal of Scientific Research in Computer Science Engineering and Information Technology ◽

10.32628/cseit20668 ◽

2020 ◽

pp. 72-82

Author(s):

U. Vijay Sankar ◽

M. Pavithra ◽

R Suganya

Keyword(s):

Cloud Computing ◽

Cloud Service ◽

Public Key Infrastructure ◽

Third Party ◽

Public Key ◽

Public Key Encryption ◽

Private Key ◽

Identity Based Encryption ◽

Identity Based ◽

Key Update

Identity-Based Encryption (IBE) which simplifies the public key and certificate management at Public Key Infrastructure (PKI) is an important alternative to public key encryption. However, one of the main efficiency drawbacks of IBE is the overhead computation at Private Key Generator (PKG) during user revocation. Efficient revocation has been well studied in traditional PKI setting, but the cumbersome management of certificates is precisely the burden that IBE strives to alleviate [2]. It aiming at tackling the critical issue of identity revocation, we introduce outsourcing computation into IBE for the first time and propose a revocable IBE scheme in the server-aided setting. Our scheme offloads most of the key generation related operations during key-issuing and key-update processes to a Key Update Cloud Service Provider, leaving only a constant number of simple operations for PKG and users to perform locally [3]. This goal is achieved by utilizing a novel collusion-resistant technique: we employ a hybrid private key for each user, in which an AND gate is involved to connect and bound the identity component and the time component [4]. Furthermore, we propose another construction which is provable secure under the recently formulized Refereed Delegation of Computation model. Finally, we provide extensive experimental results to demonstrate the efficiency of our proposed construction. In public key encryption every user must have a pair of keys, public key and private key, for encrypting and decrypting messages. An Identity-based encryption (IBE) eliminates the need for a Public Key Infrastructure (PKI). IBE uses the human intelligible identities (e.g., unique name, email address, IP address, etc) as public keys [5]. The sender using IBE encrypts message with the receivers’ identity rather than looking for receivers’ public key and corresponding certificate. Accordingly, receiver decrypts ciphertext using private key associated with the corresponding identity [6]. The private keys of users are obtained from a trusted third party called as Private Key Generator (PKG). The motivation of this paper is to study and review an efficient and secure Identity based encryption scheme with outsourced revocation for cloud computing [7].

Download Full-text

Cross-heterogeneous Domain Authentication Scheme Based on Blockchain

10.37965/jait.2020.0060 ◽

2021 ◽

Author(s):

Jing Liu ◽

Yixin Liu ◽

Yingxu Lai ◽

Rongchen Li ◽

Siyu Wu ◽

...

Keyword(s):

Authentication Protocol ◽

Public Key Infrastructure ◽

Authentication Scheme ◽

Public Key ◽

The Internet ◽

Blockchain Technology ◽

Cross Domain ◽

Identity Based ◽

Development Of Identity ◽

Big Data Technology

With the rising popularity of the Internet and the development of big data technology, an increasing number of organizations are opting to cooperate across domains to maximize their benefits. Most organizations use public key infrastructure to ensure security in accessing their data and applications. However, with the continuous development of identity-based encryption (IBE) technology, small- and medium-sized enterprises are increasingly using IBE to deploy internal authentication systems. To solve the problems that arise when crossing heterogeneous authentication domains and to guarantee the security of the certification process, we propose using blockchain technology to establish a reliable cross-domain authentication scheme. Using the distributed and tamper-resistant characteristics of the blockchain, we design a cross-domain authentication model based on blockchain to guarantee the security of the heterogeneous authentication process and present a cross-domain authentication protocol based on blockchain. This model does not change the internal trust structure of each authentication domain and is highly scalable. Furthermore, on the premise of ensuring security, the process of verifying the signature of the root certificate in the traditional cross-domain authentication protocol is improved to verify the hash value of the root certificate, thereby improving the authentication efficiency. The developed prototype exhibits generality and simplicity compared to previous methods.

Download Full-text

Design and Analysis of a Public Key Infrastructure for SBAS Data Authentication

Proceedings of the ION 2019 Pacific PNT Meeting ◽

10.33012/2019.16852 ◽

2019 ◽

Author(s):

Andrew Neish ◽

Todd Walter ◽

J. David Powell

Keyword(s):

Public Key Infrastructure ◽

Public Key ◽

Data Authentication

Download Full-text

Analisis dan Implementasi Protokol Otentikasi FIDO U2F

Jurnal ULTIMA Computing ◽

10.31937/sk.v9i1.571 ◽

2017 ◽

Vol 9 (1) ◽

pp. 30-35

Author(s):

Sunderi Pranata ◽

Hargyo Tri Nugroho ◽

Hirofumi Yamaki

Keyword(s):

Public Key Cryptography ◽

Authentication Protocol ◽

Public Key ◽

Next Generation ◽

Index Terms ◽

Mitm Attack

It is known that password itself is not enough for formidable authentication method since it has a lot of vulnerabilities. Multi factor authentication (MFA) is introduced for the next generation for good authentication to address that issue. MFA combines two or more of three principles of good security, “something you know”, “something you have”, and “something you are”. Most MFA mechanisms work as one time passwords (OTP). However, they can still be vulnerable to phishing and MiTM attack. On top of that, OTP can be hard to use as it requires user to input another password given by the device (SMS, token, authenticator). Implemented in small USB U2F device, FIDO U2F delivers easier yet stronger security on authentication process which implements public key cryptography, challenge-response protocol, and phishing and MitM protection. Index Terms— Authentication protocol, FIDO U2F, Multi factor authentication, OTP

Download Full-text