DSAC-Digital Signature for Access Control in Information Centric Network

10.20944/preprints202105.0179.v2 ◽

2021 ◽

Author(s):

Zaki Ullah ◽

Muhammad Inam Ul Haq ◽

Samiullah Khan ◽

Muhammad Zubair

Keyword(s):

Access Control ◽

Digital Signature ◽

Hash Function ◽

Transmission Rate ◽

Third Party ◽

Information Centric Networking ◽

High Data ◽

Security Issues ◽

System Integrity ◽

Content Security

The world is growing very rapidly concerning technology. In the next-generation Internet, the existing architecture requires to be upgraded from Host-Centric Networking paradigm to Information-centric networking architecture. The unique aspect of information-centric networking is in-network cashing. Due to the system augmentation and In-network cashing technique, this novel system needs extremely high content security to ensure system integrity and maintenance. 5G network may be supported by the Information-Centric Network due to its high data transmission rate. In order to handle the serious security issues such as attack on confidentiality, authentication and integrity of the content, a Digital Signature based Access Control Mechanism in Information-Centric Network (DSAC) scheme is proposed to enhance security of ICN. Briefly, this new scheme uses Digital Signature, hash function, Trusted Third Party (TTP) and Proxy TTP. The client request for content, after receiving a request, the content provider generates and encrypts content with the digital signature and random value ‘k’ hash function and send it to TTP. After the signing process, the TTP sends the encryption hash key to Proxy TTP. In this proposed scheme authentication, confidentiality, the integrity aspects of the content security are improved.

Download Full-text

Secure Data Dissemination

Information Security and Ethics ◽

10.4018/978-1-59904-937-3.ch127 ◽

2008 ◽

pp. 1839-1864

Author(s):

Elisa Bertino ◽

Barbara Carminati ◽

Elena Ferrari

Keyword(s):

Digital Signature ◽

Data Exchange ◽

Data Dissemination ◽

Third Party ◽

New Paradigm ◽

Security Issues ◽

Security Properties ◽

Verification Process ◽

The Web ◽

User Queries

In this chapter, we present the main security issues related to the selective dissemination of information (SDI system). More precisely, after provided an overview of the work carried out in this field, we have focused on the security properties that a secure SDI system (SSDI system) must satisfy and on some of the strategies and mechanisms that can be used to ensure them. Indeed, since XML is the today emerging standard for data exchange over the Web, we have casted our attention on Secure and Selective XML data dissemination (SSXD). As a result, we have presented a SSXD system providing a comprehensive solution to XML documents. In the proposed chapter, we also consider innovative architecture for the data dissemination, by suggesting a SSXD system exploiting the third-party architecture, since this architecture is receiving growing attention as a new paradigm for data dissemination over the web. In a third-party architecture, there is a distinction between the Owner and the Publisher of information. The Owner is the producer of the information, whereas Publishers are responsible for managing (a portion of) the Owner information and for answering user queries. A relevant issue in this architecture is how the Owner can ensure a secure dissemination of its data, even if the data are managed by a third-party. Such scenario requires a redefinition of dissemination mechanisms developed for the traditional SSXD system. Indeed, the traditional techniques cannot be exploited in a third party scenario. For instance, let us consider the traditional digital signature techniques, used to ensure data integrity and authenticity. In a third party scenario, that is, a scenario where a third party may prune some of the nodes of the original document based on user queries, the traditional digital signature is not applicable, since its correctness is based on the requirement that the signing and verification process are performed on exactly the same bits.

Download Full-text

Secure Data Dissemination

Information Security Policies and Actions in Modern Integrated Systems ◽

10.4018/978-1-59140-186-5.ch006 ◽

2004 ◽

pp. 198-229

Author(s):

Elisa Berino ◽

Barbara Carminati ◽

Elena Ferrari

Keyword(s):

Digital Signature ◽

Data Exchange ◽

Data Dissemination ◽

Third Party ◽

New Paradigm ◽

Security Issues ◽

Security Properties ◽

Verification Process ◽

The Web ◽

User Queries

In this chapter, we present the main security issues related to the selective dissemination of information (SDI system). More precisely, after provided an overview of the work carried out in this field, we have focused on the security properties that a secure SDI system (SSDI system) must satisfy and on some of the strategies and mechanisms that can be used to ensure them. Indeed, since XML is the today emerging standard for data exchange over the Web, we have casted our attention on Secure and Selective XML data dissemination (SSXD). As a result, we have presented a SSXD system providing a comprehensive solution to XML documents. In the proposed chapter, we also consider innovative architecture for the data dissemination, by suggesting a SSXD system exploiting the third-party architecture, since this architecture is receiving growing attention as a new paradigm for data dissemination over the web. In a third-party architecture, there is a distinction between the Owner and the Publisher of information. The Owner is the producer of the information, whereas Publishers are responsible for managing (a portion of) the Owner information and for answering user queries. A relevant issue in this architecture is how the Owner can ensure a secure dissemination of its data, even if the data are managed by a third-party. Such scenario requires a redefinition of dissemination mechanisms developed for the traditional SSXD system. Indeed, the traditional techniques cannot be exploited in a third party scenario. For instance, let us consider the traditional digital signature techniques, used to ensure data integrity and authenticity. In a third party scenario, that is, a scenario where a third party may prune some of the nodes of the original document based on user queries, the traditional digital signature is not applicable, since its correctness is based on the requirement that the signing and verification process are performed on exactly the same bits.

Download Full-text

An access control model for the Internet of Things based on zero-knowledge token and blockchain

EURASIP Journal on Wireless Communications and Networking ◽

10.1186/s13638-021-01986-4 ◽

2021 ◽

Vol 2021 (1) ◽

Author(s):

Lihua Song ◽

Xinran Ju ◽

Zongke Zhu ◽

Mengchen Li

Keyword(s):

Internet Of Things ◽

Access Control ◽

Single Point ◽

Control Model ◽

Third Party ◽

Security Level ◽

Zero Knowledge ◽

Access Control Model ◽

Test Analysis ◽

Zero Knowledge Proof

AbstractInformation security has become a hot topic in Internet of Things (IoT), and traditional centralized access control models are faced with threats such as single point failure, internal attack, and central leak. In this paper, we propose a model to improve the access control security of the IoT, which is based on zero-knowledge proof and smart contract technology in the blockchain. Firstly, we deploy attribute information of access control in the blockchain, which relieves the pressure and credibility problem brought by the third-party information concentration. Secondly, encrypted access control token is used to gain the access permission of the resources, which makes the user's identity invisible and effectively avoids attribute ownership exposure problem. Besides, the use of smart contracts solves the problem of low computing efficiency of IoT devices and the waste of blockchain computing power resources. Finally, a prototype of IoT access control system based on blockchain and zero-knowledge proof technology is implemented. The test analysis results show that the model achieves effective attribute privacy protection, compared with the Attribute-Based Access Control model of the same security level, the access efficiency increases linearly with the increase of access scale.

Download Full-text

Lightbeam Configuration Method and Interference Elimination Resource Scheduling for Indoor Multibeam VLC Networks

Journal of Optical Communications ◽

10.1515/joc-2018-0224 ◽

2019 ◽

Vol 0 (0) ◽

Author(s):

Cong-Nam Tran ◽

Nam-Hoang Nguyen ◽

Trong-Minh Hoang

Keyword(s):

Transmission Rate ◽

Resource Scheduling ◽

Packet Delay ◽

Access Point ◽

Visible Light Communications ◽

Resource Allocation Algorithm ◽

Downlink Transmission ◽

High Data ◽

Interference Elimination ◽

Multi Access

AbstractVisible light communications (VLC) is considered as an alternative communications technology for providing indoor wireless services. VLC systems are expected to offer high data transmission rate and seamless coverage. In order to achieve these requirements, VLC systems utilizing multi-lightbeam access points (multibeam VLC-AP) for downlink transmission have been proposed recently. In this paper, we present a lightbeam configuration method and an interference elimination resource scheduling mechanism (IERS) for indoor multibeam multi-access point VLC systems. The proposed lightbeam configuration method ensures seamless connectivity between user equipment and VLC-AP. The proposed IERS mechanism consists of a beam assignment algorithm and a resource allocation algorithm for eliminating co-channel interference as well as improving system performance. Performance results obtained by computer simulation indicate that there are significant improvements in terms of downlink signal to interference plus noise ratio, user throughput and packet delay when the proposed IERS mechanism is deployed.

Download Full-text

DSSAM: digitally signed secure acknowledgement method for mobile ad hoc network

EURASIP Journal on Wireless Communications and Networking ◽

10.1186/s13638-021-01894-7 ◽

2021 ◽

Vol 2021 (1) ◽

Author(s):

Ashutosh Srivastava ◽

Sachin Kumar Gupta ◽

Mohd Najim ◽

Nitesh Sahu ◽

Geetika Aggarwal ◽

...

Keyword(s):

Digital Signature ◽

Intrusion Detection System ◽

Ad Hoc Network ◽

Ad Hoc ◽

Mobile Ad Hoc Network ◽

Detection System ◽

Source Routing ◽

Security Issues ◽

Dynamic Source ◽

Mobile Ad Hoc

AbstractMobile ad hoc network (MANET) is an infrastructure-less, self-motivated, arbitrary, self-configuring, rapidly changing, multi-hop network that is self-possessing wireless bandwidth-conscious links without centrally managed router support. In such a network, wireless media is easy to snoop. It is firm to the surety to access any node, easier to insertion of bad elements or attackers for malicious activities in the network. Therefore, security issues become one of the significant considerations for such kind of networks. The deployment of an effective intrusion detection system is important in order to provide protection against various attacks. In this paper, a Digitally Signed Secure Acknowledgement Method (DSSAM) with the use of the RSA digital signature has been proposed and simulated. Three different parameters are considered, namely secure acknowledgment, node authentication, and packet authentication for study. This article observes the DSSAM performance and compares it with two existing standard methods, namely Watchdog and 2-ACK under standard Dynamic Source Routing (DSR) routing environment. In the end, it is noticed that the rate of detection of malicious behaviour is better in the case of the proposed method. However, associated overheads are high. A trade-off between performance and overhead has been considered.

Download Full-text

Securing Cloud Data using RSA Algorithm

International Journal of Recent Contributions from Engineering Science & IT (iJES) ◽

10.3991/ijes.v6i4.9910 ◽

2018 ◽

Vol 6 (4) ◽

pp. 96

Author(s):

Md Equebal Hussain ◽

Mohammad Rashid Hussain

Keyword(s):

Storage Capacity ◽

Internet Security ◽

Third Party ◽

Combined Method ◽

Cloud Data ◽

Security Issues ◽

Rsa Algorithm ◽

Private Key ◽

Important Concern ◽

Encryption Algorithms

security is one of the most important concern on cloud computing therefore institutions are hesitating to host their data over cloud. Not all data can be afforded to move on the cloud (example accounts data). The main purpose of moving data over cloud is to reduce cost (infrastructure and maintenance), faster performance, easy upgrade, storage capacity but at the same time security is major concern because cloud is not private but maintained by third party over the internet, security issues like privacy, confidentiality, authorization (what you are allowed to do), authentication (who you are) and accounting (what you actually do) will be encountered. Variety of encryption algorithms required for higher level of security. In this paper we try to provide solution for better security by proposing a combined method of key exchange algorithm with encryption technique. Data stored in cloud can be protected from hackers using proposed solution because even if transmitted key is hacked of no use without user’s private key.

Download Full-text

Centralized, Distributed, and Everything in between

ACM Computing Surveys ◽

10.1145/3465170 ◽

2022 ◽

Vol 54 (7) ◽

pp. 1-34

Author(s):

Sophie Dramé-Maigné ◽

Maryline Laurent ◽

Laurent Castillo ◽

Hervé Ganem

Keyword(s):

Access Control ◽

Future Research ◽

The Internet ◽

Research Directions ◽

Security Issues ◽

Security Properties ◽

Future Research Directions ◽

Iot Devices ◽

The Internet Of Things ◽

Security Of Iot

The Internet of Things is taking hold in our everyday life. Regrettably, the security of IoT devices is often being overlooked. Among the vast array of security issues plaguing the emerging IoT, we decide to focus on access control, as privacy, trust, and other security properties cannot be achieved without controlled access. This article classifies IoT access control solutions from the literature according to their architecture (e.g., centralized, hierarchical, federated, distributed) and examines the suitability of each one for access control purposes. Our analysis concludes that important properties such as auditability and revocation are missing from many proposals while hierarchical and federated architectures are neglected by the community. Finally, we provide an architecture-based taxonomy and future research directions: a focus on hybrid architectures, usability, flexibility, privacy, and revocation schemes in serverless authorization.

Download Full-text

Implementation of Digital Signature Using Hybrid Cryptosystem

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i3.4.14671 ◽

2018 ◽

Vol 7 (3.4) ◽

pp. 34

Author(s):

Leela K ◽

Smitha Vinod

Keyword(s):

Digital Signature ◽

Hash Function ◽

Data Transfer ◽

Security Level ◽

Electronic Data ◽

Hybrid Encryption ◽

Asymmetric Cryptography

Security is a major concern when it comes to electronic data transfer. Digital signature uses hash function and asymmetric algorithms to uniquely identify the sender of the data and it also ensures integrity of the data transferred. Hybrid encryption uses both symmetric and asymmetric cryptography to enhance the security of the data. Digital Signature is used to identify the owner of the document but it does not hide the information while transferring the document. Anyone can read the message. To avoid this, data sent along with the signature should be secured. In this paper, Digital signature is combined with hybrid encryption to enhance the security level. Security of the data or the document sent is achieved by using hybrid encryption technique along with digital signature.

Download Full-text

An enhanced security tree to secure cloud data

International Journal of Engineering & Technology ◽

10.14419/ijet.v7i1.1.8925 ◽

2017 ◽

Vol 7 (1.1) ◽

pp. 64 ◽

Cited By ~ 1

Author(s):

S. Renu ◽

S.H. Krishna Veni

Keyword(s):

Data Storage ◽

Binary Tree ◽

Data Encryption ◽

Third Party ◽

Data Outsourcing ◽

Cloud Data ◽

Security Issues ◽

Security Services ◽

Computing Services ◽

User Data

The Cloud computing services and security issues are growing exponentially with time. All the CSPs provide utmost security but the issues still exist. Number of technologies and methods are emerged and futile day by day. In order to overcome this situation, we have also proposed a data storage security system using a binary tree approach. Entire services of the binary tree are provided by a Trusted Third Party (TTP) .TTP is a government or reputed organization which facilitates to protect user data from unauthorized access and disclosure. The security services are designed and implemented by the TTP and are executed at the user side. Data classification, Data Encryption and Data Storage are the three vital stages of the security services. An automated file classifier classify unorganized files into four different categories such as Sensitive, Private, Protected and Public. Applied cryptographic techniques are used for data encryption. File splitting and multiple cloud storage techniques are used for data outsourcing which reduces security risks considerably. This technique offers file protection even when the CSPs compromise.

Download Full-text