The OLYMPUS Architecture—Oblivious Identity Management for Private User-Friendly Services

Privacy enhancing technologies (PETs) allow to achieve user’s transactions unlinkability across different online Service Providers. However, current PETs fail to guarantee unlinkability against the Identity Provider (IdP), which becomes a single point of failure in terms of privacy and security, and therefore, might impersonate its users. To address this issue, OLYMPUS EU project establishes an interoperable framework of technologies for a distributed privacy-preserving identity management based on cryptographic techniques that can be applied both to online and offline scenarios. Namely, distributed cryptographic techniques based on threshold cryptography are used to split up the role of the Identity Provider (IdP) into several authorities so that a single entity is not able to impersonate or track its users. The architecture leverages PET technologies, such as distributed threshold-based signatures and privacy attribute-based credentials (p-ABC), so that the signed tokens and the ABC credentials are managed in a distributed way by several IdPs. This paper describes the Olympus architecture, including its associated requirements, the main building blocks and processes, as well as the associated use cases. In addition, the paper shows how the Olympus oblivious architecture can be used to achieve privacy-preserving M2M offline transactions between IoT devices.

Download Full-text

Device-Based Security to Improve User Privacy in the Internet of Things †

Sensors ◽

10.3390/s18082664 ◽

2018 ◽

Vol 18 (8) ◽

pp. 2664 ◽

Cited By ~ 4

Author(s):

Luis Belem Pacheco ◽

Eduardo Pelinson Alchieri ◽

Priscila Mendez Barreto

Keyword(s):

Cloud Computing ◽

Internet Of Things ◽

Single Point ◽

Data Access ◽

Cloud Services ◽

Sensitive Information ◽

User Privacy ◽

Privacy And Security ◽

Iot Devices ◽

And Control

The use of Internet of Things (IoT) is rapidly growing and a huge amount of data is being generated by IoT devices. Cloud computing is a natural candidate to handle this data since it has enough power and capacity to process, store and control data access. Moreover, this approach brings several benefits to the IoT, such as the aggregation of all IoT data in a common place and the use of cloud services to consume this data and provide useful applications. However, enforcing user privacy when sending sensitive information to the cloud is a challenge. This work presents and evaluates an architecture to provide privacy in the integration of IoT and cloud computing. The proposed architecture, called PROTeCt—Privacy aRquitecture for integratiOn of internet of Things and Cloud computing, improves user privacy by implementing privacy enforcement at the IoT devices instead of at the gateway, as is usually done. Consequently, the proposed approach improves both system security and fault tolerance, since it removes the single point of failure (gateway). The proposed architecture is evaluated through an analytical analysis and simulations with severely constrained devices, where delay and energy consumption are evaluated and compared to other architectures. The obtained results show the practical feasibility of the proposed solutions and demonstrate that the overheads introduced in the IoT devices are worthwhile considering the increased level of privacy and security.

Download Full-text

Secure Access Control to IoT Devices using Blockchain

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.f2273.078219 ◽

2019 ◽

Vol 8 (2) ◽

pp. 3064-3070 ◽

Cited By ~ 1

Keyword(s):

Smart Home ◽

Single Point ◽

Qualitative Evaluation ◽

Peer Networks ◽

Privacy And Security ◽

Proposed Model ◽

Peer To Peer Networks ◽

Iot Devices ◽

Two Parameters

Internet of Things (IoT) is growing at an exponential rate but the area of privacy and security in IoT still remains unexplored. The existing algorithms or methods are mainly centralized and hence they are vulnerable due to their single point authentication topology. As it has been estimated that by 2020 there will be more ‘things’ than people on this earth the problem of security becomes a major concern in IoT networks, as a person having control to an IoT network will be able to control a large portion of an organization. Blockchain has recently been used to provide security to peer-to-peer networks. Blockchains are computationally expensive, heavyweight and are considered unsuitable for IoT architecture. In this paper a new lightweight and secure architecture for IoT by using Ethereum Blockchain retaining most of its security providing powers is proposed. Since Blockchain is decentralized it solves the single point authentication problem existing in IoT networks. A Smart Home System as a representative case study has been implemented for broader IoT applications. The two parameters measured are temperature and intrusion detection. The proposed model tackles some more challenges that exist in IoT networks. The Qualitative evaluation of the proposed architecture highlights how it tackles various attacks.

Download Full-text

Privacy-Preserving k-Means Clustering under Multiowner Setting in Distributed Cloud Environments

Security and Communication Networks ◽

10.1155/2017/3910126 ◽

2017 ◽

Vol 2017 ◽

pp. 1-19 ◽

Cited By ~ 1

Author(s):

Hong Rong ◽

Huimei Wang ◽

Jian Liu ◽

Jialu Hao ◽

Ming Xian

Keyword(s):

Service Providers ◽

Cloud Service ◽

Building Blocks ◽

Privacy Preserving ◽

Privacy Leakage ◽

Computational Overhead ◽

Clustering Protocol ◽

Multiple Keys ◽

Access Patterns ◽

Distributed Cloud

With the advent of big data era, clients who lack computational and storage resources tend to outsource data mining tasks to cloud service providers in order to improve efficiency and reduce costs. It is also increasingly common for clients to perform collaborative mining to maximize profits. However, due to the rise of privacy leakage issues, the data contributed by clients should be encrypted using their own keys. This paper focuses on privacy-preserving k-means clustering over the joint datasets encrypted under multiple keys. Unfortunately, existing outsourcing k-means protocols are impractical because not only are they restricted to a single key setting, but also they are inefficient and nonscalable for distributed cloud computing. To address these issues, we propose a set of privacy-preserving building blocks and outsourced k-means clustering protocol under Spark framework. Theoretical analysis shows that our scheme protects the confidentiality of the joint database and mining results, as well as access patterns under the standard semihonest model with relatively small computational overhead. Experimental evaluations on real datasets also demonstrate its efficiency improvements compared with existing approaches.

Download Full-text

Cryptographic Solutions for Cloud-Based Storage System

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.b2295.078219 ◽

2019 ◽

Vol 8 (2) ◽

pp. 2079-2084

Keyword(s):

Cloud Computing ◽

Service Providers ◽

Storage System ◽

Cost Effective ◽

Cloud Services ◽

Security And Privacy ◽

Privacy And Security ◽

User Data ◽

Increasing Demand ◽

Cryptographic Techniques

Nowadays cloud computing is a driving force which has a large impact on each aspect of our lives and widely used in today's business structure. With its capacity and capability, it is widely accepted by many organizations and users. Cloud computing provides numerous benefits to end users and companies in terms of cost, maintenance, management due to which many organizations prefer to use its services with open hands. With the increasing demand, day-by-day service providers also increased and the user has a choice to choose the best one based on their demand Cloud Storage is one such service that provides cost effective storage solution to the users. They provide unlimited storage to the users based on the requirement and charge according to that only. User can rely on them for the storage but apart from the numerous benefits security and privacy remains the biggest concern whenever a user moves to cloud services. Security triad comprises of authentication, Integrity, and availability remains the concern for every user while moving towards cloud-based services. Almost everyday industry and academician working on finding an effective and efficient way, which could provide secure migration of user data in the cloud. One of the solutions could be the use of cryptographic techniques to provide data security. Cryptography is accepted largely to ensure the privacy and security of data in cloud computing. In this paper, several cryptographic technique discussed which are expected to provide the solution to the user's problem when they tend to move towards cloud computing.

Download Full-text

Blockchain and IoT Convergence—A Systematic Survey on Technologies, Protocols and Security

Applied Sciences ◽

10.3390/app10196749 ◽

2020 ◽

Vol 10 (19) ◽

pp. 6749

Author(s):

Alessandra Pieroni ◽

Noemi Scarpato ◽

Lorenzo Felli

Keyword(s):

Industrial Revolution ◽

Building Blocks ◽

Global Market ◽

Research Field ◽

Research Topic ◽

Privacy And Security ◽

Consensus Algorithms ◽

Distributed Ledger ◽

Iot Devices ◽

The Internet Of Things

The Internet of Things (IoT) as a concept is fascinating and exciting, with an exponential growth just beginning. The IoT global market is expected to grow from 170 billion USD in 2017 to 560 billion USD by 2022. Though many experts have pegged IoT as the next industrial revolution, two of the major challenging aspects of IoT since the early days are having a secure privacy-safe ecosystem encompassing all building blocks of IoT architecture and solve the scalability problem as the number of devices increases. In recent years, Distributed Ledgers have often been referred to as the solution for both privacy and security problems. One form of distributed ledger is the Blockchain system. The aim of this paper consists of reviewing the most recent Blockchain architectures, comparing the most interesting and popular consensus algorithms, and evaluating the convergence between Blockchain and IoT by illustrating some of the main interesting projects in this research field. Furthermore, the paper provides a vision of a disruptive research topic that the authors are investigating: the use of AI algorithms to be applied to IoT devices belonging to a Blockchain architecture. This obviously requires that the devices be provided with adequate computational capacity and that can efficiently optimize their energy consumption.

Download Full-text

FPGA Implementation of High-Efficiency ECC Point Multiplication Circuit

Electronics ◽

10.3390/electronics10111252 ◽

2021 ◽

Vol 10 (11) ◽

pp. 1252

Author(s):

Xia Zhao ◽

Bing Li ◽

Lin Zhang ◽

Yazhou Wang ◽

Yan Zhang ◽

...

Keyword(s):

High Efficiency ◽

Single Point ◽

Clock Frequency ◽

Privacy And Security ◽

Point Multiplication ◽

Multiplication Operation ◽

Speed Up ◽

Authentication System ◽

Iot Devices ◽

Key Length

The authentication of Internet of Things (IoT) devices based on the Physical Unclonable Function (PUF) is widely adopted in the information security domain. However, the leakage of PUF responses in an authentication system reduces its privacy and security. To improve its security, we can utilize the Elliptic Curve Cryptography (ECC) algorithm with different key lengths to encrypt the PUF response arbitrarily. Point multiplication is the most time-consuming operation in ECC because of its complex calculation process, which seriously affects the efficiency of the PUF response encryption. In order to solve this problem, a point multiplier based on binary field with reconfigurable key lengths of 233, 283, 409 and 571 is designed in this paper. In our method, by reusing the underlying computing units, the resources needed for point multiplication are effectively reduced. What it is more innovative is that double point multiplication operations with a key length of less than 283 bits can be performed simultaneously in the elaborate designed point multiplication circuit, which can effectively speed up the encryption process of ECC. The circuit is implemented on Xilinx Virtex-6 FPGA. The experiment results show the single point multiplication times of 233, 283, 409 and 571 key lengths are 19.33, 22.36, 41.36 and 56.5 μs, respectively, under the clock frequency of 135 MHz. In addition, it only needs 19.33 μs to perform two-point multiplication operations when the key length is 233 bits at the same time. When the key length is 283 bits, the point multiplication operation can be performed twice in 22.36 μs.

Download Full-text

Performance analysis of privacy preserving distributed data mining based on cryptographic techniques

2021 7th International Conference on Electrical Energy Systems (ICEES) ◽

10.1109/icees51510.2021.9383673 ◽

2021 ◽

Author(s):

Venkatesh Kumar Marimuthu ◽

C. Lakshmi

Keyword(s):

Data Mining ◽

Performance Analysis ◽

Privacy Preserving ◽

Distributed Data Mining ◽

Distributed Data ◽

Cryptographic Techniques

Download Full-text

Data-driven sector coupling in 5G-based smart networks

Competition and Regulation in Network Industries ◽

10.1177/1783591721992762 ◽

2021 ◽

Vol 22 (1) ◽

pp. 53-68

Author(s):

Guenter Knieps

Keyword(s):

Data Privacy ◽

Service Providers ◽

Policy Implications ◽

Network Industries ◽

5G Networks ◽

Privacy And Security ◽

Open Set ◽

Application Service ◽

Downstream Application

5G attains the role of a GPT for an open set of downstream IoT applications in various network industries and within the app economy more generally. Traditionally, sector coupling has been a rather narrow concept focusing on the horizontal synergies of urban system integration in terms of transport, energy, and waste systems, or else the creation of new intermodal markets. The transition toward 5G has fundamentally changed the framing of sector coupling in network industries by underscoring the relevance of differentiating between horizontal and vertical sector coupling. Due to the fixed mobile convergence and the large open set of complementary use cases, 5G has taken on the characteristics of a generalized purpose technology (GPT) in its role as the enabler of a large variety of smart network applications. Due to this vertical relationship, characterized by pervasiveness and innovational complementarities between upstream 5G networks and downstream application sectors, vertical sector coupling between the provider of an upstream GPT and different downstream application industries has acquired particular relevance. In contrast to horizontal sector coupling among different application sectors, the driver of vertical sector coupling is that each of the heterogeneous application sectors requires a critical input from the upstream 5G network provider and combines this with its own downstream technology. Of particular relevance for vertical sector coupling are the innovational complementarities between upstream GPT and downstream application sectors. The focus on vertical sector coupling also has important policy implications. Although the evolution of 5G networks strongly depends on the entrepreneurial, market-driven activities of broadband network operators and application service providers, the future of 5G as a GPT is heavily contingent on the role of frequency management authorities and European regulatory policy with regard to data privacy and security regulations.

Download Full-text

A Lightweight Blockchain-Based IoT Identity Management Approach

Future Internet ◽

10.3390/fi13020024 ◽

2021 ◽

Vol 13 (2) ◽

pp. 24

Author(s):

Mohammed Amine Bouras ◽

Qinghua Lu ◽

Sahraoui Dhelim ◽

Huansheng Ning

Keyword(s):

Identity Management ◽

Single Point ◽

Data Access ◽

Emerging Technology ◽

Management Approach ◽

Proof Of Concept ◽

Data Access Control ◽

And Storage ◽

Privacy Issues ◽

Centralized System

Identity management is a fundamental feature of Internet of Things (IoT) ecosystem, particularly for IoT data access control. However, most of the actual works adopt centralized approaches, which could lead to a single point of failure and privacy issues that are tied to the use of a trusted third parties. A consortium blockchain is an emerging technology that provides a neutral and trustable computation and storage platform that is suitable for building identity management solutions for IoT. This paper proposes a lightweight architecture and the associated protocols for consortium blockchain-based identity management to address privacy, security, and scalability issues in a centralized system for IoT. Besides, we implement a proof-of-concept prototype and evaluate our approach. We evaluate our work by measuring the latency and throughput of the transactions while using different query actions and payload sizes, and we compared it to other similar works. The results show that the approach is suitable for business adoption.

Download Full-text

Efficient Secure Building Blocks with Application to Privacy Preserving Machine Learning Algorithms

IEEE Access ◽

10.1109/access.2021.3049216 ◽

2021 ◽

pp. 1-1

Author(s):

Artrim Kjamilji ◽

Erkay Savas ◽

Albert Levi

Keyword(s):

Machine Learning ◽

Learning Algorithms ◽

Building Blocks ◽

Privacy Preserving ◽

Machine Learning Algorithms

Download Full-text