Advanced Encryption Standard With Randomized Round Keys for Communication Security in IoT Networks

2019 ◽  
pp. 280-288
Author(s):  
Ishpal Singh Gill ◽  
Dharm Singh Jat
Keyword(s):  
Smart Cities ◽  
Health Sector ◽  
Smart Devices ◽  
Advanced Encryption Standard ◽  
Side Channel ◽  
Side Channel Attacks ◽  
Public And Private ◽  
Private Key ◽  
The World ◽  
In Transit

Internet of things (IoT) is a rapidly emerging architecture connecting smart devices all across the world in various fields like smart homes, smart cities, health sector, security, etc. Security is a very important aspect of IoT. As more and more devices are connecting to the Internet, it becomes a lucrative target for hackers. The communication between the various devices, nodes, and between nodes and the cloud, needs to be secured. A combination of public and private key cryptography systems is used to secure the IoT networks. The Advanced Encryption Standard (AES) is used for encrypting the data in transit. However, the AES is known to be prone to brute force attacks, side channel attacks, and other forms of cryptanalysis. This chapter proposes a more secure AES algorithm with randomised round keys, which provides better security with negligible overheads, and is ideal for use in IoT networks.

Power Side-Channel Analysis of RNS GLV ECC Using Machine and Deep Learning Algorithms

2021 ◽  
Vol 21 (3) ◽  
pp. 1-20
Author(s):  
Mohamad Ali Mehrabi ◽  
Naila Mukhtar ◽  
Alireza Jolfaei
Keyword(s):  
Deep Learning ◽  
Elliptic Curve ◽  
Smart Cities ◽  
Information Leakage ◽  
Side Channel ◽  
Side Channel Attacks ◽  
Public Key Cryptosystems ◽  
Elliptic Curve Cryptosystems ◽  
Hardware Implementations ◽  
Substantial Progress

Many Internet of Things applications in smart cities use elliptic-curve cryptosystems due to their efficiency compared to other well-known public-key cryptosystems such as RSA. One of the important components of an elliptic-curve-based cryptosystem is the elliptic-curve point multiplication which has been shown to be vulnerable to various types of side-channel attacks. Recently, substantial progress has been made in applying deep learning to side-channel attacks. Conceptually, the idea is to monitor a core while it is running encryption for information leakage of a certain kind, for example, power consumption. The knowledge of the underlying encryption algorithm can be used to train a model to recognise the key used for encryption. The model is then applied to traces gathered from the crypto core in order to recover the encryption key. In this article, we propose an RNS GLV elliptic curve cryptography core which is immune to machine learning and deep learning based side-channel attacks. The experimental analysis confirms the proposed crypto core does not leak any information about the private key and therefore it is suitable for hardware implementations.

scholarly journals Eluding Side Channel Attacks by using Masking 128Bit AES Design

2020 ◽  
Vol 9 (8) ◽  
pp. 952-955
Keyword(s):  
Data Transmission ◽  
Advanced Encryption Standard ◽  
Side Channel ◽  
Side Channel Attacks ◽  
Equal Area ◽  
Original Algorithm ◽  
Aes Algorithm ◽  
Side Channels ◽  
Standard Design ◽  
Secure Data Transmission

: Advanced encryption standard is detailing for data crypto graphing. The algorithm used universally for cryptography and secure data transmission, the algorithm puissant to intruders, who often attack via side channels. One of the observed attacks was estimate the power implanted in AES core and processed probable scrutinizing to guess the key on multiple iterations. So in order to elude side channel attacks and reduce power consumed in AES standard, design proposed with masking and pipeline scheme. This design helps in shrinking power consumption as compare to AES algorithm and upgrade to withstand from attacks. Another major improvement in the design is LUT’s used for masking and original algorithm almost equal, area phenomenon also solved out. The proposed algorithm implemented in VERTEX-7 FPGA board and simulated using Xilinx Vivado 2015.2 and Modelsim.

scholarly journals Side-Channel Attacks and Countermeasures for Identity-Based Cryptographic Algorithm SM9

2018 ◽  
Vol 2018 ◽  
pp. 1-14 ◽  
Author(s):  
Qi Zhang ◽  
An Wang ◽  
Yongchuan Niu ◽  
Ning Shang ◽  
Rixin Xu ◽  
...  
Keyword(s):  
Main Part ◽  
Digital Certificate ◽  
Side Channel ◽  
Cyber Physical System ◽  
Secret Key ◽  
Side Channel Attacks ◽  
Fault Attack ◽  
Private Key ◽  
Cryptographic Algorithm ◽  
Identity Based

Identity-based cryptographic algorithm SM9, which has become the main part of the ISO/IEC 14888-3/AMD1 standard in November 2017, employs the identities of users to generate public-private key pairs. Without the support of digital certificate, it has been applied for cloud computing, cyber-physical system, Internet of Things, and so on. In this paper, the implementation of SM9 algorithm and its Simple Power Attack (SPA) are discussed. Then, we present template attack and fault attack on SPA-resistant SM9. Our experiments have proved that if attackers try the template attack on an 8-bit microcontrol unit, the secret key can be revealed by enabling the device to execute one time. Fault attack even allows the attackers to obtain the 256-bit key of SM9 by performing the algorithm twice and analyzing the two different results. Accordingly, some countermeasures to resist the three kinds of attacks above are given.

Security Architecture for Low Resource Devices in Smart City using Cloud

2020 ◽  
Vol 4 (3) ◽  
Author(s):  
Muneer Ahmad Dar
Keyword(s):  
Smart City ◽  
Smart Cities ◽  
Large Data ◽  
Smart Devices ◽  
Security Architecture ◽  
Power Devices ◽  
Desktop Computer ◽  
Huge Data ◽  
The World ◽  
Exchange Algorithms

The world is moving towards modernization with the help of smart devices used in smart cities to make the whole lot intelligent and smart. These smart devices are extensively used in smart city and are capable of doing everything which one can do with the normal desktop computer. These smart devices like Smartphone have computational limitations are not able to store a large data to be used and collected in a smart city. In this paper, we propose a novel security architecture which first uses the Elliptic Curve Diffie Helman Key Exchange Algorithms to exchange the keys between the two low power devices (Smartphone). The keys are used to encrypt the large data (images and videos etc). The data is encrypted using the private keys of a device and then send to the cloud for safe storage. The data can be only accessed by the communicating device with the same key. The proposed security architecture enables these smart devices to store the huge data collected from the smart city to store on the cloud. If another device requests the same set of data, the keys can be shared secretly and the communicating device can be allowed to download the data directly from the cloud. This architecture relieves the Smartphone from the storage limitation and also enables it to communicate with faster speed and securely.   

Confidentiality

2008 ◽  
pp. 51-100
Author(s):  
Manuel Mogollon
Keyword(s):  
Block Ciphers ◽  
Stream Ciphers ◽  
Advanced Encryption Standard ◽  
Symmetric Encryption ◽  
Security Services ◽  
The World ◽  
Access Authentication ◽  
To Come ◽  
The Individual ◽  
In Transit

In the world of communications, assurance is sought that (1) a message is not accidentally or deliberately modified in transit by replacement, insertion, or deletion; (2) the message is coming from the source from which it claims to come; (3) the message is protected against unauthorized individuals reading information that is supposed to be kept private; and (4) there is protection against an individual denying that the individual sent or received a message. These assurances are provided through the use of security mechanisms. Chapters IV, V, VI, and VII discuss security mechanisms such as confidentiality, integrity, and access authentication that are used to implement the security services listed above. This chapter covers two types of symmetric encryption: stream ciphers and block ciphers. The theory behind using shift registers as stream ciphers, as well as the DES and the Advanced Encryption Standard (AES), are also covered in this chapter.

scholarly journals On the Security of Practical Mail User Agents against Cache Side-Channel Attacks

2020 ◽  
Vol 10 (11) ◽  
pp. 3770
Author(s):  
Hodong Kim ◽  
Hyundo Yoon ◽  
Youngjoo Shin ◽  
Junbeom Hur
Keyword(s):  
Third Party ◽  
Side Channel ◽  
Software Components ◽  
Side Channel Attack ◽  
Side Channel Attacks ◽  
User Agent ◽  
Root Cause ◽  
Private Key ◽  
The Third ◽  
And Control

Mail user agent (MUA) programs provide an integrated interface for email services. Many MUAs support email encryption functionality to ensure the confidentiality of emails. In practice, they encrypt the content of an email using email encryption standards such as OpenPGP or S/MIME, mostly implemented using GnuPG. Despite their widespread deployment, there has been insufficient research on their software structure and the security dependencies among the software components of MUA programs. In order to understand the security implications of the structures and analyze any possible vulnerabilities of MUA programs, we investigated a number of MUAs that support email encryption. As a result, we found severe vulnerabilities in a number of MUAs that allow cache side-channel attacks in virtualized desktop environments. Our analysis reveals that the root cause originates from the lack of verification and control over the third-party cryptographic libraries that they adopt. In order to demonstrate this, we implemented a cache side-channel attack on RSA in GnuPG and then conducted an evaluation of the vulnerability of 13 MUAs that support email encryption in Ubuntu 14.04, 16.04 and 18.04. Based on our experiment, we found that 10 of these MUA programs (representing approximately 77% of existing MUA programs) allow the installation of a vulnerable version of GnuPG, even when the latest version of GnuPG, which is secure against most cache side-channel attacks, is in use. In order to substantiate the importance of the vulnerability we discovered, we conducted a FLUSH+RELOAD attack on these MUA programs and demonstrated that the attack restored 92% of the bits of the 2048-bit RSA private key when the recipients read a single encrypted email.

scholarly journals S3

2021 ◽  
Vol 5 (1) ◽  
pp. 1-25
Author(s):  
Habiba Farrukh ◽  
Tinghan Yang ◽  
Hanwen Xu ◽  
Yuxuan Yin ◽  
He Wang ◽  
...  
Keyword(s):  
Mobile Sensors ◽  
Magnetic Data ◽  
Smart Devices ◽  
High Dimensional ◽  
Side Channel ◽  
Motion Sensor ◽  
Motion Sensors ◽  
Side Channel Attacks ◽  
2Nd Generation ◽  
Apple Ipad

With smart devices being an essential part of our everyday lives, unsupervised access to the mobile sensors' data can result in a multitude of side-channel attacks. In this paper, we study potential data leaks from Apple Pencil (2nd generation) supported by the Apple iPad Pro, the latest stylus pen which attaches to the iPad body magnetically for charging. We observe that the Pencil's body affects the magnetic readings sensed by the iPad's magnetometer when a user is using the Pencil. Therefore, we ask: Can we infer what a user is writing on the iPad screen with the Apple Pencil, given access to only the iPad's motion sensors' data? To answer this question, we present Side-channel attack on Stylus pencil through Sensors (S3), a system that identifies what a user is writing from motion sensor readings. We first use the sharp fluctuations in the motion sensors' data to determine when a user is writing on the iPad. We then introduce a high-dimensional particle filter to track the location and orientation of the Pencil during usage. Lastly, to guide particles, we build the Pencil's magnetic map serving as a bridge between the measured magnetic data and the Pencil location and orientation. We evaluate S3 with 10 subjects and demonstrate that we correctly identify 93.9%, 96%, 97.9%, and 93.33% of the letters, numbers, shapes, and words by only having access to the motion sensors' data.

scholarly journals IoT based reconfigurable smart city architecture

2018 ◽  
Vol 7 (2.7) ◽  
pp. 175 ◽  
Author(s):  
M Geetha Pratyusha ◽  
Yogesh Misra ◽  
M Anil Kumar
Keyword(s):  
Internet Of Things ◽  
Low Power ◽  
Smart City ◽  
Smart Cities ◽  
Human Life ◽  
Wireless Sensor ◽  
Smart Devices ◽  
The World ◽  
Low Power Synthesis ◽  
Internet Of Things Technology

Now-a-days Internet of Things is deployed almost in every application regarding smart cities and have been initiated to develop all over the world. Smart Devices are being geared up to ease human life. Due to the growth in Internet of Things technology, smart cities are been developedwith this technology to work with the issues of public as well as private. The aim of the article is to enhance a solution to the problems in the smart cities with latest IoT architecture, protocols and services. With the technical support of IoT, using low power Wireless Sensor Networks (WSN) which is connected to transfer the data from M2M applications. In addition to the IoT, intelligent features are integrated with the help of Computer vision makes the technology more flexible. The goal of this article is to engrave the services to challenge the real time environment with low power synthesis technique. Only then, the smart city features are improved and serves the mankind with IoT technology.

Sign in / Sign up

Export Citation Format

Share Document