Diksha Chawla,Pawan Singh Mehra

DOI: https://doi.org/10.1002/ett.4957

IF: 3.6

2024-03-13

Transactions on Emerging Telecommunications Technologies

Abstract:Abstract The constant evolution of the Internet of Things (IoT) concept involves the idea that all elements in the global network communication are reachable without the need for human intervention. In this context, the paramount concern is security, aiming to safeguard IoT communication against unauthorized access. According to the analysis, the security of the IoT communication framework relies on traditional cryptographic schemes like the RSA algorithm. Nevertheless, the latest developments in quantum computing and information processing pose a significant threat to these established schemes. Motivated by this fact, in this article, we proposed a novel quantum authentication and key agreement (QAKA) protocol that provides unconditional security against any classical and futuristic quantum threats. Our protocol ensures secure key agreement and mutual authentication based on quantum hashing with quantum passwords and quantum key distribution. The proposed scheme utilizes quantum teleportation and Greenberger–Horne–Zeilinger states for secure data transfer among entities. Our work is simulated using the Automated Validation of Internet Security Protocols and Applications tool to prove our protocol's formal correctness and security. The Burrows, Abadi, and Needham logic is applied to prove the goal of our protocol. Random oracle model for formal security analysis is presented in our work. Our protocol is also informally analyzed, considering the characteristics such as correctness, security against repudiation and the impossibility of cloning. The proposed protocol is compared with the related protocols in terms of various security features such as replay attacks, man‐in‐middle attacks and futuristic quantum attacks. Finally, the performance of the proposed protocol is presented, revealing superior efficacy when compared with classical authentication schemes and quantum protocols.

telecommunications

Awaneesh Kumar Yadav,An Braeken,Manoj Misra

DOI: https://doi.org/10.1007/s11227-023-05064-y

IF: 3.3

2023-02-24

The Journal of Supercomputing

Abstract:Fog and dew computing represent relatively new computing paradigms in the literature. The main idea is to offload the computation processes from the device to a more nearby fog or dew server, who further forwards it to the central server. In the case of dew computing, the dew server is considered to lose connection with the central server and should be able to function autonomously most of the time. In the literature, several public-key-based tripartite schemes, offering a full set of security features, have been proposed that can serve the purpose. However, due to the large difference in performance between symmetric and public key-based cryptographic algorithms, this paper proposes a symmetric key-based authentication and key agreement protocol, consisting of a long and a short authentication process, addressing both fog and dew computing scenarios. Moreover, we conduct the informal and formal (ROR logic, GNY logic, and Scyther tool) security analysis to ensure that the scheme satisfies the most important security features described in the literature, in addition to offering protection against a semi-trusted third party. Furthermore, we assess the performance of the long and the short authentication phases in terms of computational, communication, storage costs, and energy consumption, revealing that it is less expensive than its competitors. Additionally, we show that when compared to its competitors, the long and the short authentication phases have less overhead when unknown attacks occur. We also use the NS2 network simulator tool to execute a real-time implementation of the long and the short authentication phase to ensure that it is realistic in practical implementation.

computer science, theory & methods,engineering, electrical & electronic, hardware & architecture

Ponnuru Raveendra Babu,Sathish A.P. Kumar,Alavalapati Goutham Reddy,Ashok Kumar Das

DOI: https://doi.org/10.1016/j.cosrev.2024.100676

IF: 8.757

2024-09-03

Computer Science Review

Abstract:This study provides an in-depth survey of quantum secure authentication and key agreement protocols, investigating the dynamic landscape of cryptographic techniques within the realm of quantum computing. With the potential threat posed by quantum computing advancements to classical cryptographic protocols, the exploration of secure authentication and key agreement in the quantum era becomes imperative for safeguarding communication systems. The research scrutinizes evolving methodologies and innovations designed to enhance the security of authentication processes and key agreements in the context of quantum computing. A comprehensive examination of existing protocols is conducted, elucidating their strengths, limitations, and potential vulnerabilities. The research includes a comparative assessment of security features and computational burdens associated with various quantum secure authentication and key agreement protocols. The survey concludes by underscoring the urgent need for further research in the development of secure and efficient quantum cloud computing environments, as well as lightweight post-quantum cryptographic primitives, to ensure the viability of quantum secure authentication protocols on a universal scale. This comprehensive overview serves as a valuable resource for researchers, practitioners, and policymakers in the rapidly evolving field of quantum secure communication.

computer science, information systems, theory & methods, software engineering

Susovan Chanda,Ashish Kr. Luhach,J. Sharmila Anand Francis,Indranil Sengupta,Diptendu Sinha Roy

DOI: https://doi.org/10.1155/2024/5998163

2024-03-23

Wireless Communications and Mobile Computing

Abstract:The exponential growth of the Internet of Things (IoT) has led to a surge in data generation, critical for business decisions. Ensuring data authenticity and integrity over unsecured channels is vital, especially due to potential catastrophic consequences of tampered data. However, IoT's resource constraints and heterogeneous ecosystem present unique security challenges. Traditional public key infrastructure offers strong security but is resource intensive, while existing cloud-based solutions lack comprehensive security and rise to latency and unwanted wastage of energy. In this paper, we propose a universal authentication scheme using edge computing, incorporating fully hashed Elliptic Curve Menezes–Qu–Vanstone (ECMQV) and PUF. This approach provides a scalable and reliable solution. It also provides security against active attacks, addressing man-in-the-middle and impersonation threats. Experimental validation on a Zybo board confirms its effectiveness, offering a robust security solution for the IoT landscape.

computer science, information systems,telecommunications,engineering, electrical & electronic

Alawi A Al-Saggaf,Tarek Sheltami,Hoda Alkhzaimi,Gamil Ahmed

DOI: https://doi.org/10.1007/s13369-022-07235-0

Abstract:The healthcare ecosystem is migrating from legacy systems to the Internet of Things (IoT), resulting in a digital environment. This transformation has increased importance on demanding both secure and usable user authentication methods. Recently, a post-quantum fuzzy commitment scheme (PQFC) has been constructed as a reliable and efficient method of biometric template protection. This paper presents a new two-factor-based user authentication protocol for the IoT-enabled healthcare ecosystem in post-quantum computing environments using the PQFC scheme. The proposed protocol is proved to be secure using random oracle model. Furthermore, the functionality and security of the proposed protocol are analyzed, showing that memoryless-effortless, user anonymity, mutual authentication, and resistance to biometric templates tampering and stolen attacks, stolen smart card attack, privileged interior attack are fulfilled. The costs of storage requirement, computation, communication and storage are estimated. The results demonstrate that the proposed protocol is more efficient than Mukherjee et al., Chaudhary et al., and Gupta et al. protocols.

Tao Liu,Gowri Ramachandran,Raja Jurdak

2024-01-31

Abstract:Due to recent development in quantum computing, the invention of a large quantum computer is no longer a distant future. Quantum computing severely threatens modern cryptography, as the hard mathematical problems beneath classic public-key cryptosystems can be solved easily by a sufficiently large quantum computer. As such, researchers have proposed PQC based on problems that even quantum computers cannot efficiently solve. Generally, post-quantum encryption and signatures can be hard to compute. This could potentially be a problem for IoT, which usually consist lightweight devices with limited computational power. In this paper, we survey existing literature on the performance for PQC in resource-constrained devices to understand the severeness of this problem. We also review recent proposals to optimize PQC algorithms for resource-constrained devices. Overall, we find that whilst PQC may be feasible for reasonably lightweight IoT, proposals for their optimization seem to lack standardization. As such, we suggest future research to seek coordination, in order to ensure an efficient and safe migration toward IoT for the post-quantum era.

Cryptography and Security

Komal Pursharthi,Dheerendra Mishra

DOI: https://doi.org/10.1016/j.jisa.2024.103754

IF: 4.96

2024-04-08

Journal of Information Security and Applications

Abstract:Mobile device communication enables mobile devices to connect with each other, exchange data, and access services, where security is a crucial aspect to protect sensitive data and privacy. The authenticated key agreement (AKA) protocols ensure authorized and secure communication in such environments. As the security of current AKA protocols relies on the hardness of discrete logarithmic or factorization, it will lead to a greater threat in the post-quantum world. Consequently, Ding et al. created a lattice-based AKA scheme for the quantum world. Although the protocol is simple for mobile devices, it is susceptible to insider attacks. Moreover, the scope of efficiency enhancement of this protocol needs to be explored. Therefore, to provide a secure and efficient solution, a new lattice-based AKA scheme has been proposed in this paper. It is designed with the idea of zero knowledge-based authentication. Further, our protocol resists key mismatch, and signal leakage attacks and supports the reuse of the private key of the server, perfect forward secrecy, and anonymity features. Additionally, we have talked about how our protocol stacks up in terms of computing complexity when compared to competing with other zero knowledge-based authenticated key agreement systems.

computer science, information systems

Ashwin Balaji,Sanjay Kumar Dhurandher

DOI: https://doi.org/10.1002/dac.5246

2022-06-06

International Journal of Communication Systems

Abstract:The proposed approach focuses on reliable end‐to‐end communication using post‐quantum location‐aware encryption, aiming confidentiality and integrity in an IoE environment. The approach also demonstrates a robust attack model which focuses on communication network threats namely, Man‐In‐The‐Middle and Sybil attacks intending to evaluate the overall performance of the network by analyzing the performance parameters like, number of nodes in the network, message size, execution time, and memory consumption by the nodes and aiming to achieve an appreciable accuracy. Summary Internet of Everything (IoE) is one of the emerging technologies in the advancement of digital life and innovation. But the major issue that is to be addressed is the security concerns over such an environment, especially in end‐to‐end device communication. The proposed approach primarily focuses on reliable end‐to‐end device communication using post‐quantum location‐aware encryption, aiming to achieve confidentiality and integrity in an Internet of Everything environment. Even though the post‐quantum techniques have shown to be one of the evolving solutions for reliable data communication, but its robustness against the Man‐In‐The‐Middle and Sybil attacks is still a wide‐open subject and undiscovered. Numerous traditional encryption algorithms are now in use, while post‐quantum encryption is being studied and considered as a quantum‐safe substitute. The proposed approach also demonstrates a robust attack model which focuses on communication network threats like namely, Man‐In‐The‐Middle and Sybil attacks intending to evaluate the overall performance of the network by analyzing the performance parameters like, number of nodes in the network, message size, execution time, and memory consumption by the nodes and aiming to achieve an appreciable accuracy in an IoE environment.

telecommunications,engineering, electrical & electronic

Adarsh Kumar,Carlo Ottaviani,Sukhpal Singh Gill,Rajkumar Buyya

DOI: https://doi.org/10.1002/spy2.200

2021-12-09

Security and Privacy

Abstract:Traditional and lightweight cryptography primitives and protocols are insecure against quantum attacks. Thus, a real‐time application using traditional or lightweight cryptography primitives and protocols does not ensure full‐proof security. Post‐quantum cryptography is important for the internet of things (IoT) due to its security against quantum attacks. This paper offers a broad literature analysis of post‐quantum cryptography for IoT networks, including the challenges and research directions to adopt in real‐time applications. The work draws focus towards post‐quantum cryptosystems that are useful for resource‐constraint devices. Further, those quantum attacks are surveyed, which may occur over traditional and lightweight cryptographic primitives.

Yu-Jen Chen,Chien-Lung Hsu,Tzu-Wei Lin,Jung-San Lee

DOI: https://doi.org/10.3390/electronics13081575

IF: 2.9

2024-04-21

Electronics

Abstract:With the rapid development of Internet of Things (IoT) technology, the number of IoT users is growing year after year. IoT will become a part of our daily lives, so it is likely that the security of these devices will be an important issue in the future. Quantum computing is maturing, and the security threat associated with quantum computing will be faced in the transmissions of IoT devices, which mainly use wireless communication technologies. Therefore, to ensure the protection of transmitted data, a cryptographic algorithm that is efficient in defeating quantum computer attacks needs to be developed. In this paper, we propose a device authentication and secure communication system with post-quantum cryptography (PQC) for AIoT environments using the NTRU and Falcon signature mechanism, which can resist quantum computer attacks and be used in AIoT environments to effectively protect the confidentiality, integrity, and non-repudiation of transmitted data. We also used Raspberry Pi to simulate AIoT devices for implementation.

engineering, electrical & electronic,computer science, information systems,physics, applied

Yonghao Zhu,Dongfen Li,Yangyang Jiang,Xiaoyu Hua,You Fu,Jie Zhou,Yuqiao Tan,Xiaolong Yang

DOI: https://doi.org/10.3390/sym16121589

2024-11-29

Symmetry

Abstract:Quantum communication holds great potential for enhancing the security and efficiency of the Internet of Things (IoT). However, existing schemes often overlook device identity authentication, leaving systems vulnerable to unauthorized access, and rely on third-party controllers, which increase complexity and undermine trust. This paper proposes a novel asymmetric bidirectional quantum communication scheme tailored for IoT, integrating device identity authentication and information transmission without requiring third-party controllers. We provide a detailed description of the scheme's application scenarios in IoT, conduct a security analysis of the identity authentication module, and experimentally validate the feasibility of the information transmission module. Additionally, we analyze the impact of quantum noise on the proposed scheme and compare it with existing approaches, highlighting its advantages in terms of resource consumption and efficiency.

multidisciplinary sciences

Maximilian Schöffel,Frederik Lauer,Carl C Rheinländer,Norbert Wehn,Carl C. Rheinländer

DOI: https://doi.org/10.3390/s22072484

IF: 3.9

2022-03-24

Sensors

Abstract:Recent progress in quantum computers severely endangers the security of widely used public-key cryptosystems and of all communication that relies on it. Thus, the US NIST is currently exploring new post-quantum cryptographic algorithms that are robust against quantum computers. Security is seen as one of the most critical issues of low-power IoT devices—even with pre-quantum public-key cryptography—since IoT devices have tight energy constraints, limited computational power and strict memory limitations. In this paper, we present, to the best of our knowledge, the first in-depth investigation of the application of potential post-quantum key encapsulation mechanisms (KEMs) and digital signature algorithms (DSAs) proposed in the related US NIST process to a state-of-the-art, TLS-based, low-power IoT infrastructure. We implemented these new KEMs and DSAs in such a representative infrastructure and measured their impact on energy consumption, latency and memory requirements during TLS handshakes on an IoT edge device. Based on our investigations, we gained the following new insights. First, we show that the main contributor to high TLS handshake latency is the higher bandwidth requirement of post-quantum primitives rather than the cryptographic computation itself. Second, we demonstrate that a smart combination of multiple DSAs yields the most energy-, latency- and memory-efficient public key infrastructures, in contrast to NIST’s goal to standardize only one algorithm. Third, we show that code-based, isogeny-based and lattice-based algorithms can be implemented on a low-power IoT edge device based on an off-the-shelf Cortex M4 microcontroller while maintaining viable battery runtimes. This is contrary to much research that claims dedicated hardware accelerators are mandatory.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Jananya Sivakumar,Sannasi Ganapathy

DOI: https://doi.org/10.1007/s11277-023-10813-6

IF: 2.017

2024-01-31

Wireless Personal Communications

Abstract:One of the most flamboyant technological novelties of today's world is cloud computing, which has been fuelled by the increase in the number of smart devices across the internet. With the continuous advancement in the technical field, cloud computing has played a significant role in enabling the user to share, store and retrieve data from anywhere at any time. The involvement of many users in cloud computing, questions the security of the data present on the cloud. Existing features in cloud security are vulnerable to potential risks including lack of confidentiality, integrity, and authentication. In this paper, we propose a new data security mechanism using newly proposed hybrid encryption system (HES) and quantum key distribution (QKD) for secured data communication in cloud networks. The newly proposed HES uses the standard cryptographic algorithms namely AES and RSA for performing effective encryption and decryption processes. The newly proposed QKD is ensured the secured data communications by generating and distributing the reliable keys to the authorized users. Moreover, the novelty is introduced in the suggested model ensures reliable distribution of keys among the users and in turn preserves the data through secure hybrid encryption. At the end, the scrutiny of the proposed system proves that it is preferable that the existing models in terms of secure communication, reliability and performance.

telecommunications

Basel Halak,Thomas Gibson,Millicent Henley,Cristin-Bianca Botea,Benjamin Heath,Sayedur Khan

DOI: https://doi.org/10.1109/access.2024.3350775

IF: 3.9

2024-01-01

IEEE Access

Abstract:The accelerated development of quantum computers poses a direct threat to all current standards of public key encryption, for example, the Shor algorithm exploits the superposition state of the qubits to solve the problem of integer factorization in polynomial time, rendering all systems whose security relies on this hard mathematical problem not secure. Public key encryption algorithms are used in a multitude of applications that form the core of the digital world (e.g., emails, banking, digital currency, defense, and communication.). The prospects of a quantum machine that can break such systems are too risky to ignore, even if such a computer still needs thirty years to build. This is because adversaries can be storing data now to decrypt later aka. SNLD attack, moreover, some systems have an operational lifetime that spans more than thirty years (e.g., defense, aviation industry). Consequently, the work has already started to develop quantum-attack resilient security schemes. The number of Internet of Things (IoT) devices is expected to be around 29 billion in 2030, forming a significant portion of all computing machines. Most of these will be implemented as embedded systems with limited resources. Consequently, assessing the energy and computational overheads of the quantum-attack resilient security schemes is vital. This work presents a comprehensive study that evaluates the energy and performance costs of the proposed solutions in resource-constrained devices, in comparison with the existing schemes. This was achieved through the development of a testbed that emulates a client-server configuration, wherein both devices perform mutual authentication and then agree on a shared key using the TLS protocol. A Raspberry Pi 3b+ was used as a server, and a client in the first set of experiments. Raspberry Pi Pico W was the client in the second group of tests. The results of the evaluation have shown that Kyber1-Dilithuim-2 is the most resource-efficient solution, it outperforms all other PQC algorithms, including the current scheme that uses elliptic curve cryptography. Our study has also shown the digital signature scheme Sphinx+ is associated with significant latency and energy costs so may not be suitable for IoT-type devices.

computer science, information systems,telecommunications,engineering, electrical & electronic

D. Dhinakaran,D. Selvaraj,N. Dharini,S. Edwin Raja,C. Sakthi Lakshmi Priya

2024-07-09

Abstract:The intersection of cloud computing, blockchain technology, and the impending era of quantum computing presents a critical juncture for data security. This research addresses the escalating vulnerabilities by proposing a comprehensive framework that integrates Quantum Key Distribution (QKD), CRYSTALS Kyber, and Zero-Knowledge Proofs (ZKPs) for securing data in cloud-based blockchain systems. The primary objective is to fortify data against quantum threats through the implementation of QKD, a quantum-safe cryptographic protocol. We leverage the lattice-based cryptographic mechanism, CRYSTALS Kyber, known for its resilience against quantum attacks. Additionally, ZKPs are introduced to enhance data privacy and verification processes within the cloud and blockchain environment. A significant focus of this research is the performance evaluation of the proposed framework. Rigorous analyses encompass encryption and decryption processes, quantum key generation rates, and overall system efficiency. Practical implications are scrutinized, considering factors such as file size, response time, and computational overhead. The evaluation sheds light on the framework's viability in real-world cloud environments, emphasizing its efficiency in mitigating quantum threats. The findings contribute a robust quantum-safe and ZKP-integrated security framework tailored for cloud-based blockchain storage. By addressing critical gaps in theoretical advancements, this research offers practical insights for organizations seeking to secure their data against quantum threats. The framework's efficiency and scalability underscore its practical feasibility, serving as a guide for implementing enhanced data security in the evolving landscape of quantum computing and blockchain integration within cloud environments.

Cryptography and Security

Kranthi Kumar Singamaneni,Gaurav Dhiman,Sapna Juneja,Ghulam Muhammad,Salman A AlQahtani,John Zaki

DOI: https://doi.org/10.3390/s22186741

2022-09-06

Abstract:The industry-based internet of things (IIoT) describes how IIoT devices enhance and extend their capabilities for production amenities, security, and efficacy. IIoT establishes an enterprise-to-enterprise setup that means industries have several factories and manufacturing units that are dependent on other sectors for their services and products. In this context, individual industries need to share their information with other external sectors in a shared environment which may not be secure. The capability to examine and inspect such large-scale information and perform analytical protection over the large volumes of personal and organizational information demands authentication and confidentiality so that the total data are not endangered after illegal access by hackers and other unauthorized persons. In parallel, these large volumes of confidential industrial data need to be processed within reasonable time for effective deliverables. Currently, there are many mathematical-based symmetric and asymmetric key cryptographic approaches and identity- and attribute-based public key cryptographic approaches that exist to address the abovementioned concerns and limitations such as computational overheads and taking more time for crucial generation as part of the encipherment and decipherment process for large-scale data privacy and security. In addition, the required key for the encipherment and decipherment process may be generated by a third party which may be compromised and lead to man-in-the-middle attacks, brute force attacks, etc. In parallel, there are some other quantum key distribution approaches available to produce keys for the encipherment and decipherment process without the need for a third party. However, there are still some attacks such as photon number splitting attacks and faked state attacks that may be possible with these existing QKD approaches. The primary motivation of our work is to address and avoid such abovementioned existing problems with better and optimal computational overhead for key generation, encipherment, and the decipherment process compared to the existing conventional models. To overcome the existing problems, we proposed a novel dynamic quantum key distribution (QKD) algorithm for critical public infrastructure, which will secure all cyber-physical systems as part of IIoT. In this paper, we used novel multi-state qubit representation to support enhanced dynamic, chaotic quantum key generation with high efficiency and low computational overhead. Our proposed QKD algorithm can create a chaotic set of qubits that act as a part of session-wise dynamic keys used to encipher the IIoT-based large scales of information for secure communication and distribution of sensitive information.

Daffa Pratama

DOI: https://doi.org/10.58860/ijsh.v2i12.136

2024-01-27

Abstract:The dawn of quantum computing casts a long shadow over the once-assured realm of digital security. The conventional encryption is trembling at the prospect of quantum-powered attacks. This problem seems to be solved with the existence of post-quantum cryptography which brings a glimmer of hope that pierces the shadow cast by quantum computing. However, forging these shields is no easy feat. Beyond brute computational power, the true challenge lies in seamlessly weaving them into existing systems without compromising user trust, the threads that bind our digital lives. To achieve this, a delicate dance is needed - prioritizing the legal aspect to robust the security without disrupting the familiar rhythm of our online interactions. The research employs an empirical juridical approach as its method. For data collection, a thorough exploration of literature, including laws, books, journals, and relevant sources, is conducted. Radbruch's tripartite ideal of justice, expediency or suitability for a purpose, and legal certainty underscores the fundamental role of effective legal frameworks in mitigating vulnerabilities. This principle applies acutely to PQC regulation, where the absence of international guidelines amplifies nation-state susceptibility to quantum computing attacks. On the other hand, In the context of PQC migration, every government must meticulously consider several key factors to ensure effective and compliant implementation. Hence, the presented solution endeavors to tackle the aforementioned inquiry from both theoretical and empirical perspectives.

Sunil Prajapat,Pankaj Kumar,Sandeep Kumar,Ashok Kumar Das,Sachin Shetty,M. Shamim Hossain

DOI: https://doi.org/10.1109/access.2024.3355196

IF: 3.9

2024-02-03

IEEE Access

Abstract:Due to the rapid advancement of quantum computers, there has been a furious race for quantum technologies in academia and industry. Quantum cryptography is an important tool for achieving security services during quantum communication. Designated verifier signature, a variant of quantum cryptography, is very useful in applications like the Internet of Things (IoT) and auctions. An identity-based quantum-designated verifier signature (QDVS) scheme is suggested in this work. Our protocol features security attributes like eavesdropping, non-repudiation, designated verification, and hiding sources attacks. Additionally, it is protected from attacks on forgery, inter-resending, and impersonation. The proposed scheme benefits from the traditional designated verifier signature schemes. In the proposed scheme, the signer encrypts a message with his or her private key, and the designated verifier validates the accompanying QDVS using the signer's public key, which is the signer's name or email address, which makes the quantum signature system's key management simpler. It uses an entangled state while signing and verifying the signature; however, the verifier is not required to compare quantum states. A detailed comparison analysis with other similar schemes provides more security for the proposed scheme. Furthermore, the proposed scheme's effectiveness and feasibility are validated using quantum simulations.

computer science, information systems,telecommunications,engineering, electrical & electronic

Gustavo Banegas,Koen Zandberg,Adrian Herrmann,Emmanuel Baccelli,Benjamin Smith

DOI: https://doi.org/10.48550/arXiv.2106.05577

2021-06-11

Abstract:As the Internet of Things (IoT) rolls out today to devices whose lifetime may well exceed a decade, conservative threat models should consider attackers with access to quantum computing power. The SUIT standard (specified by the IETF) defines a security architecture for IoT software updates, standardizing the metadata and the cryptographic tools-namely, digital signatures and hash functions-that guarantee the legitimacy of software updates. While the performance of SUIT has previously been evaluated in the pre-quantum context, it has not yet been studied in a post-quantum context. Taking the open-source implementation of SUIT available in RIOT as a case study, we overview post-quantum considerations, and quantum-resistant digital signatures in particular, focusing on lowpower, microcontroller-based IoT devices which have stringent resource constraints in terms of memory, CPU, and energy consumption. We benchmark a selection of proposed post-quantum signature schemes (LMS, Falcon, and Dilithium) and compare them with current pre-quantum signature schemes (Ed25519 and ECDSA). Our benchmarks are carried out on a variety of IoT hardware including ARM Cortex-M, RISC-V, and Espressif (ESP32), which form the bulk of modern 32-bit microcontroller architectures. We interpret our benchmark results in the context of SUIT, and estimate the real-world impact of post-quantum alternatives for a range of typical software update categories. CCS CONCEPTS $\bullet$ Computer systems organization $\rightarrow$ Embedded systems.

Cryptography and Security

Marmik Pandya

DOI: https://doi.org/10.48550/arXiv.1512.02196

2015-12-08

Abstract:Confidentiality, Integrity, and Availability are basic goals of security architecture. To ensure CIA, many authentication scheme has been introduced in several years. Currently deployment of Public Key Infrastructure (PKI) is a most significant solution. PKI involving exchange key using certificates via a public channel to a authenticate users in the cloud infrastructure. It is exposed to widespread security threats such as eavesdropping, the man in the middle attack, masquerade et al. Quantum cryptography is of the most prominent fields in the modern world of information security. Quantum cryptography is considered to be a future replica of classical cryptography along with a vital stance to break existing classical cryptography. This paper aims to look into basic security architecture in place currently and further it tries to introduce a new proposed security architecture for cloud computing environment, which makes use of the knowledge of Quantum Mechanics and current advances in research in Quantum Computing, to provide a more secure architecture.

Cryptography and Security