LI Yanxi,ZHAO Yao,LIN Chuang,YIN Hao,JIANG Yixin

DOI: https://doi.org/10.3321/j.issn:1000-0054.2005.10.032

2005-01-01

Abstract:An efficient,secure distributed key management scheme(D-OFT) using a one-way function tree was developed to avoid the single failure point problem and the unfairness in group key generation or refreshment algorithms in centralized group key management schemes.In the D-OFT,all valid users jointly participate in negotiating the group key,thus eliminating the unfairness in the process of generating or refreshing a group key.Moreover,the D-OFT is a distributed scheme,so there is no single failure point.The algorithm also provides efficient key updating with a small re-key message size O(log n.Security and performance analyses show that this scheme meets the required forward and backward secrecy requirements when a new member leaves or joins a group,a subgroup is merged into another subgroup,or a group is partitioned into several subgroups.Hence,the D-OFT scheme can be easily deployed in small or medium size dynamic secure group communication systems with dynamic group membership and no centralized control node.

Yao Zhang,Zhiming Zheng,Pawel Szalachowski,Qi Wang

DOI: https://doi.org/10.1002/sec.1570

IF: 1.968

2016-01-01

Security and Communication Networks

Abstract:The Internet keeps flourishing and enables unexpected possibilities to all aspects of individuals' life. Such distributed networking systems as wireless sensor networks and Internet of things are widely deployed. Yet, in the meantime secure group communication remains a challenging task in these environments. To address this challenge, this paper aims at lightweight group key establishment with strong security properties. We propose a broadcast encryption scheme based on one-way function trees and specify a dual-evolving approach for dynamic group-membership update. Then we complement the scheme by a content-protection protocol and further optimize the protocol in terms of communication efficiency. As with our analysis, our scheme can successfully prevent a key leakage attack, namely, collusion attack. Through our comprehensive evaluations, we confirm the effectiveness and the adequacy of our solution in distributed networking systems. Copyright © 2016 John Wiley & Sons, Ltd.

Zhijun Zhang,Pla Information

2010-01-01

Abstract:A group key agreement protocol based on m-tree and DMDH assumption is developed to improve the poor scalability and efficiency of most existing group key agreement protocols in dynamic peer communication.This protocol combined m-tree with DMDH assumption,which key agreement is completed by which all group members agreed on variable m to fix on key tree and selected corresponding multilinear map from cluster of multilinear maps.Meanwhile,it much more applied to LAN and WAN by which communication and computation costs are balanced by variable m.Compared with TGDH and GDH,it made a great progress in security,scalability and efficiency.

Qiuhua Wang,Huifang Chen,Lei Xie,Kuang Wang

DOI: https://doi.org/10.1002/sec.429

IF: 1.968

2012-01-01

Security and Communication Networks

Abstract:The self-healing group key distribution scheme with revocation can deal with the problem of distributing session keys for secure group communication over an unreliable wireless network, with the capability to resist packet loss and collusion attack. However, existing access-polynomial-based self-healing key management schemes have some problems, such as the small number of active group members, much redundancy in the key updating broadcast packet, and limited collusion attack resistance capability. In order to increase the number of active group members and improve the performance of self-healing group key distribution schemes, we propose a self-healing group key distribution scheme based on the access polynomial and one-way hash key chain for resource-constrained wireless networks in this paper. In our proposed scheme, by binding the time at which the user joins the group with the capability of recovering previous group session keys, some novel methods to construct the personal secret, the access polynomial, and the session key updating broadcast packet are presented. Compared with existing schemes under same conditions, analysis and simulation results show that our proposed scheme not only supports much more group members and sessions, but also provides a stronger security, considering that it can deal with more colluding users. Moreover, our proposed scheme is especially suitable to resource-constrained wireless networks in a very bad environment. Copyright © 2012 John Wiley & Sons, Ltd.

Hui Feng,Hefei Ling,Fuhao Zou,WeiQi Yan,Zhengding Lu

DOI: https://doi.org/10.1145/1873951.1874073

2010-01-01

Abstract:The collusion attack is a cost-efficient attack against digital finger-printing where classes of users combine their fingerprinted content for the purpose of attenuating or removing the fingerprints. A recently introduced gradient attack which appeared in ACM MM 2004, demonstrated its efficacy in defeating most spread-spectrum based fingerprints. In this paper, we propose a novel collusion attack strategy, Iterative Optimization Collusion Attack (IOCA) , which is based upon the gradient attack and the geometric principal of a Voronoi diagram. The simulation results, under the assumption that orthogonal fingerprints are used, show that the proposed collusion attack performs more effectively than the gradient attack. Less than five fingerprinted pieces of content can sufficiently interrupt orthogonal fingerprints accommodating many thousands of users, meanwhile, high perceptual quality of the attacked content is obtained after the proposed collusion attack.

Chien-Ming Chen,Tsu-Yang Wu,Bing-Zhe He,Hung-Min Sun

DOI: https://doi.org/10.1109/cmcsn.2012.69

2012-01-01

Abstract:Time-bound hierarchical key management mechanisms are widely discussed in several environments and applications. Obviously, the collusion attacks are the serious problems in the time-bound hierarchical key management schemes. In the collusion attacks, two or more users assigned to some classes in distinct time periods collude to compute a key to which they are not entitled. Two kinds of countermeasures, such as adopting tamper-resistant devices and utilizing public parameters have been proposed to withstand the collusion attacks. In this paper, we proposed a new time-bound hierarchical key management scheme which can effectively defeat the collusion attacks without adopting a tamper-resistant device. Compared with the previous schemes, our design requires less public parameters.

Changhai Ou,Debiao He,Kexin Qiao,Shihui Zheng,Siew-Kei Lam,Fan Zhang

DOI: https://doi.org/10.1109/tcad.2023.3288512

IF: 2.9

2023-01-01

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

Abstract:By introducing collision information into divide-and-conquer distinguishers, the existing collision-optimized side-channel attacks transform the given candidate space into a significantly smaller collision space, thus achieving more efficient key recovery. However, the candidates of the first several subkeys shared by collision chains are still repeatedly detected, which happens very frequently and brings huge computational overhead. To alleviate this, we propose a highly efficient collision-optimized attack named collision tree (CoTree). This collision detection tool exploits tree structure to store the chains created from the same subchain on the same branch, thus significantly reducing the storage requirements. It then benefits from the properties of both tree and collisions and exploits a top-down tree building procedure and traverses each node only once when detecting their collisions with a candidate of the subkey currently under consideration. Finally, unlike the traditional top-down node removal, CoTree launches a bottom-up branch removal procedure to remove the chains unsatisfying the collision conditions from the tree after traversing all the considered candidates of this subkey, thus avoiding the traversal of the branches satisfying the collision condition. These strategies make our CoTree significantly alleviate the repetitive collision detection, and our experiments verify that it significantly outperforms the existing works.

Teng Long,Huifang Chen,Lei Xie

DOI: https://doi.org/10.1016/j.adhoc.2013.05.015

2012-01-01

Journal of Networks

Abstract:Distributing session keys for secure communication in an unreliable wireless network is a challenging issue due to the traffic congestion and the security problem. The self-healing key distribution is an efficient technique to reduce the traffic and provide good security performance. In this paper, we propose a new self-healing key distribution scheme based on the key-chain tree (KCT) for wireless networks. In the proposed scheme, group manager selects keys to encrypt session keys according to the position of revoked users in the KCT. Simulation results show that compared to existing schemes, the proposed scheme achieves a higher flexibility and a lower communication overhead.

Jiang Zhang,Bin Li,Chunxiao Chen,Pin Tao,Shiqiang Yang

DOI: https://doi.org/10.1109/cesa.2006.4281826

2006-01-01

Abstract:The increasing popularity of distributed and collaborative applications prompts the need for secure communication in collaborative groups. Some distributed collaborative key management protocols have been proposed to provide group communication privacy and data confidentiality for collaborative groups. However, most of them rekey on each member change, and the costs of group rekeying can be quite substantial for large groups with frequent membership changes. In this paper, we propose a efficient distributed key agreement scheme using a distributed one-way function tree named EDKAS which can significantly reduce the computation and communication costs of maintaining the group key especially in a highly dynamical environment based upon period-based group rekeying. Performance of the period-based group rekeying algorithm is analyzed and evaluated under different settings. A comparison with previous work has shown that EDKAS provides high rekeying efficiency while preserving both distributed and collaborative properties.

Huifang Chen,Hiroshi Mineno,Yoshitsugu Obashi,Tomohiro Kokogawa,Tadanori Mizuno

DOI: https://doi.org/10.1007/978-3-540-72685-2_58

2007-01-01

Abstract:Confidentiality, integrity, and authentication services are critical to preventing an adversary from compromising the security of a Wireless Sensor Network (WSN). An essential component of any key-based security solution is managing the encryption keys to providing this protection. Hence, we propose a novel group key management scheme based on the key-chain tree mechanism for the clustered WSNs in this paper. In this scheme, the functions of key management are decoupled and distributed among multiple network elements of the clustered WSNs for providing compromise/failure resistance. This scheme also supports rekeying to enhance network security and survivability against the node capture. Analysis results show that the scheme does provide a secure encryption of the messages even if the revoked sensor nodes collude with each other or the cluster head is compromised.

Dong Jiao,Mingchu Li,Yan Yu,Jinping Ou

DOI: https://doi.org/10.1155/2012/821486

IF: 1.938

2012-01-01

International Journal of Distributed Sensor Networks

Abstract:In wireless sensor networks, self-healing key-distribution schemes are used to ensure that, even if the message packets that are broadcast in some sessions get lost, the group nodes can still recover the lost session keys simply by using their personal secret keys and broadcast messages that have been received without requesting additional transmissions from the group manager. These schemes reduce network traffic, decrease the group manager's workload, and lower the risk of node exposure through traffic analysis. However, most existing schemes have many deficiencies, such as high overhead for storage and communication and collusion attacks. In this paper, we have proposed a modified, self-healing, key-distribution scheme based on one-way key chains and secret sharing. Our scheme has the properties of constant storage, lower communication overhead, long lifespan, forward secrecy, backward secrecy, and resistance to collusion attacks.

Hefei Ling,Hui Feng,Fuhao Zou,Weiqi Yan,Zhengding Lu

DOI: https://doi.org/10.1007/978-3-642-18405-5_19

2011-01-01

Abstract:Digital fingerprinting is a technology which aims to embed unique marks with traceability in order to identify users who use their multimedia content for unintended purpose. A cost-efficient attack against digital fingerprinting, known as collusion attack, involves a group of users who combine their fingerprinted content for the purpose of attenuating or removing the fingerprints. In this paper, we analyze and simulate the effect of Gaussian noise with different energies added in the noise-free forgery on both the detection performance of correlation-based detector and the perceptual quality of the attacked content. Based upon the analysis and the principal of informed watermark embedding, we propose a novel collusion attack strategy, self-adaptive noise optimization (SANO) collusion attack. The experimental results, under the assumption that orthogonal fingerprints are used, show that the proposed collusion attack performs more effectively than the most of existed collusion attacks. Less than three pieces of fingerprinted content can sufficiently interrupt orthogonal fingerprints which accommodate many thousands of users. Meanwhile, high fidelity of the attacked content is retained after the proposed collusion attack.

K. Sudheeradh,N. Neha Jahnavi,Pramod N. Chine,Gaurav S. Kasbekar

DOI: https://doi.org/10.1109/access.2024.3350780

IF: 3.9

2024-01-01

IEEE Access

Abstract:The Internet of Things (IoT) extends Internet connectivity to resource-constrained devices such as sensors and actuators. It is prone to several security threats and attacks, due to which defence mechanisms such as encryption, message authentication codes, authentication, etc., need to be employed. Several IoT scenarios require secure communication to and data acquisition from multiple devices, which constitute a “group”. Also, in dynamic IoT scenarios, devices join or leave a group from time to time, due to which the group keys, which are used for multicasting information within the group, need to be efficiently updated. We propose a novel scheme, based on factorial trees and the Chinese Remainder Theorem, for efficient Group Key Management. Our proposed scheme prevents malicious users from accessing information from a group and efficiently updates the group keys when devices join or leave a group, while guaranteeing forward and backward secrecy. We evaluate the performance of the proposed scheme via extensive mathematical analysis and numerical computations, and show that it outperforms schemes proposed in prior work in terms of the communication and computation costs incurred by IoT devices.

computer science, information systems,telecommunications,engineering, electrical & electronic

Huifang Chen,Lei Xie

DOI: https://doi.org/10.3390/s141224358

IF: 3.9

2014-01-01

Sensors

Abstract:Self-healing group key distribution (SGKD) aims to deal with the key distribution problem over an unreliable wireless network. In this paper, we investigate the SGKD issue in resource-constrained wireless networks. We propose two improved SGKD schemes using the one-way hash chain (OHC) and the revocation polynomial (RP), the OHC&RP-SGKD schemes. In the proposed OHC&RP-SGKD schemes, by introducing the unique session identifier and binding the joining time with the capability of recovering previous session keys, the problem of the collusion attack between revoked users and new joined users in existing hash chain-based SGKD schemes is resolved. Moreover, novel methods for utilizing the one-way hash chain and constructing the personal secret, the revocation polynomial and the key updating broadcast packet are presented. Hence, the proposed OHC&RP-SGKD schemes eliminate the limitation of the maximum allowed number of revoked users on the maximum allowed number of sessions, increase the maximum allowed number of revoked/colluding users, and reduce the redundancy in the key updating broadcast packet. Performance analysis and simulation results show that the proposed OHC&RP-SGKD schemes are practical for resource-constrained wireless networks in bad environments, where a strong collusion attack resistance is required and many users could be revoked.

Muhammad Yasir Malik

DOI: https://doi.org/10.48550/arXiv.1211.3502

2012-11-15

Abstract:Key management in multicast dynamic groups, where users can leave or join at their ease is one of the most crucial and essential part of secure communication. Various efficient management strategies have been proposed during last decade that aim to decrease encryption costs and transmission overheads. In this report, two different types of key management schemes are proposed. First proposed scheme is based on One-way function tree (OFT). The proposed scheme fulfills the security gaps that have been pointed out in recent years. Second proposed scheme is based on logical key hierarchy (LKH). This proposed scheme provides better performance for, rather inflexible and expensive, LKH scheme.

Cryptography and Security,Networking and Internet Architecture

Sun Hung-Min,Wang King-Hang,Chen Chien-Ming

DOI: https://doi.org/10.1109/TDSC.2009.15

2009-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Recently, Bertino et al. proposed a new time-bound key management scheme for broadcasting. The security of their scheme is planted on the hardness breaking of elliptic curve discrete log problem, HMAC, and tamper-resistance devices. They claimed that as long as the three assumptions hold, their scheme is secure. By means of secure, users cannot access resources that they are not granted, even if users collude. In this paper, we demonstrate that this scheme is insecure against the collusion attack. We also provide some possible amendments to this scheme. © 2006 IEEE.

Xiaoyang Dong,Jialiang Hua,Siwei Sun,Zheng Li,Xiaoyun Wang,Lei Hu

2021-01-01

Abstract:At EUROCRYPT 2021, Bao et al. proposed an automatic method for systematically exploring the configuration space of meetin-the-middle (MITM) preimage attacks. We further extend it into a constraint-based framework for finding exploitable MITM characteristics in the context of key-recovery and collision attacks by taking the subtle peculiarities of both scenarios into account. Moreover, to perform attacks based on MITM characteristics with nonlinear constrained neutral words, which have not been seen before, we present a procedure for deriving the solution spaces of neutral words without solving the corresponding nonlinear equations or increasing the overall time complexities of the attack. We apply our method to concrete symmetric-key primitives, including SKINNY, ForkSkinny, Romulus-H, Saturnin, Grøstl, WHIRLPOOL, and hashing modes with AES-256. As a result, we identify the first 23-round key-recovery attack on SKINNY-n-3n and the first 24-round key-recovery attack on ForkSkinny-n-3n in the single-key model with extremely low memories. Moreover, improved (pseudo) preimage or collision attacks on round-reduced WHIRLPOOL, Grøstl, and hashing modes with AES-256 are obtained. In particular, employing the new representation of the AES key schedule due to Leurent and Pernot (EUROCRYPT 2021), we identify the first preimage attack on 10-round AES-256.

Jianghua Liu,Jingyu Hou,Wenjie Yang,Yang Xiang,Wanlei Zhou,Wei Wu,Xinyi Huang

DOI: https://doi.org/10.1109/tc.2020.3006835

IF: 3.183

2021-07-01

IEEE Transactions on Computers

Abstract:With the increasing development of cloud computing, a number of users choose to outsource their data to a remote database service provider and enjoy flexible data sharing with multiple parties. However, the integrity and confidentiality of outsourced data in a remote cloud server are the main threats users are concerned about. The tree structure is one of the most widely used data organization structures. It is crucial to guarantee the integrity and privacy not only for the content but also for the structure if sensitive information is organized in this structure. At present, despite some solutions have been put forward, none of these considers the additional redaction attack on tree-structured data from attackers while sharing data with others. In this article, we provide a construction of secure redactable signature scheme for tree-structured data which features a multi-party control on the redaction of vertexes in a tree while the authenticity and privacy are assured. Then, we prove that our scheme is unforgeable, private, and transparent. Furthermore, extensive theoretical and experimental analyses are conducted to assess the efficiency of our scheme. The results demonstrate our scheme achieves multi-party redaction control without sacrificing sensible resources especially when a tree has a larger number of vertexes and siblings per vertex.

engineering, electrical & electronic,computer science, hardware & architecture

Hsu, Chingfang

DOI: https://doi.org/10.1007/s11277-023-10239-0

IF: 2.017

2023-03-09

Wireless Personal Communications

Abstract:Internet of Medical Things (IoMT) is mainly composed of patients, doctors and medical data collection equipment. In IoMT, the health data of patients is collected in real-time through mobile devices and stored in the network servers for access by legitimate medical personnel to facilitate monitoring, diagnosis and treatment services for patients. To securely transmit various types of data is the essential task of secure group communications for Internet of Things (IoMT). Collected data in IoMT have the particularity of being heterogeneous. At the same time, IoMT networks is exposed to some security threats caused by various attacks, as well as efficiency challenges caused by limited communication range and limited energy. Thus, how to securely group communicate and compute heterogeneous data between resource-constrained IoMT devices is a crucial problem to be solved. Due to the lightweight computational overhead required for group key agreement in resource-constrained environments, traditional protocols are not effectively applied by researchers in the IoMT. Based on symmetric binary polynomial and XOR operation, a lightweight and fast member authentication group key agreement is presented, which can be effectively applied in resource-constrained IoMT. The proposed scheme realizes the functions of membership authentication and group key negotiation, while improving the communication efficiency of group members. In terms of security, our scheme is resistant to both internal and external attacks and can satisfy all the defined security properties. Furthermore, using the logic XOR operation as the main operation method ensures that the computation cost in this protocol is lightweight. More importantly, in our proposal, the communication consumption at each group member end is not affected by the size of group, where the communication method between members is in a non-interactive and broadcast way. In consequence, our protocol provides a more efficient communication and computational process compared to recently proposed cryptographic schemes. Hence, this proposal is an excellent choice for solving membership authentication and group key agreement problems in resource-constrained IoMT systems.

telecommunications

Xiaoming Duan,Nikolaos M. Freris,Peng Cheng

DOI: https://doi.org/10.1109/allerton.2016.7852364

2016-01-01

Abstract:Recently, the Secure Average Time Synchronization (SATS) protocol has been proposed and analyzed; this distributed clock synchronization protocol is capable of successfully tackling several attacks such as denial-of-service (DoS), message-delay, message duplication/repetition, and even a generic message manipulation. However, the collusion attack, in which neighboring malicious nodes may cooperate so as to strike stealthier attacks that are more difficult to handle, remains by and large an open problem. In the setup of SATS, we derive the fundamental asymptotic bounds in the number of malicious agents-as function of the benign ones-that can be efficiently handled without tampering accurate network-wide synchronization. Going a step further, we develop a risk model for collusions and use it to obtain even tighter bounds. In specific, we establish that SATS can handle 'many' malicious nodes with high probability: an order of almost square-root of the benign ones for the case of no risk, and almost linear when the risk of collusion is accounted. Last but not least, we analyze and experimentally assess an interesting phenomenon: the presence of attackers may lead to a convergence speedup of SATS, since malicious nodes can be effectively constrained from the network, thus affecting the algebraic connectivity of the graph corresponding to the network topology. Numerical simulations verify the theoretical results, i.e., collusions are avoided when the number of malicious nodes is bounded by the asymptotic bounds and the algebraic connectivity increases due to incorporating 'well behaved' malicious nodes.