Lightweight and Resilient Signatures for Cloud-Assisted Embedded IoT Systems
Digital signatures provide scalable authentication with non-repudiation and are vital tools for the Internet of Things (IoT). Many IoT applications harbor vast quantities of resource-limited devices often used with cloud computing. However, key compromises (e.g., physical, malware) pose a significan...
Gespeichert in:
| Hauptverfasser: | , |
|---|---|
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | |
| container_volume | |
| creator | Nouma, Saif E Yavuz, Attila A |
| description | Digital signatures provide scalable authentication with non-repudiation and
are vital tools for the Internet of Things (IoT). Many IoT applications harbor
vast quantities of resource-limited devices often used with cloud computing.
However, key compromises (e.g., physical, malware) pose a significant threat to
IoTs due to increased attack vectors and open operational environments. Forward
security and distributed key management are critical breach-resilient
countermeasures to mitigate such threats. Yet forward-secure signatures are
exorbitantly costly for low-end IoTs, while cloud-assisted approaches suffer
from centrality or non-colluding semi-honest servers. In this work, we create
two novel digital signatures called Lightweight and Resilient Signatures with
Hardware Assistance (LRSHA) and its Forward-secure version (FLRSHA). They offer
a near-optimally efficient signing with small keys and signature sizes. We
synergize various design strategies, such as commitment separation to eliminate
costly signing operations and hardware-assisted distributed servers to enable
breach-resilient verification. Our schemes achieve magnitudes of faster
forward-secure signing and compact key/signature sizes without suffering from
strong security assumptions (non-colluding, central servers) or a heavy burden
on the verifier (extreme storage, computation). We formally prove the security
of our schemes and validate their performance with full-fledged open-source
implementations on both commodity hardware and 8-bit AVR microcontrollers. |
| doi_str_mv | 10.48550/arxiv.2409.13937 |
| format | Article |
| fullrecord | <record><control><sourceid>arxiv_GOX</sourceid><recordid>TN_cdi_arxiv_primary_2409_13937</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2409_13937</sourcerecordid><originalsourceid>FETCH-arxiv_primary_2409_139373</originalsourceid><addsrcrecordid>eNpjYJA0NNAzsTA1NdBPLKrILNMzMjGw1DM0tjQ252Tw8clMzygpTwWRCol5KQpBqcWZOZmpeSUKwZnpeYklpUWpxQpp-UUKzjn5pSm6jsXFmcUlqSkKrrlJqSkpQIZnfohCcCVQLLeYh4E1LTGnOJUXSnMzyLu5hjh76ILtjS8oysxNLKqMB9kfD7bfmLAKAAEcOzI</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>Lightweight and Resilient Signatures for Cloud-Assisted Embedded IoT Systems</title><source>arXiv.org</source><creator>Nouma, Saif E ; Yavuz, Attila A</creator><creatorcontrib>Nouma, Saif E ; Yavuz, Attila A</creatorcontrib><description>Digital signatures provide scalable authentication with non-repudiation and
are vital tools for the Internet of Things (IoT). Many IoT applications harbor
vast quantities of resource-limited devices often used with cloud computing.
However, key compromises (e.g., physical, malware) pose a significant threat to
IoTs due to increased attack vectors and open operational environments. Forward
security and distributed key management are critical breach-resilient
countermeasures to mitigate such threats. Yet forward-secure signatures are
exorbitantly costly for low-end IoTs, while cloud-assisted approaches suffer
from centrality or non-colluding semi-honest servers. In this work, we create
two novel digital signatures called Lightweight and Resilient Signatures with
Hardware Assistance (LRSHA) and its Forward-secure version (FLRSHA). They offer
a near-optimally efficient signing with small keys and signature sizes. We
synergize various design strategies, such as commitment separation to eliminate
costly signing operations and hardware-assisted distributed servers to enable
breach-resilient verification. Our schemes achieve magnitudes of faster
forward-secure signing and compact key/signature sizes without suffering from
strong security assumptions (non-colluding, central servers) or a heavy burden
on the verifier (extreme storage, computation). We formally prove the security
of our schemes and validate their performance with full-fledged open-source
implementations on both commodity hardware and 8-bit AVR microcontrollers.</description><identifier>DOI: 10.48550/arxiv.2409.13937</identifier><language>eng</language><subject>Computer Science - Cryptography and Security</subject><creationdate>2024-09</creationdate><rights>http://creativecommons.org/licenses/by-nc-nd/4.0</rights><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>228,230,781,886</link.rule.ids><linktorsrc>$$Uhttps://arxiv.org/abs/2409.13937$$EView_record_in_Cornell_University$$FView_record_in_$$GCornell_University$$Hfree_for_read</linktorsrc><backlink>$$Uhttps://doi.org/10.48550/arXiv.2409.13937$$DView paper in arXiv$$Hfree_for_read</backlink></links><search><creatorcontrib>Nouma, Saif E</creatorcontrib><creatorcontrib>Yavuz, Attila A</creatorcontrib><title>Lightweight and Resilient Signatures for Cloud-Assisted Embedded IoT Systems</title><description>Digital signatures provide scalable authentication with non-repudiation and
are vital tools for the Internet of Things (IoT). Many IoT applications harbor
vast quantities of resource-limited devices often used with cloud computing.
However, key compromises (e.g., physical, malware) pose a significant threat to
IoTs due to increased attack vectors and open operational environments. Forward
security and distributed key management are critical breach-resilient
countermeasures to mitigate such threats. Yet forward-secure signatures are
exorbitantly costly for low-end IoTs, while cloud-assisted approaches suffer
from centrality or non-colluding semi-honest servers. In this work, we create
two novel digital signatures called Lightweight and Resilient Signatures with
Hardware Assistance (LRSHA) and its Forward-secure version (FLRSHA). They offer
a near-optimally efficient signing with small keys and signature sizes. We
synergize various design strategies, such as commitment separation to eliminate
costly signing operations and hardware-assisted distributed servers to enable
breach-resilient verification. Our schemes achieve magnitudes of faster
forward-secure signing and compact key/signature sizes without suffering from
strong security assumptions (non-colluding, central servers) or a heavy burden
on the verifier (extreme storage, computation). We formally prove the security
of our schemes and validate their performance with full-fledged open-source
implementations on both commodity hardware and 8-bit AVR microcontrollers.</description><subject>Computer Science - Cryptography and Security</subject><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2024</creationdate><recordtype>article</recordtype><sourceid>GOX</sourceid><recordid>eNpjYJA0NNAzsTA1NdBPLKrILNMzMjGw1DM0tjQ252Tw8clMzygpTwWRCol5KQpBqcWZOZmpeSUKwZnpeYklpUWpxQpp-UUKzjn5pSm6jsXFmcUlqSkKrrlJqSkpQIZnfohCcCVQLLeYh4E1LTGnOJUXSnMzyLu5hjh76ILtjS8oysxNLKqMB9kfD7bfmLAKAAEcOzI</recordid><startdate>20240920</startdate><enddate>20240920</enddate><creator>Nouma, Saif E</creator><creator>Yavuz, Attila A</creator><scope>AKY</scope><scope>GOX</scope></search><sort><creationdate>20240920</creationdate><title>Lightweight and Resilient Signatures for Cloud-Assisted Embedded IoT Systems</title><author>Nouma, Saif E ; Yavuz, Attila A</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-arxiv_primary_2409_139373</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2024</creationdate><topic>Computer Science - Cryptography and Security</topic><toplevel>online_resources</toplevel><creatorcontrib>Nouma, Saif E</creatorcontrib><creatorcontrib>Yavuz, Attila A</creatorcontrib><collection>arXiv Computer Science</collection><collection>arXiv.org</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Nouma, Saif E</au><au>Yavuz, Attila A</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Lightweight and Resilient Signatures for Cloud-Assisted Embedded IoT Systems</atitle><date>2024-09-20</date><risdate>2024</risdate><abstract>Digital signatures provide scalable authentication with non-repudiation and
are vital tools for the Internet of Things (IoT). Many IoT applications harbor
vast quantities of resource-limited devices often used with cloud computing.
However, key compromises (e.g., physical, malware) pose a significant threat to
IoTs due to increased attack vectors and open operational environments. Forward
security and distributed key management are critical breach-resilient
countermeasures to mitigate such threats. Yet forward-secure signatures are
exorbitantly costly for low-end IoTs, while cloud-assisted approaches suffer
from centrality or non-colluding semi-honest servers. In this work, we create
two novel digital signatures called Lightweight and Resilient Signatures with
Hardware Assistance (LRSHA) and its Forward-secure version (FLRSHA). They offer
a near-optimally efficient signing with small keys and signature sizes. We
synergize various design strategies, such as commitment separation to eliminate
costly signing operations and hardware-assisted distributed servers to enable
breach-resilient verification. Our schemes achieve magnitudes of faster
forward-secure signing and compact key/signature sizes without suffering from
strong security assumptions (non-colluding, central servers) or a heavy burden
on the verifier (extreme storage, computation). We formally prove the security
of our schemes and validate their performance with full-fledged open-source
implementations on both commodity hardware and 8-bit AVR microcontrollers.</abstract><doi>10.48550/arxiv.2409.13937</doi><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext_linktorsrc |
| identifier | DOI: 10.48550/arxiv.2409.13937 |
| ispartof | |
| issn | |
| language | eng |
| recordid | cdi_arxiv_primary_2409_13937 |
| source | arXiv.org |
| subjects | Computer Science - Cryptography and Security |
| title | Lightweight and Resilient Signatures for Cloud-Assisted Embedded IoT Systems |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-17T08%3A57%3A00IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-arxiv_GOX&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Lightweight%20and%20Resilient%20Signatures%20for%20Cloud-Assisted%20Embedded%20IoT%20Systems&rft.au=Nouma,%20Saif%20E&rft.date=2024-09-20&rft_id=info:doi/10.48550/arxiv.2409.13937&rft_dat=%3Carxiv_GOX%3E2409_13937%3C/arxiv_GOX%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |