Detail publikace

Privacy-Enhancing Group Signcryption Scheme

RICCI, S. DZURENDA, P. HAJNÝ, J. MALINA, L.

Originální název

Privacy-Enhancing Group Signcryption Scheme

Anglický název

Privacy-Enhancing Group Signcryption Scheme

Jazyk

en

Originální abstrakt

In the last decades, several signcryption schemes have been developed for different privacy-enhancing purposes. In this paper, we propose a new privacy-enhancing group signcryption schemethat provides: unforgeability, confidentiality, ciphertext and sender anonymity, traceability, unlinkability,exculpability, coalition-resistance, and unforgeable tracing verification. It is important to notice that theproposed scheme allows a signer to anonymously signcrypt a message on the group’s behalf (i.e., sender’sanonymity). The security analysis of the scheme is also provided. Our proposal is proven to be stronglyexistentially unforgeable under an adaptive chosen message attack, indistinguishable under an adaptivechosen ciphertext attack, and to provide ciphertext anonymity under an adaptive chosen ciphertext attack.Furthermore, the scheme is extended to work in a multi-receiver scenario, where an authorized group ofreceivers is able to unsigncrypt the ciphertext. The experimental results show that our scheme is efficienteven on computationally restricted devices and can be therefore used in many IoT applications. TheSigncryptprotocol on smart cards takes less than 1 s (including communication overhead). The timeof theUnsigncryptprotocol on current ARM devices is negligible (less than 40 ms).

Anglický abstrakt

In the last decades, several signcryption schemes have been developed for different privacy-enhancing purposes. In this paper, we propose a new privacy-enhancing group signcryption schemethat provides: unforgeability, confidentiality, ciphertext and sender anonymity, traceability, unlinkability,exculpability, coalition-resistance, and unforgeable tracing verification. It is important to notice that theproposed scheme allows a signer to anonymously signcrypt a message on the group’s behalf (i.e., sender’sanonymity). The security analysis of the scheme is also provided. Our proposal is proven to be stronglyexistentially unforgeable under an adaptive chosen message attack, indistinguishable under an adaptivechosen ciphertext attack, and to provide ciphertext anonymity under an adaptive chosen ciphertext attack.Furthermore, the scheme is extended to work in a multi-receiver scenario, where an authorized group ofreceivers is able to unsigncrypt the ciphertext. The experimental results show that our scheme is efficienteven on computationally restricted devices and can be therefore used in many IoT applications. TheSigncryptprotocol on smart cards takes less than 1 s (including communication overhead). The timeof theUnsigncryptprotocol on current ARM devices is negligible (less than 40 ms).

Plný text v Digitální knihovně

Dokumenty

BibTex


@article{BUT172692,
  author="Sara {Ricci} and Petr {Dzurenda} and Jan {Hajný} and Lukáš {Malina}",
  title="Privacy-Enhancing Group Signcryption Scheme",
  annote="In the last decades, several signcryption schemes have been developed for different privacy-enhancing  purposes.  In  this  paper,  we  propose  a  new  privacy-enhancing  group  signcryption  schemethat provides: unforgeability, confidentiality, ciphertext and sender anonymity, traceability, unlinkability,exculpability,  coalition-resistance,  and  unforgeable  tracing  verification.  It  is  important  to  notice  that  theproposed scheme allows a signer to anonymously signcrypt a message on the group’s behalf (i.e., sender’sanonymity). The security analysis of the scheme is also provided. Our proposal is proven to be stronglyexistentially  unforgeable  under  an  adaptive  chosen  message  attack,  indistinguishable  under  an  adaptivechosen ciphertext attack, and to provide ciphertext anonymity under an adaptive chosen ciphertext attack.Furthermore, the scheme is extended to work in a multi-receiver scenario, where an authorized group ofreceivers is able to unsigncrypt the ciphertext. The experimental results show that our scheme is efficienteven  on  computationally  restricted  devices  and  can  be  therefore  used  in  many  IoT  applications.  TheSigncryptprotocol on smart cards takes less than 1 s (including communication overhead). The timeof theUnsigncryptprotocol on current ARM devices is negligible (less than 40 ms).",
  address="IEEE",
  chapter="172692",
  doi="10.1109/ACCESS.2021.3117452",
  howpublished="online",
  institution="IEEE",
  number="10",
  volume="9",
  year="2021",
  month="october",
  pages="136529--136551",
  publisher="IEEE",
  type="journal article in Web of Science"
}