Sign in to use this feature.

Years

Between: -

Subjects

remove_circle_outline
remove_circle_outline
remove_circle_outline
remove_circle_outline
remove_circle_outline

Journals

Article Types

Countries / Regions

Search Results (10)

Search Parameters:
Keywords = pairing-free security protocols

Order results
Result details
Results per page
Select all
Export citation of selected articles as:
10 pages, 2411 KB  
Article
Entanglement Swapping Enables the Practical Security of Quantum Cryptography
by Yang-Fan Jiang, Liang Huang, Yu-Zhe Zhang, Likang Zhang, Qi-Chao Sun, Zheng-Ping Li, Hao Li, Weijun Zhang, Lixing You, Feihu Xu, Qiang Zhang and Jian-Wei Pan
Entropy 2026, 28(5), 518; https://doi.org/10.3390/e28050518 - 4 May 2026
Viewed by 966
Abstract
Entanglement is one of the most striking phenomena in quantum physics, playing important roles in fundamental physics and quantum information science. It enables a secure means of communication—quantum cryptography—and builds up the foundation of its unconditional security. Entanglement-based quantum cryptography has received great [...] Read more.
Entanglement is one of the most striking phenomena in quantum physics, playing important roles in fundamental physics and quantum information science. It enables a secure means of communication—quantum cryptography—and builds up the foundation of its unconditional security. Entanglement-based quantum cryptography has received great attention from the early demonstrations to the recent remarkable achievements. In a practical scenario, although entanglement-based quantum cryptography can provide inherent source-independent security, its detection side has been shown to be vulnerable to external probing attacks. Here we show that entanglement swapping can effectively solve this critical issue, enabling a side-channel-free quantum cryptography.Entanglement swapping allows each user’s quantum state preparation and detection in a completely private station, which is immune to any external probing side channels. We demonstrate the entanglement-swapping quantum cryptography scheme in the field based on two independent entanglement photon sources. Based on the remote entangled photon pairs, we implement the Ekert-1991 protocol under a channel attenuation equivalent to 100 km of standard optical fiber, achieving a Bell violation value of S=2.659±0.092 and a secret key rate of 0.0163 bit/s. While recent device-independent QKD demonstrations have reached 100 km using atoms or ions, our photonic ES-QKD offers a complementary, all-optical pathway that is directly compatible with existing fiber networks and quantum repeaters. Full article
Show Figures

Figure 1

31 pages, 2844 KB  
Article
A Security-Enhanced Certificateless Aggregate Authentication Protocol with Revocation for Wireless Medical Sensor Networks
by Quan Fan, Yimin Wang and Xiang Li
Sensors 2026, 26(7), 2106; https://doi.org/10.3390/s26072106 - 28 Mar 2026
Viewed by 535
Abstract
Wireless medical sensor networks (WMSNs) enable continuous patient monitoring by transmitting sensitive physiological data over open wireless links. Given the resource-constrained nature and large-scale deployment of such networks, authentication mechanisms must be both lightweight and privacy-preserving. Moreover, due to the frequent turnover of [...] Read more.
Wireless medical sensor networks (WMSNs) enable continuous patient monitoring by transmitting sensitive physiological data over open wireless links. Given the resource-constrained nature and large-scale deployment of such networks, authentication mechanisms must be both lightweight and privacy-preserving. Moreover, due to the frequent turnover of patients and devices in hospital environments, timely member revocation is crucial to prevent discharged or compromised entities from injecting forged reports that could mislead medical diagnosis. Although existing pairing-free certificateless aggregate authentication schemes are efficient, they often suffer from critical security and privacy vulnerabilities. Recently, an efficient certificateless authentication scheme with revocation has been proposed. However, our analysis reveals that the scheme presents the following security vulnerabilities: (i) member witnesses can be recovered from public information, (ii) revocation checks can be bypassed via identity grafting attack, and (iii) user identities can be linked due to the long-term use of static pseudonyms. To address these issues, we propose a security-enhanced certificateless aggregate authentication protocol with revocation for WMSNs. Our design enforces strong identity–membership binding to resist grafting attacks, employs a non-interactive zero-knowledge membership proof to preserve witness secrecy, and adopts dynamic pseudonym rotation to achieve unlinkability. We provide formal security proofs and comprehensive performance comparisons. The results indicate that, at the same security level, our protocol achieves more efficient signature verification while maintaining communication overhead comparable to existing schemes. In addition, the overhead introduced by our revocation mechanism remains constant, making it well suited for large-scale WMSNs deployments with frequent membership changes. Full article
Show Figures

Figure 1

16 pages, 756 KB  
Article
Secure Proxy Re-Encryption Protocol for FANETs Resistant to Chosen-Ciphertext Attacks
by Hyun-A Park
Appl. Sci. 2024, 14(2), 761; https://doi.org/10.3390/app14020761 - 16 Jan 2024
Cited by 2 | Viewed by 1720
Abstract
In emergency situations, ensuring the secure transmission of medical information is critical. While existing schemes address on-road emergencies, off-road scenarios present unique challenges due to hazardous locations inaccessible to conventional vehicles. This research introduces a protocol for off-road emergencies, leveraging flying ad hoc [...] Read more.
In emergency situations, ensuring the secure transmission of medical information is critical. While existing schemes address on-road emergencies, off-road scenarios present unique challenges due to hazardous locations inaccessible to conventional vehicles. This research introduces a protocol for off-road emergencies, leveraging flying ad hoc networks (FANETs) formed by drones. The protocol, designed for users receiving emergency treatment, employs cryptographic techniques to protect sensitive information. To overcome the challenge of decrypting user medical records at emergency centers without the healthcare provider’s key, proxy re-encryption is employed. The control center (CC) securely generates encryption and decryption keys, facilitating the re-encryption process by the cloud server (CS) and transmission to the emergency center (E). The proposed protocol, free from pairing functions, underwent security and efficiency analyses, demonstrating resilience against chosen-ciphertext attacks (CCA) and collusion resistance (CR). Execution times of approximately 0.02 and 0.0 s for re-encryption and decryption processes, respectively, for a message size of 2000 bytes highlighted the efficiency of the protocol. The research contributes a secure and efficient proxy re-encryption protocol for off-road emergency medical information transmission within FANETs. Full article
(This article belongs to the Special Issue Advanced Technologies for Information Security and Privacy)
Show Figures

Figure 1

25 pages, 609 KB  
Article
Cryptanalysis and Improvement of Several Identity-Based Authenticated and Pairing-Free Key Agreement Protocols for IoT Applications
by Haiyan Sun, Chaoyang Li, Jianwei Zhang, Shujun Liang and Wanwei Huang
Sensors 2024, 24(1), 61; https://doi.org/10.3390/s24010061 - 22 Dec 2023
Cited by 2 | Viewed by 2216
Abstract
Internet of Things (IoT) applications have been increasingly developed. Authenticated key agreement (AKA) plays an essential role in secure communication in IoT applications. Without the PKI certificate and high time-complexity bilinear pairing operations, identity-based AKA (ID-AKA) protocols without pairings are more suitable for [...] Read more.
Internet of Things (IoT) applications have been increasingly developed. Authenticated key agreement (AKA) plays an essential role in secure communication in IoT applications. Without the PKI certificate and high time-complexity bilinear pairing operations, identity-based AKA (ID-AKA) protocols without pairings are more suitable for protecting the keys in IoT applications. In recent years, many pairing-free ID-AKA protocols have been proposed. Moreover, these protocols have some security flaws or relatively extensive computation and communication efficiency. Focusing on these problems, the security analyses of some recently proposed protocols have been provided first. We then proposed a family of eCK secure ID-AKA protocols without pairings to solve these security problems, which can be applied in IoT applications to guarantee communication security. Meanwhile, the security proofs of these proposed ID-AKA protocols are provided, which show they can hold provable eCK security. Some more efficient instantiations have been provided, which show the efficient performance of these proposed ID-AKA protocols. Moreover, comparisons with similar schemes have shown that these protocols have the least computation and communication efficiency at the same time. Full article
(This article belongs to the Special Issue IoT Network Security)
Show Figures

Figure 1

24 pages, 493 KB  
Article
Practical Certificate-Less Infrastructure with Application in TLS
by Li Duan, Yong Li and Lijun Liao
Cryptography 2023, 7(4), 63; https://doi.org/10.3390/cryptography7040063 - 14 Dec 2023
Cited by 3 | Viewed by 3682
Abstract
We propose highly efficient certificate-less (CL) protocols for the infrastructure used by authenticated key exchange (AKE). The construction is based on elliptic curves (EC) without pairing, which means it can be easily supported by most industrial cryptography libraries on constrained devices. Compared with [...] Read more.
We propose highly efficient certificate-less (CL) protocols for the infrastructure used by authenticated key exchange (AKE). The construction is based on elliptic curves (EC) without pairing, which means it can be easily supported by most industrial cryptography libraries on constrained devices. Compared with other pairing-free CL solutions, the new CL-AKE protocol enjoys the least number of scalar multiplications over EC groups. We use a unified game-based model to formalize the security of each protocol, while most previous works only assess the security against a list of attacks, provide informal theorems without proper modeling, or use separate models for protocols in different stages. We also present an efficient integration of the core protocols into the TLS cipher suites and a stand-alone implementation for constrained devices. The performance is evaluated on constrained devices in real-world settings, which further confirms the efficiency of our proposal. Full article
(This article belongs to the Special Issue Recent Advances in Information Security and Privacy)
Show Figures

Figure 1

19 pages, 877 KB  
Article
Measurement-Device-Independent Quantum Key Distribution Based on Decoherence-Free Subspaces with Logical Bell State Analyzer
by Jun-Hao Wei, Xin-Yu Xu, Shu-Ming Hu, Qing Zhou, Li Li, Nai-Le Liu and Kai Chen
Entropy 2023, 25(6), 869; https://doi.org/10.3390/e25060869 - 29 May 2023
Cited by 2 | Viewed by 3503
Abstract
Measurement-device-independent quantum key distribution (MDI-QKD) enables two legitimate users to generate shared information-theoretic secure keys with immunity to all detector side attacks. However, the original proposal using polarization encoding is sensitive to polarization rotations stemming from birefringence in fibers or misalignment. To overcome [...] Read more.
Measurement-device-independent quantum key distribution (MDI-QKD) enables two legitimate users to generate shared information-theoretic secure keys with immunity to all detector side attacks. However, the original proposal using polarization encoding is sensitive to polarization rotations stemming from birefringence in fibers or misalignment. To overcome this problem, here we propose a robust QKD protocol without detector vulnerabilities based on decoherence-free subspaces using polarization-entangled photon pairs. A logical Bell state analyzer is designed specifically for such encoding. The protocol exploits common parametric down-conversion sources, for which we develop a MDI-decoy-state method, and requires neither complex measurements nor a shared reference frame. We have analyzed the practical security in detail and presented a numerical simulation under various parameter regimes, showing the feasibility of the logical Bell state analyzer along with the potential that double communication distance can be achieved without a shared reference frame. Full article
Show Figures

Figure 1

21 pages, 628 KB  
Article
Lightweight and Secure IoT-Based Payment Protocols from an Identity-Based Signature Scheme
by Abubaker Wahaballa
Electronics 2022, 11(21), 3445; https://doi.org/10.3390/electronics11213445 - 25 Oct 2022
Cited by 8 | Viewed by 3018
Abstract
After the great success of mobile wallets, the Internet of Things (IoT) leaves the door wide open for consumers to use their connected devices to access their bank accounts and perform routine banking activities from anywhere, anytime, and with any device. However, consumers [...] Read more.
After the great success of mobile wallets, the Internet of Things (IoT) leaves the door wide open for consumers to use their connected devices to access their bank accounts and perform routine banking activities from anywhere, anytime, and with any device. However, consumers need to feel safe when interacting with IoT-based payment systems, and their personal information should be protected as much as possible. Unlike what is usually found in the literature, in this paper, we introduce two lightweight and secure IoT-based payment protocols based on an identity-based signature scheme. We adopt a server-aided verification technique to construct the first scheme. This technique allows to outsource the heavy computation overhead on the sensor node to a cloud server while maintaining the user’s privacy. The second scheme is built upon a pairing-free ECC-based security protocol to avoid the heavy computational complexity of bilinear pairing operations. The security reduction results of both schemes are held in the Random Oracle Model (ROM) under the discrete logarithm and computational Diffie–Hellman assumptions. Finally, we experimentally compare the proposed schemes against each other and against the original scheme on the most commonly used IoT devices: a smartphone, a smartwatch, and the embedded device Raspberry Pi. Compared with existing schemes, our proposed schemes achieve significant efficiency in terms of communication, computational and storage overheads. Full article
(This article belongs to the Section Computer Science & Engineering)
Show Figures

Figure 1

17 pages, 7927 KB  
Article
Identity-Based Key Exchange on In-Vehicle Networks: CAN-FD & FlexRay
by Bogdan Groza and Pal-Stefan Murvay
Sensors 2019, 19(22), 4919; https://doi.org/10.3390/s19224919 - 12 Nov 2019
Cited by 23 | Viewed by 4505
Abstract
Security has become critical for in-vehicle networks as they carry safety-critical data from various components, e.g., sensors or actuators, and current research proposals were quick to react with cryptographic protocols designed for in-vehicle buses, e.g., CAN (Controller Area Network). Obviously, the majority of [...] Read more.
Security has become critical for in-vehicle networks as they carry safety-critical data from various components, e.g., sensors or actuators, and current research proposals were quick to react with cryptographic protocols designed for in-vehicle buses, e.g., CAN (Controller Area Network). Obviously, the majority of existing proposals are built on cryptographic primitives that rely on a secret shared key. However, how to share such a secret key is less obvious due to numerous practical constraints. In this work, we explore in a comparative manner several approaches based on a group extension of the Diffie–Hellman key-exchange protocol and identity-based authenticated key agreements. We discuss approaches based on conventional signatures and identity-based signatures, garnering advantages from bilinear pairings that open road to several well-known cryptographic constructions: short signatures, the tripartite Diffie–Hellman key exchange and identity-based signatures or key exchanges. Pairing-based cryptographic primitives do not come computationally cheap, but they offer more flexibility that leads to constructive advantages. To further improve on performance, we also account for pairing-free identity-based key exchange protocols that do not require expensive pairing operations nor explicit signing of the key material. We present both computational results on automotive-grade controllers as well as bandwidth simulations with industry-standard tools, i.e., CANoe, on modern in-vehicle buses CAN-FD and FlexRay. Full article
(This article belongs to the Section Internet of Things)
Show Figures

Figure 1

15 pages, 932 KB  
Article
PSDAAP: Provably Secure Data Authenticated Aggregation Protocols Using Identity-Based Multi-Signature in Marine WSNs
by Lifei Wei, Lei Zhang, Dongmei Huang, Kai Zhang, Liang Dai and Guojian Wu
Sensors 2017, 17(9), 2117; https://doi.org/10.3390/s17092117 - 14 Sep 2017
Cited by 7 | Viewed by 4018
Abstract
Data authenticated aggregation is always a significant issue for wireless sensor networks (WSNs). The marine sensors are deployed far away from the security monitoring. Secure data aggregation for marine WSNs has emerged and attracted the interest of researchers and engineers. A multi-signature enables [...] Read more.
Data authenticated aggregation is always a significant issue for wireless sensor networks (WSNs). The marine sensors are deployed far away from the security monitoring. Secure data aggregation for marine WSNs has emerged and attracted the interest of researchers and engineers. A multi-signature enables the data aggregation through one signature to authenticate various signers on the acknowledgement of a message, which is quite fit for data authenticated aggregation marine WSNs. However, most of the previous multi-signature schemes rely on the technique of bilinear pairing involving heavy computational overhead or the management of certificates, which cannot be afforded by the marine wireless sensors. Combined with the concept of identity-based cryptography, a few pairing-free identity-based multi-signature (IBMS) schemes have been designed on the basis of the integer factorization problem. In this paper, we propose two efficient IBMS schemes that can be used to construct provably secure data authenticated aggregation protocols under the cubic residue assumption, which is equal to integer factorization. We also employ two different methods to calculate a cubic root for the cubic residue number during the signer’s private key extraction. The algorithms are quite efficient compared to the previous work, especially for the algorithms of the multi-signature generation and its verification. Full article
(This article belongs to the Special Issue Marine Sensing)
Show Figures

Figure 1

22 pages, 879 KB  
Article
Reconfigurable Routing Protocol for Free Space Optical Sensor Networks
by Rong Xie, Won-Hyuk Yang and Young-Chon Kim
Sensors 2012, 12(4), 4824-4845; https://doi.org/10.3390/s120404824 - 13 Apr 2012
Cited by 8 | Viewed by 7524
Abstract
Recently, free space optical sensor networks (FSOSNs), which are based on free space optics (FSO) instead of radio frequency (RF), have gained increasing visibility over traditional wireless sensor networks (WSNs) due to their advantages such as larger capacity, higher security, and lower cost. [...] Read more.
Recently, free space optical sensor networks (FSOSNs), which are based on free space optics (FSO) instead of radio frequency (RF), have gained increasing visibility over traditional wireless sensor networks (WSNs) due to their advantages such as larger capacity, higher security, and lower cost. However, the performance of FSOSNs is restricted to the requirement of a direct line-of-sight (LOS) path between a sender and a receiver pair. Once a node dies of energy depletion, the network would probably suffer from a dramatic decrease of connectivity, resulting in a huge loss of data packets. Thus, this paper proposes a reconfigurable routing protocol (RRP) to overcome this problem by dynamically reconfiguring the network virtual topology. The RRP works in three phases: (1) virtual topology construction, (2) routing establishment, and (3) reconfigurable routing. When data transmission begins, the data packets are first routed through the shortest hop paths. Then a reconfiguration is initiated by the node whose residual energy falls below a threshold. Nodes affected by this dying node are classified into two types, namely maintenance nodes and adjustment nodes, and they are reconfigured according to the types. An energy model is designed to evaluate the performance of RRP through OPNET simulation. Our simulation results indicate that the RRP achieves better performance compared with the simple-link protocol and a direct reconfiguration scheme in terms of connectivity, network lifetime, packet delivery ratio and the number of living nodes. Full article
(This article belongs to the Section Sensor Networks)
Show Figures

Back to TopTop