research-article

You Shall Not Pass! (Once Again): An IoT Application of Post-quantum Stateful Signature Schemes

Authors:

Emanuele Bellini,

Florian Caullery,

Alexandros Hasikos,

Victor MateuAuthors Info & Claims

APKC '18: Proceedings of the 5th ACM on ASIA Public-Key Cryptography Workshop

Pages 19 - 24

https://doi.org/10.1145/3197507.3197512

Published: 23 May 2018 Publication History

Abstract

This paper presents an authentication protocol specifically tailored for IoT devices that inherently limits the number of times that an entity can authenticate itself with a given key pair. The protocol we propose is based on a stateful hash-based digital signature system called eXtended Merkle Signature Scheme (XMSS), which has increased its popularity of late due to its resistance to quantum-computer-aided attacks. We propose a 1-pass authentication protocol that can be customized according to the server capabilities to keep track of the key pair state. In addition, we present results when ported to ARM Cortex-M3 and M0 processors.

References

[1]

Daniel J. Bernstein, Johannes Buchmann, and Erik Dahmen . 2008. Post Quantum Cryptography (bibinfoedition1st ed.). Springer Publishing Company, Incorporated.

Digital Library

[2]

Daniel J. Bernstein, Daira Hopwood, Andreas Hülsing, Tanja Lange, Ruben Niederhagen, Louiza Papachristodoulou, Michael Schneider, Peter Schwabe, and Zooko Wilcox-O'Hearn . 2015. SPHINCS: Practical Stateless Hash-Based Signatures Advances in Cryptology - EUROCRYPT 2015 (LNCS), Vol. Vol. 9056. Springer, 368--397.

[3]

Johannes A. Buchmann, Erik Dahmen, Sarah Ereth, Andreas Hülsing, and Markus Rückert . 2011 b. On the Security of the Winternitz One-Time Signature Scheme Progress in Cryptology - AFRICACRYPT 2011 - 4th International Conference on Cryptology in Africa (LNCS), Vol. Vol. 6737. 363--378.

Digital Library

[4]

Johannes A. Buchmann, Erik Dahmen, and Andreas Hülsing . 2011 a. XMSS - A Practical Forward Secure Signature Scheme Based on Minimal Security Assumptions. In Post-Quantum Cryptography - 4th International Workshop, PQCrypto 2011 (LNCS), Vol. Vol. 7071. 117--129.

Digital Library

[5]

Lily Chen, Stephen Jordan, Yi-Kai Liu, Dustin Moody, Rene Peralta, Ray Perlner, and Daniel Smith-Tone . 2016. Report on Post-Quantum Cryptography. (2016).

[6]

Erik Dahmen, Katsuyuki Okeya, Tsuyoshi Takagi, and Camille Vuillaume . 2008. Digital Signatures Out of Second-Preimage Resistant Hash Functions Post-Quantum Cryptography, 2nd International Workshop, PQCrypto 2008 (LNCS), Vol. Vol. 5299. 109--123.

Digital Library

[7]

M. H. Devoret and R. J. Schoelkopf . 2013. Superconducting Circuits for Quantum Information: An Outlook. Science Vol. 339, 6124 (2013), 1169--1174.

[8]

Gartner . 2014. Gartner says the Internet of Things will transform the data center. (2014). deftempurl%http://www. gartner.com/newsroom/id/2684616 tempurl

[9]

A. Hülsing, D. Butin, S. Gazdag, Rijneveld J., and Mohaisen A. . 2018. XMSS: Extended Hash-Based Signatures. (2018). deftempurl%https://www.ietf.org/id/draft-irtf-cfrg-xmss-hash-based-signatures-12.pdf tempurl

Digital Library

[10]

Andreas Hülsing, Lea Rausch, and Johannes A. Buchmann . 2013. Optimal Parameters for XMSS MT. In Security Engineering and Intelligence Informatics - CD-ARES 2013 Workshops: MoCrySEn and SeCIHD (LNCS), Vol. Vol. 8128. 194--208.

[11]

Andreas Hülsing, Joost Rijneveld, and Peter Schwabe . 2016. ARMed SPHINCS -- Computing a 41KB signature in 16KB of RAM Public-Key Cryptography -- PKC 2016 (LNCS), Vol. Vol. 9614. 446--470.

Digital Library

[12]

Andreas Hülsing, Joost Rijneveld, and Fang Song . 2016. Mitigating Multi-target Attacks in Hash-Based Signatures Public-Key Cryptography -- PKC 2016 (LNCS), Vol. Vol. 9614. 387--416.

Digital Library

[13]

In Lee and Kyoochun Lee . 2015. The Internet of Things (IoT): Applications, investments, and challenges for enterprises. Business Horizons Vol. 58, 4 (2015), 431--440.

[14]

Shancang Li and Li Da Xu . 2017. Securing the Internet of Things. Syngress.

[15]

Kerry A. McKay, Larry Bassham, Meltem Sonmez Turan, and Nicky Mouha . 2017. Report on Lightweight Cryptography. (2017).

[16]

Ralph C. Merkle . 1989. A Certified Digital Signature. In Advances in Cryptology - CRYPTO '89, 9th Annual International Cryptology Conference (LNCS), Vol. Vol. 435. 218--238.

Digital Library

[17]

Peter W. Shor . 1997. Polynomial-Time Algorithms for Prime Factorization and Discrete Logarithms on a Quantum Computer. SIAM J. Comput. Vol. 26, 5 (1997), 1484--1509.

Digital Library

Cited By

Tandel PNasriwala J(2024)Secure authentication framework for IoT applications using a hash-based post-quantum signature schemeService Oriented Computing and Applications10.1007/s11761-024-00414-xOnline publication date: 14-Jun-2024
https://doi.org/10.1007/s11761-024-00414-x
Li CJiang BDong MXin XOta K(2023)Privacy Preserving for Electronic Medical Record Sharing in Healthchain With Group SignatureIEEE Systems Journal10.1109/JSYST.2023.3302268(1-12)Online publication date: 2023
https://doi.org/10.1109/JSYST.2023.3302268
HAN SXU KZHU ZGUO SLIU HLI Z(2022)Hash-Based Signature for Flexibility Authentication of IoT DevicesWuhan University Journal of Natural Sciences10.1051/wujns/202227100127:1(1-10)Online publication date: 16-Mar-2022
https://doi.org/10.1051/wujns/2022271001
Show More Cited By

Index Terms

You Shall Not Pass! (Once Again): An IoT Application of Post-quantum Stateful Signature Schemes

Recommendations

Ring-LWE Ciphertext Compression and Error Correction: Tools for Lightweight Post-Quantum Cryptography
IoTPTS '17: Proceedings of the 3rd ACM International Workshop on IoT Privacy, Trust, and Security

Some lattice-based public key cryptosystems allow one to transform ciphertext from one lattice or ring representation to another efficiently and without knowledge of public and private keys. In this work we explore this lattice transformation property ...
Practical and post-quantum authenticated key exchange from one-way secure key encapsulation mechanism
ASIA CCS '13: Proceedings of the 8th ACM SIGSAC symposium on Information, computer and communications security

This paper discusses how to realize practical post-quantum authenticated key exchange (AKE) with strong security, i.e., CK⁺ security (Krawczyk, CRYPTO 2005). It is known that strongly secure post-quantum AKE protocols exist on a generic construction ...
QCB: Efficient Quantum-Secure Authenticated Encryption
Advances in Cryptology – ASIACRYPT 2021
Abstract
It was long thought that symmetric cryptography was only mildly affected by quantum attacks, and that doubling the key length was sufficient to restore security. However, recent works have shown that Simon’s quantum period finding algorithm breaks ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

APKC '18: Proceedings of the 5th ACM on ASIA Public-Key Cryptography Workshop

May 2018

66 pages

ISBN:9781450357562

DOI:10.1145/3197507

Program Chairs:
Keita Emura
National Institute of Information & Communications Technology, Japan
,
Jae Hong Seo
Hanyang University, Korea
,
Yohei Watanabe
The University of Electro-Communications, Japan

Copyright © 2018 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 23 May 2018

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

ASIA CCS '18

Sponsor:

SIGSAC

ASIA CCS '18: ACM Asia Conference on Computer and Communications Security

June 4, 2018

Incheon, Republic of Korea

Acceptance Rates

APKC '18 Paper Acceptance Rate 7 of 20 submissions, 35%;

Overall Acceptance Rate 36 of 103 submissions, 35%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

4
Total Citations
View Citations
163
Total Downloads

Downloads (Last 12 months)10
Downloads (Last 6 weeks)0

Reflects downloads up to 16 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Tandel PNasriwala J(2024)Secure authentication framework for IoT applications using a hash-based post-quantum signature schemeService Oriented Computing and Applications10.1007/s11761-024-00414-xOnline publication date: 14-Jun-2024
https://doi.org/10.1007/s11761-024-00414-x
Li CJiang BDong MXin XOta K(2023)Privacy Preserving for Electronic Medical Record Sharing in Healthchain With Group SignatureIEEE Systems Journal10.1109/JSYST.2023.3302268(1-12)Online publication date: 2023
https://doi.org/10.1109/JSYST.2023.3302268
HAN SXU KZHU ZGUO SLIU HLI Z(2022)Hash-Based Signature for Flexibility Authentication of IoT DevicesWuhan University Journal of Natural Sciences10.1051/wujns/202227100127:1(1-10)Online publication date: 16-Mar-2022
https://doi.org/10.1051/wujns/2022271001
Bellini EMarcolla CMurru N(2021)An Application of p-Fibonacci Error-Correcting Codes to CryptographyMathematics10.3390/math90707899:7(789)Online publication date: 6-Apr-2021
https://doi.org/10.3390/math9070789

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten