Descriptor: "lightweight cryptography" / Topic: 02 engineering and technology - Searchworks@Jio Institute Digital Library Search Results

Your search keyword '"lightweight cryptography"' showing total 105 results

Start Over Descriptor "lightweight cryptography" Topic 02 engineering and technology

105 results on '"lightweight cryptography"'

1. An Enhanced Energy Efficient Lightweight Cryptography Method for various IoT devices

Author: M Madheswaran, K P Sujith, P Prakasam, and Shohel Sayeed
Subjects: Computer Networks and Communications, Computer science, Information technology, 02 engineering and technology, Memory, Artificial Intelligence, 0202 electrical engineering, electronic engineering, information engineering, Field-programmable gate array, MATLAB, computer.programming_language, Lightweight cryptography, Histogram, Lightweight, business.industry, 020208 electrical & electronic engineering, SIGNAL (programming language), 8-bit, 020206 networking & telecommunications, T58.5-58.64, Correlation, Power (physics), Hardware and Architecture, Power consumption, Embedded system, Cryptography, The Internet, business, computer, Software, Information Systems, Efficient energy use
Abstract: Internet of Things (IoT) is an auspicious technology that will connect more number of devices through an internet. The huge number of communication expected to transmit high data securely is an important problem in recent days. In this paper, an Enhanced Energy Efficient Lightweight Cryptography Method which utilizes 8 bit manipulation principle (E3LCM) has been proposed. The proposed method has been verified for speech signal using MATLAB. The hardware complexity has been validated using Sparten3E XC3S500E FPGA devices and it has been found that the proposed method consumes 202mW power and 0.9 Kbytes RAM and it outperforms other methods.
Published: 2021

2. Six shades lighter: a bit-serial implementation of the AES family

Author: Fatih Balli, Subhadeep Banik, and Sergio Roldán Lombardía
Subjects: Authenticated encryption, Computer Networks and Communications, Computer science, Symmetric cryptography, Cryptography, 0102 computer and information sciences, 02 engineering and technology, Encryption, 01 natural sciences, Reduction (complexity), Application-specific integrated circuit, AES-128/192/256, Bit-serial implementation, 0202 electrical engineering, electronic engineering, information engineering, Regular Paper, Lightweight cryptography, Arithmetic, Hardware_ARITHMETICANDLOGICSTRUCTURES, Implementation, Block cipher, business.industry, 020202 computer hardware & architecture, Symmetric-key algorithm, 010201 computation theory & mathematics, business, Software
Abstract: Recently, cryptographic literature has seen new block cipher designs such as PRESENT, GIFT or SKINNY that aim to be more lightweight than the current standard, i.e., AES. Even though AES family of block ciphers were designed two decades ago, they still remain as the de facto encryption standard, with AES-128 being the most widely deployed variant. In this work, we revisit the combined one-in-all implementation of the AES family, namely both encryption and decryption of each AES-128/192/256 as a single ASIC circuit. A preliminary version appeared in Africacrypt 2019 by Balli and Banik, where the authors design a byte-serial circuit with such functionality. We improve on their work by reducing the size of the compact circuit to 2268 GE through 1-bit-serial implementation, which achieves 38% reduction in area. We also report stand-alone bit-serial versions of the circuit, targeting only a subset of modes and versions, e.g., AES-192 and AES-256. Our results imply that, in terms of area, AES-192 and AES-256 can easily compete with the larger members of recently designed SKINNY family, e.g., SKINNY-128-256, SKINNY-128-384. Thus, our implementations can be used interchangeably inside authenticated encryption candidates such as SKINNY-AEAD/-HASH, ForkAE or Romulus in place of SKINNY.
Published: 2021

3. Random Differential Fault Attacks on the Lightweight Authenticated Encryption Stream Cipher Grain-128AEAD

Author: Wei-Chuen Yau, Luxin Xue, Iftekhar Salam, Thian Hooi Ooi, Josef Pieprzyk, and Raphael C.-W. Phan
Subjects: Authenticated encryption, General Computer Science, Computer science, Hardware_PERFORMANCEANDRELIABILITY, 02 engineering and technology, Encryption, Fault (power engineering), NIST, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, Side channel attack, Stream cipher, random fault, business.industry, General Engineering, Probabilistic logic, Fault injection, Grain-128AEAD, TK1-9971, 020202 computer hardware & architecture, differential fault attack, lightweight cryptography, 020201 artificial intelligence & image processing, Electrical engineering. Electronics. Nuclear engineering, business, Algorithm
Abstract: Grain-128AEAD is a lightweight authenticated encryption stream cipher and one of the finalists in the National Institute of Standards and Technology (NIST) Lightweight Cryptography (LWC) project. This paper provides an independent third-party analysis of Grain-128AEAD against fault attacks. We investigate the application of three differential fault attack models on Grain-128AEAD. All these attacks can recover the initial state of Grain-128AEAD. First, we demonstrate an attack using a bit-flipping fault that requires access to 27.80 faulty outputs to recover the initial state. Then, we demonstrate an attack with a more relaxed assumption of a random fault with a probabilistic approach. Our probabilistic random fault attack requires access to 211.60 faulty outputs and 210.45 fault injections to recover the initial state with a success rate over 99%. Both of the above two attacks are based on precise control on the fault target. Finally, we apply a random fault attack with a deterministic approach (can conclusively determine the random fault value) and using different precision controls. For the precise control, we use existing approaches that have been applied to other ciphers, such as Tiaoxin-346. We also propose a technique for less stringent precision models, such as moderate control and no control, which are more practical than the precise control. Our result indicates that the deterministic random fault attack with a precise control requires an average of 27.64 fault injections and a data complexity of 28.80. The deterministic random fault attack with moderate control requires a weak assumption on the fault injection and hence, is the best attack presented in this paper; and is expected to require about 29.39 fault injections with a data complexity of about 212.98. All the attacks discussed in this paper are verified experimentally.
Published: 2021

4. Lightweight, Single-Clock-Cycle, Multilayer Cipher for Single-Channel IoT Communication: Design and Implementation

Author: Shahzad Muzaffar, Owais Talaat Waheed, Ibrahim M. Elfadel, and Zeyar Aung
Subjects: General Computer Science, Computer science, Cycles per instruction, secure IoT communication, Clock rate, Cryptography, 02 engineering and technology, Communications security, Encryption, multilayer cipher, 0202 electrical engineering, electronic engineering, information engineering, Overhead (computing), General Materials Science, Block cipher, business.industry, General Engineering, Edge-coded signaling (ECS), single-clock-cycle cipher, 020202 computer hardware & architecture, TK1-9971, Cipher, Embedded system, lightweight cryptography, 020201 artificial intelligence & image processing, Electrical engineering. Electronics. Nuclear engineering, business
Abstract: The area of lightweight cryptography for constrained nodes has been quite well researched since the advent of RFID tags. However, the important issue of the integrated design of a secure, ultra-low power, small-footprint IoT transceiver has not received sufficient attention. The objective of this paper is to present such a transceiver and evaluate its data rate and power in the presence of the cryptographic overhead and compare its security with that of prior lightweight cryptographic algorithms. The proposed secure transceiver design is based on two main novel ingredients. The first is the Edge-Coded Signaling (ECS) protocol - a recently introduced technique for single-channel, high-data rate, low-power dynamic signaling that does not require any clock and data recovery. The second ingredient is a novel high-speed symmetric block cipher, HSA5/1, that is based on the well-known $A5/1$ cipher and that generates a full keystream in one clock cycle. Both ingredients are combined to design a lightweight, high-speed, multilayer cipher with a tunable impact on ECS’s power consumption, energy efficiency, and data rate. The multilayer cipher provides additional layers of packet security that make it difficult for an attacker to even receive a legitimate packet, let alone decrypt its data by attacking the HSA5/1 protocol itself. In addition, the multilayer encryption method may be easily configured to modulate the communication security overhead as a function of the number of clock cycles made available to the encryption/decryption stage. The secure ECS transceiver is prototyped and verified on both an embedded and an FPGA platform. It has also been synthesized for an ASIC implementation in $65nm$ CMOS technology that is shown to preserve the low-power operation of ECS, consuming only $27~\mu W$ of power at a clock frequency of $25MHz$ while requiring only one clock cycle for executing 148-bit-key encryption/decryption unit.
Published: 2021

5. A survey on implementation of lightweight block ciphers for resource constraints devices

Author: Nayancy, Soubhik Chakraborty, and Sandip Dutta
Subjects: Lightweight cryptography, Algebra and Number Theory, business.industry, Computer science, Applied Mathematics, Resource constraints, 010103 numerical & computational mathematics, 02 engineering and technology, 01 natural sciences, Identification (information), Symmetric-key algorithm, Embedded system, 0202 electrical engineering, electronic engineering, information engineering, ComputerSystemsOrganization_SPECIAL-PURPOSEANDAPPLICATION-BASEDSYSTEMS, 020201 artificial intelligence & image processing, Smart card, 0101 mathematics, business, Wireless sensor network, Analysis, Block cipher
Abstract: Lightweight cryptography is essential for securing resource-limited devices like smart card, RFID (radio-frequency identification)tags, sensor network and embedded system. In this paper, we present...
Published: 2020

6. Xoodyak, a lightweight cryptographic scheme

Author: Gilles Van Assche, Ronny Van Keer, Michael J. Peeters, Seth Hoffert, and Joan Daemen
Subjects: Scheme (programming language), lcsh:Computer engineering. Computer hardware, Computer science, lcsh:TK7885-7895, Cryptography, 0102 computer and information sciences, 02 engineering and technology, 01 natural sciences, hashing, 0202 electrical engineering, electronic engineering, information engineering, computer.programming_language, business.industry, Applied Mathematics, sponge construction, duplex construction, Computer Science Applications, Computational Mathematics, 010201 computation theory & mathematics, Embedded system, lightweight cryptography, permutation-based cryptography, 020201 artificial intelligence & image processing, authenticated encryption, Digital Security, business, computer, Software
Abstract: In this paper, we present Xoodyak, a cryptographic primitive that can be used for hashing, encryption, MAC computation and authenticated encryption. Essentially, it is a duplex object extended with an interface that allows absorbing strings of arbitrary length, their encryption and squeezing output of arbitrary length. It inherently hashes the history of all operations in its state, allowing to derive its resistance against generic attacks from that of the full-state keyed duplex. Internally, it uses the Xoodoo[12] permutation that, with its width of 48 bytes, allows for very compact implementations. The choice of 12 rounds justifies a security claim in the hermetic philosophy: It implies that there are no shortcut attacks with higher success probability than generic attacks. The claimed security strength is 128 bits. We illustrate the versatility of Xoodyak by describing a number of use cases, including the ones requested by NIST in the lightweight competition. For those use cases, we translate the relatively detailed security claim that we make for Xoodyak into simple ones., IACR Transactions on Symmetric Cryptology, Volume 2020, Special Issue 1
Published: 2020

7. Lightweighted Secure Searching Over Public-Key Ciphertexts for Edge-Cloud-Assisted Industrial IoT Devices

Author: Wei Wang, Dongli Liu, Laurence T. Yang, Peng Xu, Zheng Yan, Huazhong University of Science and Technology, Network Security and Trust, Department of Communications and Networking, Aalto-yliopisto, and Aalto University
Subjects: Informatics, Delegate, Computer science, Encryption, Cloud computing, Cryptography, 02 engineering and technology, Lightweight Cryptography, Public-key cryptography, PEKS, Ciphertext, 0202 electrical engineering, electronic engineering, information engineering, Edge Computing, Electrical and Electronic Engineering, Edge computing, business.industry, 020208 electrical & electronic engineering, Public key, Computer Science Applications, Edge-Cloud, Control and Systems Engineering, Performance evaluation, Industrial Devices, Enhanced Data Rates for GSM Evolution, business, Semantic security, Information Systems, Computer network
Abstract: For the industrial Internet of Things (IIoT), public-key encryption with keyword search (PEKS) is a type of applicable and promising encryption technique to maintain the data stored in clouds secure and searchable. To further improve the efficiency of searching, it is popular to introduce edge computing near the IIoT as the substitute for a cloud. However, the straightforward collaboration of the two techniques performs negatively in latency-sensitive applications since the sluggish encryption of PEKS by IIoT devices negates the instant reaction of edges. To meet this challenge, in this article, we exploit the capability of the edge-cloud architecture and propose a lightweight-designed scheme called edge-aided searchable public-key encryption (ESPE). It allows IIoT devices to delegate their costly cryptographic operations to the nearby edge for fast computing and guarantees that all outsourced ciphertexts are semantically secure. Consequently, ESPE accelerates the corresponding ciphertext procedures on edges and saves over 70% encryption cost of an IIoT device.
Published: 2020

8. Comparison of scalar point multiplication algorithms in a low resource device

Author: Nadjia Benblidia, Mohamed Benmohammed, and Mohamed Ramdani
Subjects: Computational techniques, Multiplication algorithm, General Computer Science, Scalar point multiplication, Computer science, Embedded systems, Scalar (mathematics), Cryptography, 02 engineering and technology, lcsh:QA75.5-76.95, Field arithmetic, Computational science, Public-key cryptography, 0202 electrical engineering, electronic engineering, information engineering, Lightweight cryptography, Hardware_ARITHMETICANDLOGICSTRUCTURES, Elliptic curve cryptography, business.industry, 020206 networking & telecommunications, Computational complexity, Elliptic curve, Finite field, 020201 artificial intelligence & image processing, lcsh:Electronic computers. Computer science, business
Abstract: Since it was invented, Elliptic Curve Cryptography (ECC) is considered an ideal choice for implementing public key cryptography in resource constrained devices, thanks to its small keys. Scalar point multiplication is the central and the complex operation in the cryptographic computations of ECC that requires a lot of optimizations on execution time and energy consumption especially in low computing power devices such as embedded systems. Thus, many scalar point multiplication algorithms are proposed, each using their own computational techniques and mathematical formulas. In this paper, we have combined the computational techniques with some optimized mathematical formulas and we have implemented them on some Elliptic Curves scalar point multiplication algorithms over finite field. The aim of this work is to identify the most efficient algorithm that combine the best computational technique and the mathematical formulas, and consequently offer less-memory requirements and faster field arithmetic operations. The results show that Montgomery ladder algorithm in co-Z addition with update formula gives better results compared to the other algorithms implemented in this paper.
Published: 2020

9. Practical Key-Recovery Attacks On Round-Reduced Ketje Jr, Xoodoo-AE And Xoodyak

Author: Haibo Zhou, Willi Meier, Keting Jia, Xiaoyang Dong, and Zheng Li
Subjects: Lightweight cryptography, General Computer Science, Computer science, Key recovery, 0102 computer and information sciences, 02 engineering and technology, 01 natural sciences, law.invention, 010201 computation theory & mathematics, law, 0202 electrical engineering, electronic engineering, information engineering, NIST, 020201 artificial intelligence & image processing, Cube attack, Arithmetic, Cryptanalysis, Time complexity
Abstract: A new conditional cube attack was proposed by Li et al. at ToSC 2019 for cryptanalysis of Keccak keyed modes. In this paper, we find a new property of Li et al.’s method. The conditional cube attack is modified and applied to cryptanalysis of 5-round Ketje Jr, 6-round Xoodoo-AE and Xoodyak, where Ketje Jr is among the third round CAESAR competition candidates and Xoodyak is a Round 2 submission of the ongoing NIST lightweight cryptography project. For the updated conditional cube attack, all our results are shown to be of practical time complexity with negligible memory cost, and test codes are provided. Notably, our results on Xoodyak represent the first third-party cryptanalysis for Xoodyak.
Published: 2020

10. A Review on Evolution of Symmetric Key Block Ciphers and Their Applications

Author: Appala Naidu Tentu
Subjects: Lightweight cryptography, Computer science, business.industry, 0102 computer and information sciences, 02 engineering and technology, General Medicine, 01 natural sciences, law.invention, Symmetric-key algorithm, 010201 computation theory & mathematics, law, Security Role, Embedded system, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, State (computer science), Cryptanalysis, Internet of Things, business, Block cipher
Abstract: This paper reviews the state of the art of symmetric key block cipher designs and their essential security role in several applications like IoT, low-power devices like motes, etc. Many engineering...
Published: 2020

11. Scalable and Secure Big Data IoT System Based on Multifactor Authentication and Lightweight Cryptography

Author: Omar Alfandi, Muder Almiani, Salman Yussof, Ahed Abugabah, Saleh Atiewi, Amer Al-Rahayfeh, and Yaser Jararweh
Subjects: General Computer Science, Computer science, Internet of Things, Data_MISCELLANEOUS, Big data, Cloud computing, 02 engineering and technology, Login, Encryption, multilevel authentication, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, Authentication, business.industry, cloud computing, 020208 electrical & electronic engineering, Advanced Encryption Standard, General Engineering, 020206 networking & telecommunications, Multi-factor authentication, lightweight cryptography, Scalability, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, lcsh:TK1-9971, Computer network
Abstract: Organizations share an evolving interest in adopting a cloud computing approach for Internet of Things (IoT) applications. Integrating IoT devices and cloud computing technology is considered as an effective approach to storing and managing the enormous amount of data generated by various devices. However, big data security of these organizations presents a challenge in the IoT-cloud architecture. To overcome security issues, we propose a cloud-enabled IoT environment supported by multifactor authentication and lightweight cryptography encryption schemes to protect big data system. The proposed hybrid cloud environment is aimed at protecting organizations' data in a highly secure manner. The hybrid cloud environment is a combination of private and public cloud. Our IoT devices are divided into sensitive and nonsensitive devices. Sensitive devices generate sensitive data, such as healthcare data; whereas nonsensitive devices generate nonsensitive data, such as home appliance data. IoT devices send their data to the cloud via a gateway device. Herein, sensitive data are split into two parts: one part of the data is encrypted using RC6, and the other part is encrypted using the Fiestel encryption scheme. Nonsensitive data are encrypted using the Advanced Encryption Standard (AES) encryption scheme. Sensitive and nonsensitive data are respectively stored in private and public cloud to ensure high security. The use of multifactor authentication to access the data stored in the cloud is also proposed. During login, data users send their registered credentials to the Trusted Authority (TA). The TA provides three levels of authentication to access the stored data: first-level authentication - read file, second-level authentication - download file, and third-level authentication - download file from the hybrid cloud. We implement the proposed cloud-IoT architecture in the NS3 network simulator. We evaluated the performance of the proposed architecture using metrics such as computational time, security strength, encryption time, and decryption time.
Published: 2020

12. Extended RECTANGLE Algorithm Using 3D Bit Rotation to Propose a New Lightweight Block Cipher for IoT

Author: Abdul Alif Zakaria, Maslina Daud, A. H. Azni, Farida Ridzuan, and Nur Hafiza Zakaria
Subjects: General Computer Science, Computer science, Internet of Things, RECTANGLE, Cryptography, 02 engineering and technology, Encryption, Secure communication, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, encryption, Block cipher, business.industry, General Engineering, block cipher, 020207 software engineering, Plaintext, Cipher, lightweight cryptography, Key (cryptography), 020201 artificial intelligence & image processing, Confusion and diffusion, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, Algorithm, lcsh:TK1-9971, 3D
Abstract: The Internet of Things (IoT) is a broad range of applications enabled by the connection of devices such as sensors, actuators, and monitors accessible through the Internet. Massive IoT device connectivity and vast data transmission have made the information susceptible to various types of attacks. Therefore, encryption is required for secure communication in an IoT ecosystem. An IoT system is constrained by its complexities that require small computing power. Thus, lightweight block cipher is chosen as the solution to IoT security issues. RECTANGLE block cipher has very efficient encryption speed performance among the existing lightweight algorithms. Although RECTANGLE achieves such high efficiency, lack of focus on its security aspect needs to be addressed. The algorithm is short of confusion and diffusion characteristics that should be offered by a block cipher as one of the cryptographic security properties. Therefore, we extended RECTANGLE using a 3D cipher to improve its security features by enhancing the algorithm confusion and diffusion properties. Security analysis and performance tests were performed to verify the strength of the proposed 3D RECTANGLE. The results show that 3D RECTANGLE performs better than its original version in terms of the correlation between data input and output with an increase of 1.58% for non-linearity results, records approximately 50% bit error rate for sensitiveness against both modifications of plaintext and key, increase of passing rate in the randomness test by 22.22%, and achieves competitive performance results against existing algorithms with 0.9516 ms execution speed and 67.26 bit/ms throughput.
Published: 2020

13. LAKE-IoD: Lightweight Authenticated Key Exchange Protocol for the Internet of Drone Environment

Author: Muhammad Tanveer, Amjad Hussain Zahid, Musheer Ahmad, Abdullah Baz, and Hosam Alhakami
Subjects: Authenticated encryption, Internet of Drone, General Computer Science, Computer science, Hash function, 02 engineering and technology, Encryption, Secure communication, authenticated key exchange, 0202 electrical engineering, electronic engineering, information engineering, Session key, General Materials Science, Authentication, business.industry, General Engineering, 020206 networking & telecommunications, security and privacy, Drone, Authenticated Key Exchange, lightweight cryptography, 020201 artificial intelligence & image processing, The Internet, lcsh:Electrical engineering. Electronics. Nuclear engineering, unmanned aerial vehicles, business, lcsh:TK1-9971, Computer network
Abstract: A drone is an unmanned aerial vehicle, which is deployed in a particular Fly Zone (FZ), and used to collect crucial information from its surrounding environment to be transmitted to the server for further processing. Generally, a Mobile User (MU) is required to access the real-time information collected by the drone stationed in a specific FZ securely. Therefore, to ensure secure and reliable communications an Authenticated Key Exchange (AKE) protocol is imperative to the Internet of Drone (IoD) environment. An AKE scheme ensures only authentic MU to access IoD network resources. Upon successful authentication, MU and drone can set up a secret session key for secure communication in the future. This paper presents a novel Lightweight AKE Protocol for IoD Environment (LAKE-IoD), which first ensures the authenticity of MU and also renders session key establishment mechanism between MU and drone with the help of a server. LAKE-IoD is an AKE protocol, which is based on an authenticated encryption scheme AEGIS, hash function, and bit-wise XOR operation. Meticulous formal security verification by employing a software tool known as Scyther and informal security analysis demonstrates that LAKE-IoD is protected against different well-known active and passive security attacks. Additionally, Burrows-Abadi-Needham logic is applied to verify the logical completeness of LAKE-IoD. Furthermore, a comparison of LAKE-IoD with the related schemes shows that LAKE-IoD incurs less communication, computational and storage overhead.
Published: 2020

14. Improved Differential Fault Attack on LEA by Algebraic Representation of Modular Addition

Author: Seonghyuck Lim, Jonghyeok Lee, and Dong-Guk Han
Subjects: General Computer Science, Side-channel analysis, Computer science, 050801 communication & media studies, Cryptography, 02 engineering and technology, Encryption, 0508 media and communications, fault injection attack, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, LEA, business.industry, 05 social sciences, General Engineering, Fault injection, Modular design, differential fault attack, Cipher, Computer engineering, lightweight cryptography, Key (cryptography), 020201 artificial intelligence & image processing, lcsh:Electrical engineering. Electronics. Nuclear engineering, ARX-based cryptography, business, lcsh:TK1-9971, Word (computer architecture)
Abstract: Recently, as the number of IoT (Internet of Things) devices has increased, the use of lightweight cryptographic algorithms that are suitable for environments with scarce resources has also increased. Consequently, the safety of such cryptographic algorithms is becoming increasingly important. Among them, side-channel analysis methods are very realistic threats. In this paper, we propose a novel differential fault attack method on the Lightweight Encryption Algorithm (LEA) cipher which became the ISO/IEC international standard lightweight cryptographic algorithm in 2019. Previously proposed differential fault attack methods on the LEA used the Single Bit Flip model, making it difficult to apply to real devices. The proposed attack method uses a more realistic attacker assumption, the Random Word Error model. We demonstrate that the proposed attack method can be implemented on real devices using an electromagnetic fault injection setup. Our attack method has the weakest attacker assumption among attack methods proposed to date. In addition, the number of required fault-injected ciphertexts and the number of key candidates for which exhaustive search is performed are the least among all existing methods. Therefore, when implementing the LEA cipher on IoT deivces, designers must apply appropriate countermeasures against fault injection attacks.
Published: 2020

15. A Hybrid MCDM Approach of Selecting Lightweight Cryptographic Cipher Based on ISO and NIST Lightweight Cryptography Security Requirements for Internet of Health Things

Author: Hu Ke, Shah Nazir, Zhao Huanli, Li Ning, and Yasir Ali
Subjects: General Computer Science, Computer science, NOEKEON, Cryptography, 02 engineering and technology, Computer security, computer.software_genre, Encryption, 0202 electrical engineering, electronic engineering, information engineering, ISO, General Materials Science, TOPSIS, Authentication, business.industry, Advanced Encryption Standard, General Engineering, 020206 networking & telecommunications, CRITIC, Multiple-criteria decision analysis, IoHT, Cipher, lightweight cryptography, Camellia, Tiny Encryption Algorithm, authentication, 020201 artificial intelligence & image processing, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, lcsh:TK1-9971, computer
Abstract: The most serious challenges currently faced by healthcare environment is the decision making related to the installation of the most suitable and appropriate lightweight authentication cipher that could provide solutions towards the authentication issues prevailing in IoHT devices. This decision making becomes more troublesome and tricky due to the number of factors that are taken into account such as availability of many existing ciphers, complex and multiple numbers of requirements involved and frequent changing of these requirements from one platform to another. This decision making is also hampered by the nature of IoT devices operating in healthcare environment as they come up with limited functionality, processing, bandwidth and memory. In this regard, we present an evaluation framework focuses upon the selection of best light weight cryptographic ciphers by considering the most important parameters or requirements of criteria. The proposed framework considers the requirements like performance, physical and security as suggested by widely accepted standards such as National Institute of Standards and Technology (NIST) and International Standard Organization standard such as ISO/IEC 29192 for building evaluation criteria. This framework evaluates and selects the best lightweight cryptographic among the 10 ciphers i.e. PRESENT-80, Scalable Encryption Algorithm (SEA), HIGHT, Lightweight Encryption Algorithm (LEA) Advanced Encryption Standard (AES-128), mCrypton, NOEKEON, Klein, Camellia and Tiny Encryption Algorithm (TEA) for the purpose of evaluation in IoHT environment. This framework uses two decision making methods such as Criteria Importance Through Inter criteria (CRITIC) and Technique for Order of Preference by Similarity to Ideal Solution (TOPSIS). CRITIC assigns weights to alternatives and TOPSIS is used for evaluating alternatives (ciphers) against the defined criteria of evaluation. The proposed work is novel due to number of reasons such as the newly defined criteria adopted in this framework is the first attempt to use the security requirements of International Standard Organization (ISO) and National Institute of Standards and Technology (NIST). Secondly, this is first time that CRITIC and TOPSIS methods have been applied for assessment and decision making in healthcare environment. Similarly, the selected lightweight authentication cryptographic ciphers are used for the first time for assessment in IoHT environment. This approach addresses both hardware and software characteristics for selecting the best security option for lightweight cryptographic security.
Published: 2020

16. Generic Parity-Based Concurrent Error Detection for Lightweight ARX Ciphers

Author: Stefan Rass, Sergei Bauer, and Peter Schartner
Subjects: Correctness, General Computer Science, Computer science, ARX cipher primitive, Cryptography, 02 engineering and technology, Fault detection and isolation, Computer Science::Hardware Architecture, Gate count, transient fault, Concurrent error detection, Ciphertext, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, Circuit complexity, Hamming weight, business.industry, 020208 electrical & electronic engineering, General Engineering, Computer engineering, lightweight cryptography, directed acyclic graph, 020201 artificial intelligence & image processing, lcsh:Electrical engineering. Electronics. Nuclear engineering, Error detection and correction, Parity (mathematics), business, lcsh:TK1-9971, group based parity prediction
Abstract: Cryptographic functions for constrained processing environments can be devised using lightweight cryptography. For use in safety relevant automotive applications where transient faults can occur at runtime the calculation of a cipher text requires verification. We propose an algorithm to generate a group parity based concurrent error detection for generic ciphers based on addition, rotation and XOR (ARX). The generated function is capable of detecting odd hamming weight faults according to the single event error model used in automotive applications. The the generated fault detection scheme is smaller in circuit size than presently existing concurrent error detection schemes and can be executed parallel to the cryptographic function. We provide a proof for the correctness of the generated prediction function and estimate the circuit complexity in terms of size and depth. We evaluate our solution in terms of gate count and throughput on IC synthesis level.
Published: 2020

17. Secure and Fast Implementation of ARX-Based Block Ciphers Using ASIMD Instructions in ARMv8 Platforms

Author: JinGyo Song and Seog Chung Seo
Subjects: General Computer Science, Shuffling, business.industry, Computer science, General Engineering, 02 engineering and technology, 021001 nanoscience & nanotechnology, Encryption, ASIMD, HIGHT, Embedded system, revised CHAM, lightweight cryptography, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, General Materials Science, lcsh:Electrical engineering. Electronics. Nuclear engineering, 0210 nano-technology, business, fault attack resistance, ARMv8, lcsh:TK1-9971, Block cipher
Abstract: In Internet of Things services, various types of embedded devices are employed. Among them, ARM-based devices have been widely used as clients. Since these devices communicate with each other in wirelessly, transmitted data needs to be protected with secure block ciphers. Recently, several Add-Rotate-XOR (ARX)-based block ciphers, such as HIGHT and revised CHAM, have been developed for efficient encryption on embedded devices. In this paper, we present secure and fast implementations of ARX-based block ciphers HIGHT and revised CHAM in ARMv8 platforms. For performance efficiency, we basically apply task and data parallel processing mechanism by fully utilizing NEON architecture embedded in ARMv8 platforms. Typically, it is required to duplicate round key in NEON register to utilize the NEON architecture to process multiple data blocks simultaneously. In our implementations, we propose an optimal approach minimizing the cost of round key duplication and efficient key scheduling for task parallelism. For secure implementation, we develop efficient software countermeasures against realistic fault attack models. Thus, we present efficient software countermeasure based on intra-instruction redundancy. Especially, we propose enhanced random shuffling method which is the core operation for the proposed countermeasure. With the proposed random shuffling method, we can significantly reduce the overhead for preventing fault attacks. We present two versions of the software: a version providing highly fast ( $HF$ ) performance without fault attack countermeasures and a version providing highly secure ( $HS$ ) against fault attacks. Compared with referenced software, $HF$ with HIGHT, revised CHAM-64/128, CHAM-128/128, and CHAM-128/256 provides about 8 times, 38 times, 13 times and 13 times of enhanced performance, respectively. Compared with previous best results having fault attack countermeasure, $HS$ with HIGHT, revised CHAM-64/128, CHAM-128/128, and CHAM-128/256 provides about 50%, 30%, 80%, and 70% of enhanced performance, respectively. Both our $HS$ and $HF$ achieve better performance and higher security compared with related works.
Published: 2020

18. Hybrid Lightweight Proxy Re-Encryption Scheme for Secure Fog-to-Things Environment

Author: Osama Ahmed Khashan
Subjects: Scheme (programming language), General Computer Science, Computer science, Cryptography, 02 engineering and technology, Encryption, Public-key cryptography, 0202 electrical engineering, electronic engineering, information engineering, Lightweight cryptography, ECC, General Materials Science, Latency (engineering), Proxy (statistics), Processing delay, computer.programming_language, business.industry, Proxy re-encryption, General Engineering, 020206 networking & telecommunications, Fog computing, 020201 artificial intelligence & image processing, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, computer, Internet-of-things, lcsh:TK1-9971, Computer network
Abstract: Fog computing is a promising paradigm that can mitigate the heavy burden on cloud-central processing of the vast amount of IoT data. Although fog computing has the advantages of low latency, storage, and computing resources that serve IoT applications and things, it hardly suffers from security and privacy challenges. Proxy re-encryption (PRE) is an effective cryptographic solution to ensure the security of fog-to-things communication. However, in PRE schemes, the problem of a processing delay caused by offloading significant computational load to the proxy for re-encryption, and the heavy computation operations of data owner encryption and user decryption due to asymmetric cryptographic use, are still unresolved in the literature. In this paper, we propose a hybrid proxy re-encryption scheme that combines lightweight symmetric and asymmetric encryption algorithms to establish secure communications in fog-to-things computing. In the proposed scheme, the computational cost incurred by fog nodes to carry out the re-encryption process is highly efficient. Meanwhile, the scheme can reduce the encryption and decryption overheads for end-users with resource-constrained devices. Security and performance analyses are conducted, and the results indicate that our scheme is secure, highly efficient, and lightweight.
Published: 2020

19. FPGA-Based Lightweight Hardware Architecture of the PHOTON Hash Function for IoT Edge Devices

Author: Mohammed Omar Awadh Al-Shatari, Gunawan Witjaksono, Fawnizu Azmadi Hussin, Xuan-Tu Tran, and Azrina Abd Aziz
Subjects: General Computer Science, Edge device, Computer science, Hash function, Cryptography, 02 engineering and technology, 050601 international relations, 0202 electrical engineering, electronic engineering, information engineering, Cryptographic hash function, General Materials Science, Field-programmable gate array, Throughput (business), FPGA, Hardware architecture, low power, PHOTON Hash function, business.industry, 05 social sciences, General Engineering, sponge construction, 0506 political science, Embedded system, lightweight cryptography, hardware security, 020201 artificial intelligence & image processing, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, lcsh:TK1-9971
Abstract: The design of cryptographic engines for the Internet of Things (IoT) edge devices and other ultralightweight devices is a crucial challenge. The emergence of such resource-constrained devices raises significant challenges to current cryptographic algorithms. PHOTON is an ultra-lightweight cryptographic hash function targeting low-resource devices. The currently implemented hardware architectures of PHOTON hash function utilize a large amount of resources and have low operating frequencies with a low rate of throughputs. Maximum operating frequency and throughput of PHOTON architecture can be improved but at the cost of larger area utilization. Therefore, to improve the area-performance trade-offs of PHOTON hash function, an iterative architecture is implemented in this work. The concern is with the most lightweight version of PHOTON hash function with the hash size of 80 bits. It is implemented and verified on several Xilinx and Altera Field Programmable Gate Array (FPGA) devices using their synthesis and simulation tools. Low-cost and high-processing FPGA devices were both considered. The design is optimized for performance, whereas the area utilization is also taken into consideration. The overall performance and logic utilization are benchmarked with the existing implementations. The results show an improvement rate of 10.26% to 51.04% in the speed performance and a reduction rate of 7.55% to 60.64% in area utilization compared to existing implementations of PHOTON hash functions.
Published: 2020

20. QCB: Efficient quantum-secure authenticated encryption

Author: Bhaumik, Ritam, Bonnetain, Xavier, Chailloux, André, Leurent, Gaëtan, Naya-Plasencia, María, Schrottenloher, André, Seurin, Yannick, Indian Statistical Institute [Kolkata], Cryptology, arithmetic : algebraic methods for better algorithms (CARAMBA), Inria Nancy - Grand Est, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria)-Department of Algorithms, Computation, Image and Geometry (LORIA - ALGO), Laboratoire Lorrain de Recherche en Informatique et ses Applications (LORIA), Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Laboratoire Lorrain de Recherche en Informatique et ses Applications (LORIA), Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS), Cryptologie symétrique, cryptologie fondée sur les codes et information quantique (COSMIQ), Inria de Paris, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria), Centrum voor Wiskunde en Informatica (CWI), Centrum Wiskunde & Informatica (CWI)-Netherlands Organisation for Scientific Research, Laboratoire de cryptographie de l'ANSSI (LCR), Agence nationale de la sécurité des systèmes d'information (ANSSI), This project has received funding from the European Research Council (ERC) under the Euro-pean Union’s Horizon 2020 research and innovation programme (grant agreement no. 714294 - acronym QUASYModo). A. S. is supported by ERC-ADG-ALGSTRONGCRYPTO (project 740972)., Mehdi Tibouchi, Huaxiong Wang, European Project: 714294,ERC-2016-STG,QUASYModo(2017), and European Project: 740972,ERC,ERC-2016-ADG,ALGSTRONGCRYPTO(2017)
Subjects: QCB, Post-quantum cryptography, Tweakable block ciphers, Provable security, Authenticated encryption, 020206 networking & telecommunications, 0102 computer and information sciences, 02 engineering and technology, 01 natural sciences, Postquantum cryptography, [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR], 010201 computation theory & mathematics, Computer Science::Multimedia, 0202 electrical engineering, electronic engineering, information engineering, Lightweight cryptography, Computer Science::Databases, Computer Science::Cryptography and Security
Abstract: International audience; It was long thought that symmetric cryptography was only mildly affected by quantum attacks, and that doubling the key length was sufficient to restore security. However, recent works have shown that Simon's quantum period finding algorithm breaks a large number of MAC and authenticated encryption algorithms when the adversary can query the MAC/encryption oracle with a quantum superposition of messages. In particular, the OCB authenticated encryption mode is broken in this setting, and no quantum-secure mode is known with the same efficiency (rate-one and parallelizable). In this paper we generalize the previous attacks, show that a large class of OCB-like schemes is unsafe against superposition queries, and discuss the quantum security notions for authenticated encryption modes. We propose a new rate-one parallelizable mode named QCB inspired by TAE and OCB and prove its security against quantum superposition queries.
Published: 2021

21. Towards an ultra lightweight block ciphers for Internet of Things

Author: Rhouma Rhouma, Zahir Tari, Tasnime Omrani, Abed Ellatif Samhat, Layth Sliman, EFREI Paris, Informatique, BioInformatique, Systèmes Complexes (IBISC), Université d'Évry-Val-d'Essonne (UEVE)-Université Paris-Saclay, National Engineering School of Tunis = Ecole Nationale d'Ingénieurs de Tunis [University of Tunis El Manar] (ENIT), University of Tunis El Manar, Royal Melbourne Institute of Technology University (RMIT University), Faculty of Engineering-CRSI, Lebanese American University (LAU), and Efrei (Efrei)
Subjects: IoT, Computer Networks and Communications, Computer science, Ultra lightweight, Cryptography, WTS, 02 engineering and technology, Field (computer science), Involutive, [INFO.INFO-NI]Computer Science [cs]/Networking and Internet Architecture [cs.NI], 0202 electrical engineering, electronic engineering, information engineering, Cryptosystem, Lightweight cryptography, Differential (infinitesimal), Safety, Risk, Reliability and Quality, Design methods, Block cipher, Bloc cipher, business.industry, Bitslice, 020206 networking & telecommunications, Embedded system, 020201 artificial intelligence & image processing, business, Internet of Things, Software
Abstract: International audience; Conventional cryptographic methods are not appropriate for IoT environments due to the specific IoT devices constraints, such as memory usage, time and computational costs. This leads to the emergence of the lightweight cryptography field. This paper investigates the different lightweight cryptographic design methods and proposes an IoT-based cryptographic method, called Ultra-Lightweight method (ULM), to enhance the performance, memory usage and security of IoT devises. The proposed method is based on three methods (i.e, bitslice, WTS and involutive), and thus accumulating their various advantages such as, memory use, efficiency and security. To validate our proposal, a cryptosystem is designed using ULM method. The designed cryptosystem is benchmarked based on the following metrics: performance (by measuring its execution time and the number of clock cycles needed to run it), the quantity of used memory (by measuring ROM and RAM consumption), and security level (by measuring its diffusion and confusion levels along with its resistance to linear and differential attacks). The results show that the cryptosystem designed using the proposed method outperforms existing methods in terms of memory use, security and performance.
Published: 2021

22. Practical forgeries for ORANGE

Author: Bart Mennink, Christoph Dobraunig, and Florian Mendel
Subjects: Authenticated encryption, Computer science, Data_MISCELLANEOUS, Data_CODINGANDINFORMATIONTHEORY, 0102 computer and information sciences, 02 engineering and technology, Computer security, computer.software_genre, Encryption, 01 natural sciences, Theoretical Computer Science, 0202 electrical engineering, electronic engineering, information engineering, Hardware_ARITHMETICANDLOGICSTRUCTURES, Lightweight cryptography, business.industry, Orange (software), Plaintext, Computer Science Applications, 010201 computation theory & mathematics, Signal Processing, NIST, 020201 artificial intelligence & image processing, Digital Security, business, computer, Information Systems
Abstract: We analyze the authenticated encryption algorithm of ORANGE, a submission to the NIST lightweight cryptography standardization process. We show that it is practically possible to craft forgeries out of two observed transmitted messages that encrypt the same plaintext. The authors of ORANGE have confirmed the attack, and they discuss a fix for this attack in their second-round submission of ORANGE to the NIST lightweight cryptography competition.
Published: 2020

23. Performance analysis of CLEFIA and PRESENT lightweight block ciphers

Author: Buddha Singh and Monika Jangra
Subjects: Lightweight cryptography, Algebra and Number Theory, Computer science, Network security, business.industry, Applied Mathematics, 010103 numerical & computational mathematics, 02 engineering and technology, Computer security, computer.software_genre, 01 natural sciences, CLEFIA, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, 0101 mathematics, Day to day, business, computer, Analysis, Block cipher
Abstract: The demand and fulfillment of various smart-needs is endangering day to day life posing security challenges. Deploying new security methods has become critical for resource-limited smart de...
Published: 2019

24. Energy Efficient Lightweight Cryptography Algorithms for IoT Devices

Author: Deepak Kumawat, Tarun Kumar Goyal, and Vineet Sahula
Subjects: Lightweight cryptography, business.industry, Computer science, 020208 electrical & electronic engineering, 020206 networking & telecommunications, Cryptography, 02 engineering and technology, Computer Science Applications, Theoretical Computer Science, 0202 electrical engineering, electronic engineering, information engineering, Electrical and Electronic Engineering, Internet of Things, business, Algorithm, Efficient energy use, Key size
Abstract: Over few decades, people have been working on providing security solutions, whereas attackers too have been working simultaneously. We present an evaluation of security algorithms, comparing perfor...
Published: 2019

25. Lightweight Privacy-Preserving Equality Query in Edge Computing

Author: Jian Xu, Fucai Zhou, Feng Da, Bao Li, and Qiyu Wu
Subjects: General Computer Science, Edge device, Computer science, Distributed computing, Cloud computing, privacy-preserving, 02 engineering and technology, Encryption, 01 natural sciences, Outsourcing, Server, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, equality query, 0101 mathematics, Edge computing, business.industry, 010102 general mathematics, General Engineering, 020206 networking & telecommunications, Computer security model, lightweight cryptography, Enhanced Data Rates for GSM Evolution, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, lcsh:TK1-9971
Abstract: As edge computing attains tremendous popularity, IoT devices always outsource their data to nearby edge servers for storing and pre-processing, which improves the efficiency of data processing and reduces the required network resources. For privacy-preserving, sensitive data is mostly encrypted before outsourcing. Nevertheless, large volumes of data in edge computing usually comes from multiple data sources, which means that they are encrypted with different secret keys, making it difficult for edge server to query and process. Existing solutions are mostly proposed for this problem in cloud computing, but they do not take into account that the limitations of computing and storage capabilities of edge devices will prevent them from performing computationally expensive operations. In this paper, we propose a lightweight privacy-preserving equality query scheme (LPEQ) in edge computing for the first time, which allows authorized users to perform equality query efficiently and privately on the encrypted data outsourced by multiple IoT devices. We also introduce a formal security model and prove that the LPEQ meets secure requirements against curious entities under this model. Meanwhile, our theoretical analyses and experimental evaluations demonstrate that the LPEQ performs better efficiency in terms of computation and communication while retaining privacy-preserving properties. Therefore, it is practical for applications in edge computing.
Published: 2019

26. A Low-Cost Self-Test Architecture Integrated With PRESENT Cipher Core

Author: Khalid Javeed, Zeeshan Haider, Mei Song, and Xiaojun Wang
Subjects: Internet of things, General Computer Science, Computer science, Cryptography, 02 engineering and technology, design for testability, resource constrained, 0202 electrical engineering, electronic engineering, information engineering, Overhead (computing), Lightweight cryptography, General Materials Science, compaction, Field-programmable gate array, Throughput (business), business.industry, 020208 electrical & electronic engineering, General Engineering, self-test, 020202 computer hardware & architecture, Built-in self-test, Cipher, Embedded system, Fault coverage, Key (cryptography), lcsh:Electrical engineering. Electronics. Nuclear engineering, business, lcsh:TK1-9971
Abstract: Cryptographic cores integrated with self-test ability fulfill both data security and reliability requirements of the Internet of Things (IoT) network. However, from the IoT perspective where most devices are resource constrained, a fundamental problem associated with most of the self-test architectures is high hardware overhead due to the additional circuit for self-test operation. This paper presents the design of a low-cost self-test architecture and its integration with the PRESENT cipher core. The hardware overhead of the proposed low-cost self-test architecture is reduced by adopting two key strategies: 1) using hardware-efficient X-Compactor technique for test response compaction and 2) reusing the PRESENT cipher core as a Test Pattern Generator (TPG). The proposed self-test architecture is implemented on different Xilinx Field Programmable Gate Array (FPGA) platforms and devices. Analysis of the implementation results shows that the proposed self-test method occupies 23% less hardware area overhead and provides 14% higher throughput per slice performance with the fault coverage of over 99% compared with the existing self-test designs. The resulting analysis indicates that the proposed self-test design is one of the most viable testing solutions for resource-constrained IoT devices.
Published: 2019

27. Analysis and Correction of the Attack against the LPN-Problem Based Authentication Protocols

Author: Siniša Tomović, Miodrag J. Mihaljevic, and Milica Knežević
Subjects: Correctness, Theoretical computer science, Computer science, General Mathematics, 02 engineering and technology, Man-in-the-middle attack, Bayesian inference, 01 natural sciences, law.invention, cryptanalysis, Poisson-Binomial distribution, law, man-in-the-middle attack, 0202 electrical engineering, electronic engineering, information engineering, Computer Science (miscellaneous), Engineering (miscellaneous), Authentication, lcsh:Mathematics, 010401 analytical chemistry, 020206 networking & telecommunications, Root cause, lcsh:QA1-939, 0104 chemical sciences, Authentication protocol, lightweight cryptography, Probability distribution, authentication, LPN problem, Cryptanalysis, HB-family
Abstract: This paper reconsiders a powerful man-in-the-middle attack against Random-HB# and HB# authentication protocols, two prominent representatives of the HB family of protocols, which are built based on the Learning Parity in Noise (LPN) problem. A recent empirical report pointed out that the attack does not meet the claimed precision and complexity. Performing a thorough theoretical and numerical re-evaluation of the attack, in this paper we identify the root cause of the detected problem, which lies in reasoning based on approximate probability distributions of the central attack events, that can not provide the required precision due to the inherent limitations in the use of the Central Limit Theorem for this particular application. We rectify the attack by employing adequate Bayesian reasoning, after establishing the exact distributions of these events, and overcome the mentioned limitations. We further experimentally confirm the correctness of the rectified attack and show that it satisfies the required, targeted accuracy and efficiency, unlike the original attack.
Published: 2021
Full Text: View/download PDF

28. Implementing a Symmetric Lightweight Cryptosystem in Highly Constrained IoT Devices by Using a Chaotic S-Box

Author: Badr M. Alshammari, Ramzi Guesmi, Tawfik Guesmi, Haitham Alsaif, and A. A. Alzamil
Subjects: S-box, Physics and Astronomy (miscellaneous), Computer science, Smart objects, General Mathematics, Internet of Things, lightweight cryptography, chaos, Boolean function, Hilbert curve, AES, wireless sensor, Cryptography, 02 engineering and technology, Encryption, 01 natural sciences, Secure communication, 0103 physical sciences, 0202 electrical engineering, electronic engineering, information engineering, Computer Science (miscellaneous), Cryptosystem, 010301 acoustics, business.industry, lcsh:Mathematics, Advanced Encryption Standard, lcsh:QA1-939, Chemistry (miscellaneous), Embedded system, NIST, 020201 artificial intelligence & image processing, business
Abstract: In the Internet of Things (IoT), a lot of constrained devices are interconnected. The data collected from those devices can be the target of cyberattacks. In this paper, a lightweight cryptosystem that can be efficiently implemented in highly constrained IOT devices is proposed. The algorithm is mainly based on Advanced Encryption Standard (AES) and a new chaotic S-box. Since its adoption by the IEEE 802.15.4 protocol, AES in embedded platforms have been increasingly used. The main cryptographic properties of the generated S-box have been validated. The randomness of the generated S-box has been confirmed by the NIST tests. Experimental results and security analysis demonstrated that the cryptosystem can, on the one hand, reach good encryption results and respects the limitation of the sensor’s resources, on the other hand. So the proposed solution could be reliably applied in image encryption and secure communication between networked smart objects.
Published: 2021

29. Lightweight Cryptography in Cloud-Based IoT

Author: Aditya Bhattacharyya and Payel Guria
Subjects: Lightweight cryptography, 010201 computation theory & mathematics, business.industry, Computer science, Embedded system, 0202 electrical engineering, electronic engineering, information engineering, 020206 networking & telecommunications, Cloud computing, 0102 computer and information sciences, 02 engineering and technology, business, Internet of Things, 01 natural sciences
Abstract: IoT and cloud computing are the novel fields that are rapidly progressing in the world of internet technology. A huge and massive amount of data are communicating via IoT and cloud devices. Along with the highly configured devices, IoT and cloud also empowered many resource-constrained devices to communicate and compute information through network. But the major problem that they face is how to provide data security through conventional cryptographic algorithms in such resource-constrained devices having smaller size, limited memory spaces, low computation capabilities, and limited power. In this scenario, the biggest driver towards the problem is lightweight cryptography (LWC). This chapter discusses thoroughly the LWC, different schemes of LWC, and cryptanalysis of different LWC schemes.
Published: 2021

30. PROLISEAN: A New Security Protocol for Programmable Matter

Author: Camille Fountaine, Abdallah Makhoul, Benoît Piranda, Edy Hourany, Julien Bourgeois, Bachir Habib, Université Saint-Esprit de Kaslik (USEK), Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies (UMR 6174) (FEMTO-ST), Université de Technologie de Belfort-Montbeliard (UTBM)-Ecole Nationale Supérieure de Mécanique et des Microtechniques (ENSMM)-Université de Franche-Comté (UFC), and Université Bourgogne Franche-Comté [COMUE] (UBFC)-Université Bourgogne Franche-Comté [COMUE] (UBFC)-Centre National de la Recherche Scientifique (CNRS)
Subjects: Self-reconfiguring modular robot, 0209 industrial biotechnology, Security Algorithms, Computer Networks and Communications, Computer science, Distributed computing, Hash function, Security Protocol, 02 engineering and technology, [INFO.INFO-SE]Computer Science [cs]/Software Engineering [cs.SE], Encryption, Lightweight Cryptography, [INFO.INFO-IU]Computer Science [cs]/Ubiquitous Computing, [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR], 020901 industrial engineering & automation, Component (UML), 0202 electrical engineering, electronic engineering, information engineering, Modular Robots, Programmable Matter, Protocol (object-oriented programming), IOT, business.industry, 020206 networking & telecommunications, Cryptographic protocol, Supercomputer, [INFO.INFO-MO]Computer Science [cs]/Modeling and Simulation, Programmable matter, [INFO.INFO-MA]Computer Science [cs]/Multiagent Systems [cs.MA], [INFO.INFO-ET]Computer Science [cs]/Emerging Technologies [cs.ET], Amoebots, [INFO.INFO-DC]Computer Science [cs]/Distributed, Parallel, and Cluster Computing [cs.DC], business, Distributed Computing
Abstract: The vision for programmable matter is to create a material that can be reprogrammed to have different shapes and to change its physical properties on demand. They are autonomous systems composed of a huge number of independent connected elements called particles. The connections to one another form the overall shape of the system. These particles are capable of interacting with each other and take decisions based on their environment. Beyond sensing, processing, and communication capabilities, programmable matter includes actuation and motion capabilities. It could be deployed in different domains and will constitute an intelligent component of the IoT. A lot of applications can derive from this technology, such as medical or industrial applications. However, just like any other technology, security is a huge concern. Given its distributed architecture and its processing limitations, programmable matter cannot handle the traditional security protocols and encryption algorithms. This article proposes a new security protocol optimized and dedicated for IoT programmable matter. This protocol is based on lightweight cryptography and uses the same encryption protocol as a hashing function while keeping the distributed architecture in mind. The analysis and simulation results show the efficiency of the proposed method and that a supercomputer will need about 5.93 × 10 25 years to decrypt the message.
Published: 2021

31. Local Clock Glitching Fault Injection with Application to the ASCON Cipher

Author: Paolo Maistri, Sriram Sankaran, G Surya, Amrita Center For Cyber Security Systems and Network (Amrita University), Architectures and Methods for Resilient Systems (AMfoRS ), Techniques de l'Informatique et de la Microélectronique pour l'Architecture des systèmes intégrés (TIMA), Centre National de la Recherche Scientifique (CNRS)-Université Grenoble Alpes (UGA)-Institut polytechnique de Grenoble - Grenoble Institute of Technology (Grenoble INP ), Université Grenoble Alpes (UGA)-Centre National de la Recherche Scientifique (CNRS)-Université Grenoble Alpes (UGA)-Institut polytechnique de Grenoble - Grenoble Institute of Technology (Grenoble INP ), and Université Grenoble Alpes (UGA)
Subjects: business.industry, Computer science, End user, Locality, 020206 networking & telecommunications, 02 engineering and technology, Digital clock manager, Fault injection, Fault (power engineering), ASCON, Cipher, fault injection attack, Embedded system, PACS 85.42, lightweight cryptography, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, [SPI.NANO]Engineering Sciences [physics]/Micro and nanotechnologies/Microelectronics, business, Field-programmable gate array, clock glitching, Throughput (business)
Abstract: International audience; Lightweight ciphers such as ASCON facilitate ease of implementation as well as provide better performance over conventional ciphers, thus making it suitable for resource-constrained devices. However, hardware implementations of these ciphers are vulnerable to a multitude of physical attacks (such as fault injections) requiring dedicated countermeasures thus causing a negative impact on security, performance and power consumption. Modeling and understanding the impact of these attacks on cipher operations and end users is mandatory. Further, detection and mitigation of such fault injection attacks is challenging due to the interconnected nature of cipher design, coupled with the varying number of possible design choices and with the forced trade-offs that need to be done in order to implement expensive countermeasures at the lowest possible cost. In this work, we aim to model a fault injection attack on ASCON and analyze its impact on FPGA. In particular, we implement the ASCON cipher and propose a methodology for fault injection attacks using synchronous clock glitching by Digital Clock Manager (DCM) introducing a novel approach of locality, which can be exploited to emulate general delay faults on focused parts of the design, such those induced by pulsed EM injections.
Published: 2020

32. WITHDRAWN: Power algorithm to improve the IoT device for lightweight cryptography applications

Author: K.G. Dharani, S. Bhavani, and C. Pranit Jeba Samuel
Subjects: 010302 applied physics, Lightweight cryptography, SIMPLE (military communications protocol), business.industry, Computer science, Volume (computing), 02 engineering and technology, Integrated circuit design, 021001 nanoscience & nanotechnology, Encryption, 01 natural sciences, Power (physics), Power consumption, 0103 physical sciences, 0210 nano-technology, Internet of Things, business, Algorithm
Abstract: Due to exponential growth of Internet of Things (IoT) devices, the volume of data exchanged between IoT devices has increased drastically. Most IoT systems handle sensitive and confidential information with low-resource applications. For low-resource devices conventional encryption techniques are unsuitable. Ciphers are used for encrypting information on those devices to compensate for security and power consumption requirements. The objective of this study is to explore ways of improving the effectiveness and power consumption of low-resource IoT technologies in chip design using lightweight cryptography. This research work introduces an effective power algorithm to improve the low-resource IoT device which enables critical messages to be encrypted in low-power mode. For lightweight cipher performance metrics, we have created a simple and efficient model. The experimental analysis of mathematical model for power consumption in terms of using various power parameters has been compared and validated.
Published: 2020

33. Towards Secure and Privacy-Preserving IoT enabled Smart Home: Architecture and Experimental Study

Author: Philip Perry, Bryan Scotney, Jorge Martinez Carracedo, Mamun Abu-Tair, Unsub Zia, Ali Sajjad, and Soufiene Djahel
Subjects: IoT, Computer science, smart home, Cryptography, 02 engineering and technology, security, Computer security, computer.software_genre, lcsh:Chemical technology, Biochemistry, Article, Analytical Chemistry, data anonymisation, Home automation, CLEFIA, 0202 electrical engineering, electronic engineering, information engineering, Trivium (cipher), lcsh:TP1-1185, Electrical and Electronic Engineering, Architecture, Instrumentation, business.industry, 020206 networking & telecommunications, Atomic and Molecular Physics, and Optics, privacy preservation, Test case, Symmetric-key algorithm, lightweight cryptography, 020201 artificial intelligence & image processing, business, computer
Abstract: Internet of Things (IoT) technology is increasingly pervasive in all aspects of our life and its usage is anticipated to significantly increase in future Smart Cities to support their myriad of revolutionary applications. This paper introduces a new architecture that can support several IoT-enabled smart home use cases, with a specified level of security and privacy preservation. The security threats that may target such an architecture are highlighted along with the cryptographic algorithms that can prevent them. An experimental study is performed to provide more insights about the suitability of several lightweight cryptographic algorithms for use in securing the constrained IoT devices used in the proposed architecture. The obtained results showed that many modern lightweight symmetric cryptography algorithms, as CLEFIA and TRIVIUM, are optimized for hardware implementations and can consume up to 10 times more energy than the legacy techniques when they are implemented in software. Moreover, the experiments results highlight that CLEFIA significantly outperforms TRIVIUM under all of the investigated test cases, and the latter performs 100 times worse than the legacy cryptographic algorithms tested.
Published: 2020

34. Compact Hardware Architectures of Enocoro-128v2 Stream Cipher for Constrained Embedded Devices

Author: Paris Kitsos and Lampros Pyrgas
Subjects: Hardware security module, FPGA implementations, Computer Networks and Communications, Computer science, Computation, Data_MISCELLANEOUS, lcsh:TK7800-8360, 02 engineering and technology, Enocoro-128v2 stream cipher, Field (computer science), Datapath, constrained embedded devices, 0202 electrical engineering, electronic engineering, information engineering, Electrical and Electronic Engineering, Hardware_ARITHMETICANDLOGICSTRUCTURES, Field-programmable gate array, Throughput (business), Stream cipher, Implementation, 020203 distributed computing, business.industry, lcsh:Electronics, TheoryofComputation_GENERAL, 020202 computer hardware & architecture, Hardware and Architecture, Control and Systems Engineering, Embedded system, Signal Processing, lightweight cryptography, hardware security, business, Computer hardware
Abstract: Lightweight cryptography is a vital and fast growing field in today&rsquo, s world where billions of constrained devices interact with each other. In this paper, two novel compact architectures of the Enocoro-128v2 stream cipher are presented. The Enocoro-128v2 is part of the ISO/IEC 29192-3 standard. The first architecture has an 8-bit datapath while the second one has a 4-bit datapath. The proposed architectures were implemented on the BASYS3 board (Artix 7 XC7A35T) using the VERILOG hardware description language. The hardware implementation of the proposed 8-bit architecture runs at a 189 MHz clock and reaches a throughput equal to 302 Mbps, while at the same time, it utilizes only 254 Look-up Tables (LUTs) and 330 Flip-flops (FFs). Each round of computations requires 5 clock cycles. The 4-bit implementation has an operating frequency of 204 MHz and reaches a throughput equal to 181 Mbps, with each round requiring 9 clock cycles. The 4-bit implementation utilizes 249 LUTs and 343 FFs. To our knowledge, this is the first time that such implementations of the Enocoro-128v2 are presented. Both implementations utilize a very low number of resources (only 78 FPGA slices are required for the 8-bit architecture and only 83 for the 4-bit one) and the results demonstrate that they are sustainable for area constrained embedded devices.
Published: 2020

35. Hardware Performance Evaluation of Authenticated Encryption SAEAES with Threshold Implementation

Author: Takeshi Sugawara
Subjects: Authenticated encryption, Block cipher mode of operation, Coprocessor, Computer Networks and Communications, Computer science, Data_MISCELLANEOUS, threshold implementation, 02 engineering and technology, SAEAES, lcsh:Technology, Backward compatibility, 0202 electrical engineering, electronic engineering, information engineering, Side channel attack, Hardware_ARITHMETICANDLOGICSTRUCTURES, implementation, Key schedule, Block cipher, lcsh:T, business.industry, Applied Mathematics, 020202 computer hardware & architecture, Computer Science Applications, Computational Theory and Mathematics, Embedded system, lightweight cryptography, NIST, changing of the guards, business, Software, authenticated encryption, side-channel attack
Abstract: SAEAES is the authenticated encryption algorithm instantiated by combining the SAEB mode of operation with AES, and a candidate of the NIST&rsquo, s lightweight cryptography competition. Using AES gives the advantage of backward compatibility with the existing accelerators and coprocessors that the industry has invested in so far. Still, the newer lightweight block cipher (e.g., GIFT) outperforms AES in compact implementation, especially with the side-channel attack countermeasure such as threshold implementation. This paper aims to implement the first threshold implementation of SAEAES and evaluate the cost we are trading with the backward compatibility. We design a new circuit architecture using the column-oriented serialization based on the recent 3-share and uniform threshold implementation (TI) of the AES S-box based on the generalized changing of the guards. Our design uses 18,288 GE with AES&rsquo, s occupation reaching 97% of the total area. Meanwhile, the circuit area is roughly three times the conventional SAEB-GIFT implementation (6229 GE) because of a large memory size needed for the AES&rsquo, s non-linear key schedule and the extended states for satisfying uniformity in TI.
Published: 2020
Full Text: View/download PDF

36. A Lightweight Implementation of NTRU Prime for the Post-Quantum Internet of Things

Author: Hao Cheng, Daniel Dinu, Peter Y. A. Ryan, Johann Großschädl, Peter B. Rønne, Université du Luxembourg (Uni.lu), Intel Corporation [USA], Maryline Laurent, Thanassis Giannetsos, TC 11, WG 11.2, European Commission - EC [sponsor], and Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Applied Security and Information Assurance Group (APSIA) [research center]
Subjects: NTRU, Computer science, Post-quantum cryptography, Karatsuba algorithm, Cryptography, 0102 computer and information sciences, 02 engineering and technology, NTRU Prime, Lightweight Cryptography, 01 natural sciences, 0202 electrical engineering, electronic engineering, information engineering, Cryptosystem, Lightweight cryptography, [INFO]Computer Science [cs], Computer science [C05] [Engineering, computing & technology], Key encapsulation mechanism, Key Encapsulation Mechanism, business.industry, Attack surface, Program optimization, Sciences informatiques [C05] [Ingénierie, informatique & technologie], Efficient implementation, Timing attack, 010201 computation theory & mathematics, Embedded system, Post-Quantum Cryptography, 020201 artificial intelligence & image processing, business
Abstract: Part 3: Cryptography; International audience; The dawning era of quantum computing has initiated various initiatives for the standardization of post-quantum cryptosystems with the goal of (eventually) replacing RSA and ECC. NTRU Prime is a variant of the classical NTRU cryptosystem that comes with a couple of tweaks to minimize the attack surface; most notably, it avoids rings with “worrisome” structure. This paper presents, to our knowledge, the first assembler-optimized implementation of Streamlined NTRU Prime for an 8-bit AVR microcontroller and shows that high-security lattice-based cryptography is feasible for small IoT devices. An encapsulation operation using parameters for 128-bit post-quantum security requires 8.2 million clock cycles when executed on an 8-bit ATmega1284 microcontroller. The decapsulation is approximately twice as costly and has an execution time of 15.6 million cycles. We achieved this performance through (i) new low-level software optimization techniques to accelerate Karatsuba-based polynomial multiplication on the 8-bit AVR platform and (ii) an efficient implementation of the coefficient modular reduction written in assembly language. The execution time of encapsulation and decapsulation is independent of secret data, which makes our software resistant against timing attacks. Finally, we assess the performance one could theoretically gain by using a so-called product-form polynomial as part of the secret key and discuss potential security implications.
Published: 2020

37. Saturnin: a suite of lightweight symmetric algorithms for post-quantum security

Author: Canteaut, Anne, Duval, Sébastien, Leurent, Gaëtan, Naya-Plasencia, María, Perrin, Léo, Pornin, Thomas, Schrottenloher, André, Cryptologie symétrique, cryptologie fondée sur les codes et information quantique (COSMIQ), Inria de Paris, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria), UCL Crypto Group, Université Catholique de Louvain = Catholic University of Louvain (UCL), NCC Group, This project has received funding from the European Research Council (ERC) under the European Union’s Horizon 2020 research and innovation programme (grant agreement no. 714294 - acronym QUASYModo)., and European Project: 714294,ERC-2016-STG,QUASYModo(2017)
Subjects: post-quantum security, AES, lcsh:Computer engineering. Computer hardware, Applied Mathematics, block cipher, 020206 networking & telecommunications, lcsh:TK7885-7895, 0102 computer and information sciences, 02 engineering and technology, 01 natural sciences, Computer Science Applications, Duck, Computational Mathematics, [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR], 010201 computation theory & mathematics, lightweight cryptography, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, hash function, authenticated encryption, Software
Abstract: The cryptographic algorithms needed to ensure the security of our communications have a cost. For devices with little computing power, whose number is expected to grow significantly with the spread of the Internet of Things (IoT), this cost can be a problem. A simple answer to this problem is a compromise on the security level: through a weaker round function or a smaller number of rounds, the security level can be decreased in order to cheapen the implementation of the cipher. At the same time, quantum computers are expected to disrupt the state of the art in cryptography in the near future. For public-key cryptography, the NIST has organized a dedicated process to standardize new algorithms. The impact of quantum computing is harder to assess in the symmetric case but its study is an active research area. In this paper, we specify a new block cipher, Saturnin, and its usage in different modes to provide hashing and authenticated encryption in such a way that we can rigorously argue its security in the post-quantum setting. Its security analysis follows naturally from that of the AES, while our use of components that are easily implemented in a bitsliced fashion ensures a low cost for our primitives. Our aim is to provide a new lightweight suite of algorithms that performs well on small devices, in particular micro-controllers, while providing a high security level even in the presence of quantum computers. Saturnin is a 256-bit block cipher with a 256-bit key and an additional 9-bit parameter for domain separation. Using it, we built two authenticated ciphers and a hash function. • Saturnin-CTR-Cascade is an authenticated cipher using the counter mode and a separate MAC. It requires two passes over the data but its implementation does not require the inverse block cipher. • Saturnin-Short is an authenticated cipher intended for messages with a length strictly smaller than 128 bits which uses only one call to Saturnin to providenconfidentiality and integrity. • Saturnin-Hash is a 256-bit hash function. In this paper, we specify this suite of algorithms and argue about their security in both the classical and the post-quantum setting. https://project.inria.fr/saturnin/, IACR Transactions on Symmetric Cryptology, Volume 2020, Special Issue 1
Published: 2020

38. Lightweight AEAD and Hashing using the Sparkle Permutation Family

Author: Beierle, Christof, Biryukov, Alex, Cardoso Dos Santos, Luan, Großschädl, Johann, Perrin, Léo, Aleksei Udovenko, Velichkov, Vesselin, Wang, Qingju, Fonds National de la Recherche - FnR [sponsor], University of Luxembourg - UL [sponsor], Ruhr-Universität Bochum [Bochum], University of Luxembourg [Luxembourg], Cryptologie symétrique, cryptologie fondée sur les codes et information quantique (COSMIQ), Inria de Paris, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria), and University of Edinburgh
Subjects: lcsh:Computer engineering. Computer hardware, lcsh:TK7885-7895, 0102 computer and information sciences, 02 engineering and technology, Lightweight Cryptography, 01 natural sciences, [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR], NIST, 0202 electrical engineering, electronic engineering, information engineering, Authenticated Encryption, 060201 languages & linguistics, Computer science [C05] [Engineering, computing & technology], Applied Mathematics, 1. No poverty, Long Trail Strategy, Hash functions, 06 humanities and the arts, Sciences informatiques [C05] [Ingénierie, informatique & technologie], Computer Science Applications, Hash Function, Computational Mathematics, 010201 computation theory & mathematics, 0602 languages and literature, SPARKLE, 020201 artificial intelligence & image processing, Software
Abstract: We introduce the Sparkle family of permutations operating on 256, 384 and 512 bits. These are combined with the Beetle mode to construct a family of authenticated ciphers, Schwaemm, with security levels ranging from 120 to 250 bits. We also use them to build new sponge-based hash functions, Esch256 and Esch384. Our permutations are among those with the lowest footprint in software, without sacrificing throughput. These properties are allowed by our use of an ARX component (the Alzette S-box) as well as a carefully chosen number of rounds. The corresponding analysis is enabled by the long trail strategy which gives us the tools we need to efficiently bound the probability of all the differential and linear trails for an arbitrary number of rounds. We also present a new application of this approach where the only trails considered are those mapping the rate to the outer part of the internal state, such trails being the only relevant trails for instance in a differential collision attack. To further decrease the number of rounds without compromising security, we modify the message injection in the classical sponge construction to break the alignment between the rate and our S-box layer., IACR Transactions on Symmetric Cryptology, Volume 2020, Special Issue 1
Published: 2020

39. SLIM:A lightweight block cipher for internet of health things

Author: Bassam Aboushosha, Rabie A. Ramadan, Ashutosh Dhar Dwivedi, Ayman El-Sayed, and Mohamed M. Dessouky
Subjects: Differential cryptanalysis, General Computer Science, Computer science, feistel ciphers, Cryptography, 02 engineering and technology, Computer security, computer.software_genre, Encryption, law.invention, Cryptanalysis, cryptanalysis, law, 0202 electrical engineering, electronic engineering, information engineering, Radio-frequency identification, Lightweight cryptography, General Materials Science, Feistel ciphers, Block cipher, Password, RFID, business.industry, General Engineering, 020206 networking & telecommunications, block ciphers, Block ciphers, lightweight cryptography, Key (cryptography), 020201 artificial intelligence & image processing, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, lcsh:TK1-9971, computer
Abstract: Nowadays, there is a strong demand for increasing the protection of resource-constrained devices such as Radio frequency identification (RFID) systems. Current cryptographic algorithms are sufficient for high-resource desktop computers. RFID systems are commonly used in high-security applicationssuch as access control systems, transaction banking systems, and payment systems. The attacker attempts to mislead RFIDs for unauthorized access to services without payment or to circumvent security mechanisms by detecting a secret password. The biggest challenge in RFID systems is how to ensure successful protection against such infringements. Lightweight cryptography can provide security assurance for protecting RFID systems. This article presents a new ultra-lightweight cryptography algorithm for RFID systems called SLIM. SLIM is a 32-bit block cipher based on the Feistel structure since block ciphers are the most used cryptographic and provide very tight protection for IoT devices. The key challenge in designing a lightweight block cipher is to cope with performance, cost, and security. SLIM, like all symmetric block cipher, uses the same key for encryption and decryption. The proposed algorithm has an excellent performance in both hardware and software environments, with a limited implementation area, an acceptable cost/security for RFID systems, and an energy-efficient behaviour. SLIM has demonstrated high immunity against the most effective linear and differential cryptanalysis attacks and has a sufficient margin of defence against these attacks.
Published: 2020

40. Recent Advances and Trends in Lightweight Cryptography for IoT Security

Author: William J. Buchana, Ahmed Al-Dubai, and Nilupulee Anuradha Gunathilake
Subjects: Lightweight cryptography, Computer science, business.industry, 020208 electrical & electronic engineering, 020206 networking & telecommunications, Cryptography, 02 engineering and technology, Computer security, computer.software_genre, Encryption, law.invention, law, Robustness (computer science), 0202 electrical engineering, electronic engineering, information engineering, Elliptic curve cryptography, Internet of Things, business, Cryptanalysis, computer
Abstract: Lightweight cryptography is a novel diversion from conventional cryptography to minimise its high level of resource requirements, thus it would impeccably fit in the internet-of-things (IoT) environment. The IoT platform is constrained in terms of physical size, internal capacity, other storage allocations like RAM/ROM and data rates. The devices are often battery powered, hence maintenance of the charged energy at least for a few years is essential. However, provision of sufficient security is challenging because the existing cryptographic methods are too heavy to adopt in the IoT. Consequently, an interest arose in the recent past to construct new cryptographic algorithms in a lightweight scale, but the attempts are still struggling to gain robustness against improved IoT threats and hazards.There exists a lack of literature studies to offer overall and up-to-date knowledge on lightweight cryptography. Therefore, this effort is to bridge the areas in the subject by summarising the content we explored during our complete survey recently. This work contains the development of lightweight cryptographic algorithms, its current advancements and futuristic enhancements. In contrast, this covers the history, parametric limitations of the invented methods, research progresses of cryptology as well as cryptanalysis.
Published: 2020
Full Text: View/download PDF

41. Iterative Differential Characteristic of TRIFLE-BC

Author: Takanori Isobe and Fukang Liu
Subjects: Key-recovery attack, Lightweight cryptography, Discrete mathematics, 050101 languages & linguistics, 05 social sciences, 02 engineering and technology, Data complexity, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, 0501 psychology and cognitive sciences, Differential (infinitesimal), Distinguishing attack, Time complexity, Mathematics, Block cipher
Abstract: TRIFLE is a Round 1 candidate of the NIST Lightweight Cryptography Standardization process. In this paper, we present an interesting 1-round iterative differential characteristic of the underlying block cipher TRIFLE-BC used in TRIFLE, which holds with probability of $2^{-3}$. Consequently, it allows to mount distinguishing attack on TRIFLE-BC for up to 43 (out of 50) rounds with data complexity $2^{124}$ and time complexity $2^{124}$. Most importantly, with such an iterative differential characteristic, the forgery attack on TRIFLE can reach up to 21 (out of 50) rounds with data complexity $2^{63}$ and time complexity $2^{63}$. Finally, to achieve key recovery attack on reduced TRIFLE, we construct a differential characteristic covering three blocks by carefully choosing the positions of the iterative differential characteristic. As a result, we can mount key-recovery attack on TRIFLE for up to 11 rounds with data complexity $2^{63}$ and time complexity $2^{104}$. Although the result in this paper cannot threaten the security margin of TRIFLE, we hope it can help further understand the security of TRIFLE.
Published: 2020

42. Cryptanalysis of FlexAEAD

Author: Mostafizar Rahman, Dhiman Saha, and Goutam Paul
Subjects: Key-recovery attack, Lightweight cryptography, Property (programming), Computer science, Round function, 05 social sciences, 050801 communication & media studies, 02 engineering and technology, law.invention, Permutation, 0508 media and communications, Iterated function, law, 0202 electrical engineering, electronic engineering, information engineering, NIST, 020201 artificial intelligence & image processing, Cryptanalysis, Algorithm
Abstract: This paper analyzes the internal keyed permutation of FlexAEAD which is a round-1 candidate of the NIST LightWeight Cryptography Competition. In our analysis, we report an iterated truncated differential leveraging on a particular property of the AES S-box that becomes useful due to the particular nature of the diffusion layer of the round function. The differential holds with a low probability of $2^{-7}$ for one round which allows it to penetrate the same number of rounds as claimed by the designers, but with a much lower complexity. Moreover, it can be easily extended to a key-recovery attack at a little extra cost. We further report a Super-Sbox construction in the internal permutation, which is exploited using the Yoyo game to devise a 6-round deterministic distinguisher and a 7-round key recovery attack for the 128-bit internal permutation. Similar attacks can be mounted for the 64-bit and 256-bit variants. All these attacks outperform the existing results of the designers as well as other third-party results. The iterated truncated differentials can be tweaked to mount forgery attacks similar to the ones given by Eichlseder $et$ $al.$ Success probabilities of all the reported distinguishing attacks are shown to be high. All practical attacks have been experimentally verified. To the best of our knowledge, this work reports the first key-recovery attack on the internal keyed permutation of FlexAEAD.
Published: 2020

43. Compatible Certificateless and Identity-Based Cryptosystems for Heterogeneous IoT

Author: Rouzbeh Behnia, Tsz Hon Yuen, Muslum Ozgur Ozmen, and Attila A. Yavuz
Subjects: Lightweight cryptography, Computer science, business.industry, 05 social sciences, Certificateless cryptography, 050801 communication & media studies, 02 engineering and technology, Certificate, Computer security, computer.software_genre, Public-key cryptography, 0508 media and communications, 0202 electrical engineering, electronic engineering, information engineering, Identity (object-oriented programming), Overhead (computing), Cryptosystem, 020201 artificial intelligence & image processing, business, Internet of Things, computer
Abstract: Certificates ensure the authenticity of users’ public keys, however their overhead (e.g., certificate chains) might be too costly for some IoT systems like aerial drones. Certificate-free cryptosystems, like identity-based and certificateless systems, lift the burden of certificates and could be a suitable alternative for such IoTs. However, despite their merits, there is a research gap in achieving compatible identity-based and certificateless systems to allow users from different domains (identity-based or certificateless) to communicate seamlessly. Moreover, more efficient constructions can enable their adoption in resource-limited IoTs.
Published: 2020

44. ILAS-IoT: An improved and lightweight authentication scheme for IoT deployment

Author: Ahmed Barnawi, Wenjing Xiao, Bander A. Alzahrani, Min Chen, Shehzad Ashraf Chaudhry, and Abdullah Al-Barakati
Subjects: Scheme (programming language), PROTOCOL, IoT, General Computer Science, Computer science, Smart device, Device access control, THINGS, 02 engineering and technology, PROVABLY-SECURE, law.invention, law, 0202 electrical engineering, electronic engineering, information engineering, Session key, Lightweight cryptography, Session (computer science), INTERNET, EXCHANGE, USER AUTHENTICATION, computer.programming_language, Authentication, business.industry, Key establishment, 020206 networking & telecommunications, WIRELESS SENSOR NETWORKS, Symmetric-key algorithm, KEY AGREEMENT SCHEME, Key (cryptography), 020201 artificial intelligence & image processing, business, computer, Wireless sensor network, Computer network
Abstract: In 2019, Banerjee et al. (IEEE Int Things J 6(5):8739-8752, 2019; 10.1109/JIOT.2019.2931372) proposed an authenticated key agreement scheme to facilitate the session establishment resulting into a session key between a user and a smart device for IoT based networks. As per their claim, the scheme of Banerjee et al. provides known security features and resist all known attacks using only lightweight symmetric key primitives. The analysis in this paper; however, shows that the scheme of Banerjee et al. cannot complete normally. The user in their scheme, after sending a request message may never receive the response from smart device. This incorrectness results into total in applicability of Banerjee et al.'s scheme. Moreover, it is also shown that their scheme has weaknesses against stolen verifier attack. Then an improved lightweight authentication scheme for IoT deployments (ILAS-IoT) is proposed in this article. ILAS-IoT performs the process correctly by increasing very little computation and communication overheads. The proposed ILAS-IoT also resists stolen verifier and all known attacks, which is evident from the formal and informal security analysis., This Project was funded by the Deanship of Scientific Research (DSR) at King Abdulaziz University, Jeddah, under grant no. RG-7-611-40. The authors, therefore, acknowledge with thanks DSR for technical and financial support.
Published: 2020

45. Lightweight MACs from Universal Hash Functions

Author: Gaëtan Leurent and Sébastien Duval
Subjects: Lightweight cryptography, Computer science, business.industry, Data_MISCELLANEOUS, Hash function, Cryptography, 0102 computer and information sciences, 02 engineering and technology, 01 natural sciences, Microcontroller, 010201 computation theory & mathematics, Embedded system, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, Message authentication code, Hardware_ARITHMETICANDLOGICSTRUCTURES, business, Block cipher
Abstract: Lightweight cryptography is a topic of growing importance, with the goal to secure the communication of low-end devices that are not powerful enough to use conventional cryptography. There have been many recent proposals of lightweight block ciphers, but comparatively few results on lightweight Message Authentication Codes (MACs).
Published: 2020

46. Securing the internet of vehicles through lightweight block ciphers

Author: Marco Lombardi, Arcangelo Castiglione, Domenico Santaniello, Francesco Palmieri, Francesco Colace, and Giuseppe D'Aniello
Subjects: Cybersecurity, Computer science, Context (language use), 02 engineering and technology, Internet of vehicles, 01 natural sciences, CAN bus, Software, Artificial Intelligence, 0103 physical sciences, 0202 electrical engineering, electronic engineering, information engineering, Lightweight cryptography, 010306 general physics, Controller area network, Protocol (object-oriented programming), Block cipher, Automotive security, Security, business.industry, Signal Processing, 020201 artificial intelligence & image processing, The Internet, Computer Vision and Pattern Recognition, business, Computer network
Abstract: In recent years, the automotive industry has made significant investments in the Internet of Things (IoT) paradigm, aiming to develop technologies and services for connected vehicles that focus on user-oriented solutions, providing unique and tailored driving experiences. Nowadays, the vehicles are connected to the car manufacturer network, the road operator networks, and the Internet. Such interconnections are used for infotainment applications and driving assistance services, such as real-time HD-maps, and road safety applications. For these reasons, the concept of the Internet of Vehicles (IoVs) is increasingly emerging and, vehicles become Internet terminals exposed to cyber-attacks. In this context, the main weakness is given by the Controller Area Network (CAN) protocol. This protocol, which governs the in-vehicle network, was designed to reduce transmission error problems and minimize latency times. However, it does not employ any security facility to protect the communication. In particular, one of the main issues of this protocol is that it uses unencrypted communication. Improving the security of this protocol is necessary while preserving its performance in terms of communication efficiency. This paper investigates the possibility of using lightweight block ciphers to secure in-vehicle devices such as microcontrollers, which have constrained hardware and software capabilities. The results obtained have shown that this proposal while guaranteeing a high degree of safety, has a negligible impact on the vehicle’s performance.
Published: 2020

47. Forkcipher: A New Primitive for Authenticated Encryption of Very Short Messages

Author: Reza Reyhanitabar, Antoon Purnal, Elena Andreeva, Arnab Roy, Virginie Lallemand, Damian Vizár, IMEC (IMEC), Catholic University of Leuven - Katholieke Universiteit Leuven (KU Leuven), Cryptology, arithmetic : algebraic methods for better algorithms (CARAMBA), Department of Algorithms, Computation, Image and Geometry (LORIA - ALGO), Laboratoire Lorrain de Recherche en Informatique et ses Applications (LORIA), Centre National de la Recherche Scientifique (CNRS)-Université de Lorraine (UL)-Institut National de Recherche en Informatique et en Automatique (Inria)-Centre National de la Recherche Scientifique (CNRS)-Université de Lorraine (UL)-Institut National de Recherche en Informatique et en Automatique (Inria)-Laboratoire Lorrain de Recherche en Informatique et ses Applications (LORIA), Centre National de la Recherche Scientifique (CNRS)-Université de Lorraine (UL)-Institut National de Recherche en Informatique et en Automatique (Inria)-Centre National de la Recherche Scientifique (CNRS)-Université de Lorraine (UL)-Institut National de Recherche en Informatique et en Automatique (Inria)-Inria Nancy - Grand Est, Institut National de Recherche en Informatique et en Automatique (Inria), TE Connectivity Ltd, University of Bristol [Bristol], Centre Suisse d'Electronique et de Microtechnique SA [Neuchatel] (CSEM), Centre Suisse d'Electronique et Microtechnique SA (CSEM), Elena Andreeva was supported in part by the Research Council KU Leuven C1 on Security and Privacy for Cyber-Physical Systems and the Internet of Things with contract number C16/15/058 and by the Research Council KU Leuven, C16/18/004, through the EIT Health RAMSES project, through the IF/C1 on New Block Cipher Structures, and through the NIST project. In addition, this work was supported by the European Commission through the Horizon 2020 research and innovation programme under grant agreement H2020-DS-2014-653497 PANORAMIX and through the grant H2020-DS-SC7-2016-740507 Eunity. The work is supported in part by funding from imec of the Flemish Government. Antoon Purnal is supported by the Horizon 2020 research and innovation programme under Cathedral ERC Advanced Grant 695305. Reza Reyhanitabar’s work on this project was initiated when he was with KU Leuven and supported by an EU H2020-MSCA-IF fellowship under grant ID 708815, continued and submitted when he was with Elektrobit Automotive GmbH, and revised while he is now with TE Connectivity. Arnab Roy is supported by the EPSRC grant No. EPSRC EP/N011635/1., European Project: 708815,H2020,H2020-MSCA-IF-2015,POMEGRANATE(2017), European Project: 695305,Cathedral(2016), European Project: 653497,H2020,H2020-DS-2014-1,PANORAMIX(2015), European Project: 740507,EUNITY(2017), Inria Nancy - Grand Est, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria)-Department of Algorithms, Computation, Image and Geometry (LORIA - ALGO), Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Laboratoire Lorrain de Recherche en Informatique et ses Applications (LORIA), Institut National de Recherche en Informatique et en Automatique (Inria)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS)-Université de Lorraine (UL)-Centre National de la Recherche Scientifique (CNRS), Galbraith, SD, and Moriai, S
Subjects: Authenticated encryption, Computer science, Short messages, 0102 computer and information sciences, 02 engineering and technology, Encryption, 01 natural sciences, law.invention, [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR], law, 0202 electrical engineering, electronic engineering, information engineering, Lightweight cryptography, Chosen-ciphertext attack, Block cipher, Forkcipher, Authentication, business.industry, ForkSkinny, Symmetric-key algorithm, 010201 computation theory & mathematics, 020201 artificial intelligence & image processing, business, Cryptanalysis, Computer network, Cryptographic nonce, New primitive
Abstract: Highly efficient encryption and authentication of short messages is an essential requirement for enabling security in constrained scenarios such as the CAN FD in automotive systems (max. message size 64 bytes), massive IoT, critical communication domains of 5G, and Narrowband IoT, to mention a few. In addition, one of the NIST lightweight cryptography project requirements is that AEAD schemes shall be “optimized to be efficient for short messages (e.g., as short as 8 bytes)”. In this work we introduce and formalize a novel primitive in symmetric cryptography called forkcipher. A forkcipher is a keyed primitive expanding a fixed-lenght input to a fixed-length output. We define its security as indistinguishability under a chosen ciphertext attack (for n-bit inputs to 2n-bit outputs). We give a generic construction validation via the new iterate-fork-iterate design paradigm. We then propose 𝖥𝗈𝗋𝗄𝖲𝗄𝗂𝗇𝗇𝗒 as a concrete forkcipher instance with a public tweak and based on SKINNY: a tweakable lightweight cipher following the TWEAKEY framework. We conduct extensive cryptanalysis of 𝖥𝗈𝗋𝗄𝖲𝗄𝗂𝗇𝗇𝗒 against classical and structure-specific attacks. We demonstrate the applicability of forkciphers by designing three new provably-secure nonce-based AEAD modes which offer performance and security tradeoffs and are optimized for efficiency of very short messages. Considering a reference block size of 16 bytes, and ignoring possible hardware optimizations, our new AEAD schemes beat the best SKINNY-based AEAD modes. More generally, we show forkciphers are suited for lightweight applications dealing with predominantly short messages, while at the same time allowing handling arbitrary messages sizes. Furthermore, our hardware implementation results show that when we exploit the inherent parallelism of 𝖥𝗈𝗋𝗄𝖲𝗄𝗂𝗇𝗇𝗒 we achieve the best performance when directly compared with the most efficient mode instantiated with SKINNY. ispartof: pages:153-182 ispartof: International Conference on the Theory and Application of Cryptology and Information Security vol:11922 pages:153-182 ispartof: ASIACRYPT 2019 location:Kobe, Japan date:8 Dec - 12 Dec 2019 status: published
Published: 2019

48. A Hardware and Secure Pseudorandom Generator for Constrained Devices

Author: Luigi Marangio, Mohammed Bakiri, Stefano Galatolo, Jean-François Couchot, Christophe Guyeux, Centre de Développement des Technologies Avancées (CDTA), Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies (UMR 6174) (FEMTO-ST), Université de Technologie de Belfort-Montbeliard (UTBM)-Ecole Nationale Supérieure de Mécanique et des Microtechniques (ENSMM)-Université de Franche-Comté (UFC), and Université Bourgogne Franche-Comté [COMUE] (UBFC)-Université Bourgogne Franche-Comté [COMUE] (UBFC)-Centre National de la Recherche Scientifique (CNRS)
Subjects: Applied cryptography, Chaotic circuits, Constrained devices, Discrete dynamical systems, FPGA, Lightweight Cryptography, Random number generators, Statistical tests, Control and Systems Engineering, Information Systems, Computer Science Applications1707 Computer Vision and Pattern Recognition, Electrical and Electronic Engineering, Hardware security module, Computer science, Random number generation, Cryptography, [INFO.INFO-SE]Computer Science [cs]/Software Engineering [cs.SE], 02 engineering and technology, Pseudorandom generator, [INFO.INFO-IU]Computer Science [cs]/Ubiquitous Computing, [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR], Permutation, 0202 electrical engineering, electronic engineering, information engineering, Field-programmable gate array, Throughput (business), Pseudorandom number generator, Generator (category theory), business.industry, 020208 electrical & electronic engineering, 020206 networking & telecommunications, [INFO.INFO-MO]Computer Science [cs]/Modeling and Simulation, Computer Science Applications, [INFO.INFO-MA]Computer Science [cs]/Multiagent Systems [cs.MA], Key (cryptography), [INFO.INFO-ET]Computer Science [cs]/Emerging Technologies [cs.ET], [INFO.INFO-DC]Computer Science [cs]/Distributed, Parallel, and Cluster Computing [cs.DC], business, Computer hardware
Abstract: Hardware security for an Internet of Things or cyber physical system drives the need for ubiquitous cryptography to different sensing infrastructures in these fields. In particular, generating strong cryptographic keys on such resource-constrained device depends on a lightweight and cryptographically secure random number generator. In this research work, we have introduced a new hardware chaos-based pseudorandom number generator, which is mainly based on the deletion of an Hamilton cycle within the $N$ -cube (or on the vectorial negation), plus one single permutation. We have rigorously proven the chaotic behavior and cryptographically secure property of the whole proposal: the mid-term effects of a slight modification of the seed (proven to be sensitive to the initial conditions) or of the inputted generator cannot be predicted. The proposal has been fully deployed on a FPGA and 65 $\text{nm}$ ASIC, it runs completely in parallel while consuming as low resources as possible, and achieving: (a) 11.5 Gb/s for FPGA and 9.4 Gb/s for ASIC random bit throughput, (b) $3.3\,\mu \text{W}$ (LF) to $7.8 \,\text{mW}$ (UHF) total power consumption with $5\%$ leakage power, measured at $1.32\,\text{V}$ , and (c) able to successfully pass the statistical tests of NIST and TestU01 (BigCrush).
Published: 2018

49. Security of IoT Devices

Author: Tra Le, Vahid Emamian, Daniel Cyrus, and Erick Buenrostro
Subjects: Lightweight cryptography, Computer science, computer.internet_protocol, business.industry, 020208 electrical & electronic engineering, 010401 analytical chemistry, 02 engineering and technology, Computer security, computer.software_genre, 01 natural sciences, 0104 chemical sciences, 0202 electrical engineering, electronic engineering, information engineering, Wireless Application Protocol, Internet of Things, business, computer
Abstract: The network of home devices is the concept of establishing a web of connections using SMART devices in the household. These devices, a part of the Internet of Things (IoT), have expanded the idea o...
Published: 2018

50. Analysis of Lightweight Encryption Scheme for Fog-to-Things Communication

Author: Naveen Chilamkurti, Yunyoung Nam, and Abebe Abeshu Diro
Subjects: Internet of things, Cybersecurity, General Computer Science, Computer science, Cloud computing, Cryptography, 02 engineering and technology, Computer security, computer.software_genre, Encryption, Resource (project management), 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, Elliptic curve cryptography, Authentication, business.industry, General Engineering, Authorization, 020206 networking & telecommunications, elliptic curve cryptography, lightweight cryptography, Scalability, 020201 artificial intelligence & image processing, The Internet, lcsh:Electrical engineering. Electronics. Nuclear engineering, fog computing, business, lcsh:TK1-9971, computer
Abstract: The growing concerns in cybersecurity is preventing unknowns which evolve from time to time. Internet of Things (IoT) is one of the emerging fields that have been applied for smart cities and industries. The promises of IoTs could be confronted with the growth in the number and sophistication of cyberattacks. The extension of digital world into physical environment adds new attack surfaces on the existing security threats of traditional Internet. The major challenge brought about by physical connectivity of IoTs is to implement distributed security mechanisms for resource constrain of IoT devices. As an emerging architecture supporting IoT applications, fog computing can be considered to solve the resource and distribution issues in securing fog-to-things communication. Security functions and services, such as cryptography, could be offloaded to fog nodes to reduce computational and storage burdens on IoT devices. The distribution of fog nodes can also solve the scalability of cloud by reducing central processing and communications. On the other hand, lightweight cryptographic functions, such as elliptic curve cryptography, have been proved to be suitable for embedded systems. In this paper, we have analyzed security challenges in terms of cybersecurity principles and proposed a novel encryption scheme for fog-to-things communication.
Published: 2018

Catalog

Books, media, physical & digital resources

See catalog results

Searchworks

Select search scope, currently: Articles Catalog books, media & more in Jio Institute collections Articles journal articles & other e-resources

Search

Search Constraints

Refine your results

Search Limiters

Topic

Publication Year Range

Language

Journal

Database

Publisher

105 results on '"lightweight cryptography"'

Search Results

Catalog

Select search scope, currently: Articles

Catalog

books, media & more in Jio Institute collections

Articles

journal articles & other e-resources