Vol.69, No.2, 2021, pp.1747-1764, doi:10.32604/cmc.2021.018549
OPEN ACCESS
ARTICLE
A Lightweight Certificate-Based Aggregate Signature Scheme Providing Key Insulation
  • Yong-Woon Hwang, Im-Yeong Lee*
Department of Software Convergence in Soonchunhyang University, Asan-si, 31538, Korea
* Corresponding Author: Im-Yeong Lee. Email:
Received 12 March 2021; Accepted 16 April 2021; Issue published 21 July 2021
Abstract
Recently, with the advancement of Information and Communications Technology (ICT), Internet of Things (IoT) has been connected to the cloud and used in industrial sectors, medical environments, and smart grids. However, if data is transmitted in plain text when collecting data in an IoT-cloud environment, it can be exposed to various security threats such as replay attacks and data forgery. Thus, digital signatures are required. Data integrity is ensured when a user (or a device) transmits data using a signature. In addition, the concept of data aggregation is important to efficiently collect data transmitted from multiple users (or a devices) in an industrial IoT environment. However, signatures based on pairing during aggregation compromise efficiency as the number of signatories increases. Aggregate signature methods (e.g., identity-based and certificateless cryptography) have been studied. Both methods pose key escrow and key distribution problems. In order to solve these problems, the use of aggregate signatures in certificate-based cryptography is being studied, and studies to satisfy the prevention of forgery of signatures and other security problems are being conducted. In this paper, we propose a new lightweight signature scheme that uses a certificate-based aggregate signature and can generate and verify signed messages from IoT devices in an IoT-cloud environment. In this proposed method, by providing key insulation, security threats that occur when keys are exposed due to physical attacks such as side channels can be solved. This can be applied to create an environment in which data is collected safely and efficiently in IoT-cloud is environments.
Keywords
Internet of things; certificate-based aggregate signature; key insulation; cloud; lightweight; physical attack
Cite This Article
Hwang, Y., Lee, I. (2021). A Lightweight Certificate-Based Aggregate Signature Scheme Providing Key Insulation. CMC-Computers, Materials & Continua, 69(2), 1747–1764.
This work is licensed under a Creative Commons Attribution 4.0 International License , which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.