Authentication and Privacy-preserving Technologies for IoT Environment

2017 Fiscal Year Annual Research Report

• Project/Area Number: 15K16005
• Research Institution: The University of Aizu
• Principal Investigator: SU Chunhua 会津大学, コンピュータ理工学部, 准教授 (40716966)
• Project Period (FY): 2015-04-01 – 2018-03-31
• Keywords: 軽量化認証暗号 / IoT生体認証 / IoT機器プライバシ

Outline of Annual Research Achievements

データ内容の秘匿と整合性の両方を同時に確保する軽量化共通鍵暗号アルゴリズムを提案した．その上にIoT機器の安全認証システムをを提案し，プロタイプを実現した．さらに，IoTデータの安全収集と保存の並列暗号処理やプライバシ保護技術のを提案し，実装検証を行った．主に以下の３つの成果が得られた．
１つ目は我々はより効率的で大規模なIoTデータ暗号化と認証処理に適するノンス依存方式と確率的暗号方式について考察し，二つの新しい方式を提案した．並列処理モードで動作し，セキュリティはランダム生成したノンセに基づいており，関連データをサポートする．さらに，セキュリティモデルの構築が弱いが，高速で軽量化した解決策を提案した．
２つ目はウェアラブルヘルスケアに関連するスマートオブジェクトを所有するユーザーとのIoTベース環境の継続的な認証方式を提案した．新しいバイオメトリクスの特性を導入し，市販の圧力センサーとRaspberry PIプラットフォームを介して構築された着用可能な足底の生体特徴抽出器を構築してプロタイプを作った. さらにIoTベースのネットワークの侵入・異常検知システムが提案した．
３つ目は我々はPrivacyBatというBLEベースのアプリケーションのプライバシ管理するフレームワークを提案した．このフレームワークは、ユーザーが近くのBLEデバイスとのプライバシに関する合意を達成するための仕様を定義してい，さらに、IoTデバイスが契約に従ってユーザーの要求を処理するためのガイドラインを提供した．フレームワークがどのように動作するかを実証するために，実装実証をさらに行った．我々が提案されたフレームワークはIoTアプリケーションにおけるプライバシーポリシ合意プロセスを改善することができるので，IoTアプリケーションに対するユーザーの信頼性向上に貢献した

Research Products

• [Int'l Joint Research] Denmark University of Technology(デンマーク)
  • Country Name: DENMARK
  • Counterpart Institution: Denmark University of Technology
• [Int'l Joint Research] University of Surrey(英国)
  • Country Name: UNITED KINGDOM
  • Counterpart Institution: University of Surrey
• [Int'l Joint Research] University of Mahidol(タイ)
  • Country Name: THAILAND
  • Counterpart Institution: University of Mahidol
• [Journal Article] Special Issue on Advanced Persistent Threat (2018)
  • Author(s): Chen Jiageng、Su Chunhua、Yeh Kuo-Hui、Yung Moti
  • Journal Title: Future Generation Computer Systems Volume: 79 Pages: 243～246
  • DOI: https://doi.org/10.1016/j.future.2017.11.005
  • Peer Reviewed / Int'l Joint Research
• [Journal Article] I Walk, Therefore I Am: Continuous User Authentication with Plantar Biometrics (2018)
  • Author(s): Yeh Kuo-Hui、Su Chunhua、Chiu Wayne、Zhou Lu
  • Journal Title: IEEE Communications Magazine Volume: 56 Pages: 150～157
  • DOI: 10.1109/MCOM.2018.1700339
  • Peer Reviewed / Open Access / Int'l Joint Research
• [Journal Article] A User-Friendly Privacy Framework for Users to Achieve Consents With Nearby BLE Devices (2018)
  • Author(s): Cha Shi-Cho、Chuang Ming-Shiung、Yeh Kuo-Hui、Huang Zi-Jia、Su Chunhua
  • Journal Title: IEEE Access Volume: 6 Pages: 20779～20787
  • DOI: 10.1109/ACCESS.2018.2820716
  • Peer Reviewed / Open Access / Int'l Joint Research
• [Journal Article] Enhancing Trust Management for Wireless Intrusion Detection via Traffic Sampling in the Era of Big Data (2018)
  • Author(s): Meng Weizhi、Li Wenjuan、Su Chunhua、Zhou Jianying、Lu Rongxing
  • Journal Title: IEEE Access Volume: 6 Pages: 7234～7243
  • DOI: 10.1109/ACCESS.2017.2772294
  • Peer Reviewed / Int'l Joint Research
• [Journal Article] Towards False Alarm Reduction Using Fuzzy If-Then Rules for Medical Cyber Physical Systems (2018)
  • Author(s): Li Wenjuan、Meng Weizhi、Su Chunhua、Kwok Lam For
  • Journal Title: IEEE Access Volume: 6 Pages: 6530～6539
  • DOI: 10.1109/ACCESS.2018.2794685
  • Peer Reviewed / Open Access / Int'l Joint Research
• [Journal Article] A simple authentication encryption scheme (2017)
  • Author(s): Mazumder Rashed、Miyaji Atsuko、Su Chunhua
  • Journal Title: Concurrency and Computation: Practice and Experience Volume: 29 Pages: e4058～e4058
  • DOI: https://doi.org/10.1002/cpe.4058
  • Peer Reviewed / Open Access / Int'l Joint Research
• [Journal Article] Probably Secure Keyed-Function Based Authenticated Encryption Schemes for Big Data (2017)
  • Author(s): Mazumder Rashed、Miyaji Atsuko、Su Chunhua
  • Journal Title: International Journal of Foundations of Computer Science Volume: 28 Pages: 661～682
  • DOI: https://doi.org/10.1142/S0129054117400123
  • Peer Reviewed
• [Journal Article] Special issue on Secure Computation on Encrypted Data (2017)
  • Author(s): Chen Jiageng、He Debiao、Su Chunhua、Xia Zhe
  • Journal Title: Journal of Information Security and Applications Volume: 34 Pages: 205～206
  • DOI: https://doi.org/10.1016/j.jisa.2017.05.010
  • Peer Reviewed / Int'l Joint Research
• [Journal Article] A Novel Certificateless Signature Scheme for Smart Objects in the Internet-of-Things (2017)
  • Author(s): Yeh Kuo-Hui、Su Chunhua、Choo Kim-Kwang Raymond、Chiu Wayne
  • Journal Title: Sensors Volume: 17 Pages: 1001～1001
  • DOI: https://doi.org/10.3390/s17051001
  • Peer Reviewed / Open Access / Int'l Joint Research
• [Journal Article] Towards Accurate Statistical Analysis of Security Margins: New Searching Strategies for Differential Attacks (2017)
  • Author(s): Chen Jiageng、Teh Jesen、Liu Zhe、Su Chunhua、Samsudin Azman、Xiang Yang
  • Journal Title: IEEE Transactions on Computers Volume: 66 Pages: 1763～1777
  • DOI: 10.1109/TC.2017.2699190
  • Peer Reviewed / Open Access / Int'l Joint Research
• [Journal Article] Recursive Matrix Oblivious RAM: An ORAM Construction for Constrained Storage Devices (2017)
  • Author(s): Gordon Steven、Huang Xinyi、Miyaji Atsuko、Su Chunhua、Sumongkayothin Karin、Wipusitwarakun Komwut
  • Journal Title: IEEE Transactions on Information Forensics and Security Volume: 12 Pages: 3024～3038
  • DOI: 10.1109/TIFS.2017.2730584
  • Peer Reviewed / Open Access / Int'l Joint Research
• [Presentation] A simple construction of encryption for a tiny domain message (2017)
  • Author(s): Rashed Mazumder, Atsuko Miyaji, Chunhua Su
  • Organizer: 51st Annual Conference on Information Sciences and Systems, CISS 2017
  • Int'l Joint Research
• [Presentation] DABEHR: Decentralized Attribute-Based Electronic Health Record System with Constant-Size Storage Complexity. (2017)
  • Author(s): Ye Li, Kaitai Liang, Chunhua Su, Wei Wu
  • Organizer: Green, Pervasive, and Cloud Computing - 12th International Conference, GPC 2017
  • Int'l Joint Research
• [Presentation] Evaluating the Impact of Juice Filming Charging Attack in Practical Environments (2017)
  • Author(s): Weizhi Meng, Lee Wang Hao, Zhe Liu, Chunhua Su, Yan Li:
  • Organizer: nformation Security and Cryptology - ICISC 2017 - 20th International Conference
  • Int'l Joint Research
• [Presentation] Automatic Encryption Schemes Based on the Neural Networks: Analysis and Discussions on the Various Adversarial Models (2017)
  • Author(s): Yidan Zhang, Marino Anthony James, Jiageng Chen, Chunhua Su, Jinguang Han
  • Organizer: Information Security Practice and Experience - 13th International Conference, ISPEC 2017
  • Int'l Joint Research
• [Presentation] Exploring Energy Consumption of Juice Filming Charging Attack on Smartphones: A Pilot Study (2017)
  • Author(s): Lijun Jiang, Weizhi Meng, Yu Wang, Chunhua Su, Jin Li
  • Organizer: Network and System Security - 11th International Conference, NSS 2017
  • Int'l Joint Research
• [Presentation] Provable Secure Post-Quantum Signature Scheme Based on Isomorphism of Polynomials in Quantum Random Oracle Model. (2017)
  • Author(s): Bagus Santoso, Chunhua Su
  • Organizer: Provable Security - 11th International Conference, ProvSec 2017
  • Int'l Joint Research
• [Presentation] Evaluation and Improvement of Pseudo-Random Number Generator for EPC Gen2. (2017)
  • Author(s): Hiroshi Nomaguchi, Atsuko Miyaji, Chunhua Su
  • Organizer: The 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom 2017)
  • Int'l Joint Research
• [Presentation] Cryptography-based Solutions for security and privacy in eHealth environment (2017)
  • Author(s): Chunhua Su
  • Organizer: The 2nd International Conference on Information Technology (InCIT 2017)
  • Invited