| 研究課題/領域番号 |
15K16006
|
|---|
| 研究機関 | 国立研究開発法人産業技術総合研究所 |
|---|
研究代表者 |
Schuldt Jacob 国立研究開発法人産業技術総合研究所, 情報技術研究部門, 研究員 (80750893)
|
|---|
| 研究期間 (年度) |
2015-04-01 – 2018-03-31
|
| キーワード | cloud security / encryption / related randomness / signatures / related key security |
|---|
| 研究実績の概要 |
The main research achievements obtained as part of this project during FY2015 consist of the following two results, each treating a different aspect of cloud-based security systems: (1) Development of a generic transformation for hardening a public key encryption scheme to be secure against certain types of related randomness attacks, and (2) Investigation and enhancements of the security against related key attacks of commonly used signature schemes.
Security against related randomness attacks plays an important role in cloud-based environments based on virtualization. The result mentioned in the first item above, demonstrates how any public key encryption scheme can be converted into a scheme secure against related randomness attacks for hard-to-invert relations, thereby providing a general technique for achieving basic security properties desirable in a cloud-based environment. This result was published in IMA Cryptography and Coding 2015, and was furthermore awarded the best paper award.
Security against related key attacks should be considered for devices that might be captured and tampered with by an adversary, and are hence relevant for cloud-based systems in which IoT or mobile user devices interact with a cloud-based service. In the result mentioned in the second item above, we provide enhancements to commonly used signature schemes that strengthen the security against related key attacks. Such schemes might be used to authenticate data from a device or the device itself. This results was published in Information Security and Cryptology 2015.
|
| 現在までの達成度 (区分) |
現在までの達成度 (区分)
1: 当初の計画以上に進展している
理由
The project is progressing more smoothly than initially anticipated, as a general technique for strengthening public key encryption to provide security properties relevant for a cloud-based environment, has already been developed (result mentioned in item (1) above). The significance of the result has furthermore been recognized via the IMA Cryptography and Coding best paper award. However, more importantly, this work lays the foundation for the continued investigation of related randomness security in this project, and is likely to lead to further significant results.
|
| 今後の研究の推進方策 |
As the project is progressing more smoothly than anticipated, the the plan is to immediately advance to the next stage of the project. More precisely, the plan is to consolidate the results, primarily regarding related randomness security of encryption i.e. expand the results to cover larger classes of relations, re-evaluate the constructed security models, and attempt to construct highly efficient schemes that provides an attractive tradeoff for cloud-based systems, in terms of the achieved security and any potential performance penalties.
At a later stage in the project, the plan is to expand focus to additional primitives, like signatures and key agreement, and potentially expand on the obtain results mentioned in item (2) above.
|
| 次年度使用額が生じた理由 |
The full amount allocated to the previous year (FY2015) has not been used as the expenses regarding publication costs and travel have been lower than expected.
|
| 次年度使用額の使用計画 |
Since I expect the number of publications related to this project to increase in this financial year (FY2016), I plan to use the remaining amount from the previous financial year (FY2015) to cover the additional publication costs and travel expenses in connection with presentation of the obtained results in this financial year (FY2016).
|
