研究課題/領域番号 |
15K16006
|
研究機関 | 国立研究開発法人産業技術総合研究所 |
研究代表者 |
Schuldt Jacob 国立研究開発法人産業技術総合研究所, 情報技術研究部門, 研究員 (80750893)
|
研究期間 (年度) |
2015-04-01 – 2018-03-31
|
キーワード | encryption / signatures / related randomness / related key attacks |
研究実績の概要 |
One of the main focus areas of this project during FY2016 has been signature schemes with security properties required in cloud-based security systems. This has led to research results in two different areas: (1) analysis of the security of standardized signatures schemes when used with weak or maliciously manipulated randomness, which can occur in cloud-based environments based on virtualization, and (2) analysis of the security against related-key attacks against standard signature schemes, which is relevant for the security of devices interacting with cloud-based services.
The results obtained as part of (1) continue the research of related randomness security started in the previous year of the project, but with a focus on signatures as opposed to encryption, whereas the results obtained as part of (2) directly builds on results obtained in the first year of the project.
Additionally, research into a new type of attack in which the considered system makes use of a maliciously designed pseudorandom generator was started during FY2016. The recent controversy regarding the Dual EC-DRBG pseudorandom generator highlights the relevance of this type of attack. This research has already led to results published at CRYPTO'16, the highest ranking conference on cryptography according to Google Scholar.
|
現在までの達成度 (区分) |
現在までの達成度 (区分)
2: おおむね順調に進展している
理由
The project is on track and is progressing according to the research plan. This year has led to publication of results on related randomness secure and related key attack secure signature schemes, as well as results on maliciously designed pseudorandom number generators, which expands the considered research area of weak or maliciously generated randomness. This progress lives up to the expectations set out in the research plan.
|
今後の研究の推進方策 |
In the final year of the project, the plan is to consolidate the results obtained during the first two years, both with respect to encryption and signature schemes, and furthermore to attempt to apply the techniques developed in the first two years to key agreement schemes. In particular, consolidation of the results on related randomness security will be a focus area, with a special emphasis on limitations of the already established results and how to overcome these.
|
次年度使用額が生じた理由 |
As expenses in FY2016 related to publications and travel have been lower than expected, the full amount allocated for FY2016 has not been used.
|
次年度使用額の使用計画 |
The amount transfer from FY2016 to FY2017 will be spend to support the publication and presentation of research results obtained during 2017.
|