Abstract

Quantum digital signatures ensure unforgeable message authenticity and integrity using quantum principles, offering unconditional security against both classical and quantum attacks. They are crucial for secure communication in high-stakes environments, ensuring trust and long-term protection in the quantum era. Nowadays, the majority of arbitrated quantum signature (AQS) protocols encrypt data qubit by qubit using the quantum one-time pad (QOTP). Despite providing robust data encryption, QOTP is not a good fit for AQS because of its susceptibility to many types of attacks. In this work, we present an efficient AQS protocol to encrypt quantum message ensembles using a distinct encryption technique, the chained controlled unitary operations. In contrast with existing protocols, our approach successfully prevents disavowal and forgery attacks. We hope this contributes to advancing future investigations into the development of AQS protocols .

Abstract

Cloud-based storage service has emerged as a promising alternative to managing local storage, offering users additional features, such as storage, backup, and restoration of various resources, including software, applications, and sensitive private information, within a virtual database, while ensuring data confidentiality and security. However, the widespread use of cloud services by individuals and organisations raises concerns regarding user accessibility and data security due to increasing social threats and adversarial attacks. Searchable encryption (SE) has been introduced to address these issues, providing a secure environment for a convenient and effective way of data searching and sharing. SE models have been advanced by integrating blockchain functionalities to tackle certain existing vulnerabilities and enhance user accessibility, data privacy, and integrity. This survey work explores various research works on SE techniques leveraging cloud and blockchain functionalities, discussing and categorizing the diverse approaches based on different criteria. This study also discusses the different enhancements made to SE techniques over the years, including the underlying requirements that led to the inclusion of blockchain functionalities. Moreover, this study provides a comparative analysis of existing survey works done in this area, which highlights a lack of recent literature surveys that thoroughly explore blockchain-based public key encryption with keyword search (PEKS) schemes. Particularly, we delve into the technical aspects of PEKS by classifying, analyzing and comparing different functionalities based on various aspects. The survey concludes with a comparative analysis of existing PEKS solutions and a discussion on identified research gaps, aiming to improve future research on PEKS approaches in this emerging field.

Abstract

Maritime communication, critical for global oceanic trade, faces challenges and opportunities with advancements in Information and Communication Technology (ICT). Traditional methods are susceptible to interception due to open channels, limited authentication, jamming, and other security risks. Securing vessel movements and locations in Internet of Vessels (IoV) is essential to prevent unauthorized data interception and tampering during transmission. We propose a ship authentication method using location-based secure keys to ensure the confidentiality of a vessel’s whereabouts. The proposed scheme’s robustness is validated through formal and informal security analyses, and formal verification using the Scyther automated verification tool, demonstrating its effectiveness against potential attacks in maritime networks. Comparative studies indicate that utilizing location-based keys maintains anonymity and untraceability without imposing significant computational or communication burdens. Experimental findings from comprehensive big data analytics and simulations using NS3 validate the scheme’s feasibility and performance.

Abstract

The metaverse, a collection of virtual worlds offering a variety of social activities mirroring real-life interactions, is garnering increasing attention. Consequently, the need to ensure security and privacy within these spaces has become paramount. Metaverse users can create multiple avatars, a feature that can be exploited to deceive or threaten others, leading to significant internal security concerns. Additionally, users in the metaverse are susceptible to several external security threats due to the public nature of their communications with service providers.To address these challenges, we propose a novel quantum authentication scheme leveraging blockchain technology, decentralized identifiers, and verifiable credentials. This scheme enables secure identity verification and authentication for metaverse users. By allowing users to independently prove their identity without relying on service providers, the proposed approach mitigates privacy concerns associated with the management of personal information. Furthermore, our scheme achieves mutual authentication between the user and the service provider, while also being resilient against a variety of attacks, including unconditional security breaches, replay attacks, eavesdropping, man-in-the-middle attacks, and impersonation attempts. With a computation time of 17.4608 ms and a communication cost of 872 bits, the suggested protocol outperforms current solutions and provides superior security for the metaverse environment during data transmission and storage. Furthermore, we examine the operational capabilities and security features using the latest technology and techniques.

Abstract

Air Smart Vehicular Networks (ASVNs) have become increasingly essentials in military and commercial industries in recent years, where drones are deployed to interact among each other via wireless medium in airspace due to their agility and versatility. ASVNs can form a closed loop from data perception to final execution by integrating communication devices, computation tools, and control modules. However, the used unencrypted and publicly available navigational signals like Global Positioning System (GPS) and communication over (public) insecure Internet connections, including wireless networks and WiFi, make ASVNs vulnerable to security breaches. Attackers can easily gain access to a drone's configuration and take control remotely, by launching various attacks such as GPS spoofing, false sensor data injection, maldrone malware injection, eavesdropping, man-in-the-middle, Denial-of-Service (DoS), replay, forgery, and Skyjack attacks. This paper proposes a robust and efficient multi-factor biometric-based security mechanism using blockchain as a service to address the security and privacy breaches in ASVNs. A comparative study demonstrates that the proposed scheme provides superior security and better functionality features with low communication and computation overheads as compared to the existing analogous schemes. The feasibility of the proposed scheme in real-life drone applications is also demonstrated through a real-time testbed and blockchain simulation. Furthermore, a detailed security analysis using the automated software validation tool, namely Scyther, verifies the proposed scheme's significant level of security

Abstract

Owing to the growth of the intelligent Internet of Vehicles (IoV), the notion of the Social Internet of Vehicles (SIoV) has emerged. SIoV is based on the intelligent IoV combined with social needs, and it uses existing vehicle self-organizing network technologies to enable in-vehicle social networking platforms. The rapid development of the Internet of Things (IoT) has led to an explosion in the number of in-vehicle electronic devices, external facilities, vehicles, and a massive amount of real-time data generated by these vehicles, devices, drivers, passengers, and other social relationships. This explosion has put tremendous load pressure on servers; hence, researchers have started to apply fog computing to SIoV to spread server overload. However, there are still a number of risks and challenges associated with SIoV. Therefore, we propose an authentication scheme for fog computing-enabled SIoV that guarantees user anonymity and security. Detailed security analysis proves that the proposed scheme can secure against known attacks. Finally, we evaluate the performance of our scheme, and the results show that it has excellent security, computation, and communication performances.

Abstract

The key factor accelerating the development of intelligent transportation and reduced traffic congestion is the vehicle ad hoc network (VANET). However, the swift upsurge in the diversity of vehicles puts the development of the vehicle network's safety system through plentiful glitches. To receive the messages promptly, attain the confidentiality of vehicle identity, and authentication swiftly in VANET, we present a new identity-based aggregate signature (IBAGS) system using the lattices. The proposed lattice-based method presented in this article combines the batch verification and aggregate signature scheme (ASS), which finishes the authentication of several vehicular units and aggregates multiple users' signatures into a single (compact) signature. This boosts the competence of the verification process. Furthermore, the vehicle pseudo-identities are also utilized to meet the goals of vehicle identity and privacy protection. Finally, dependable cloud storage technology efficiently enables the secure storing of message signatures. This article demonstrates the lower storage overhead and increases authentication efficiency while maintaining security compared to similar competing schemes.

Abstract

The rise of smart cities is directly connected to the increasing use of vehicles. The growing vehicle utilization has driven the emergence of Vehicular Ad-hoc Networks (VANETs), facilitating instant information exchange among vehicles. The system provides essential information regarding road conditions, traffic patterns, and more relevant data. VANETs encompass two fundamental categories of communication exchanges, namely Vehicle-to-Vehicle (V2V) and Vehicle-to-Infrastructure (V2I). V2I technology facilitates the integration of cars and transportation infrastructure, enabling effective communication between vehicles and infrastructure. Nevertheless, the potential of V2I communication has various security concerns arising from prevalent security threats. Current authentication techniques encounter challenges regarding complexity, security, and privacy considerations. We designed a hash-based lightweight and anonymous authentication scheme to address the aforementioned restrictions and enhance the effectiveness of authentication in V2I architecture. This scheme effectively combines identity, password, and bio-metric to enhance resistance against impersonation, denial of service, and privileged insider attacks. The devised scheme distinguishes itself by a comparative analysis and security proofs, highlighting its superior capability in guaranteeing secure authentication in V2I communication. The comprehensive security analysis conducted formally and informally showcases the robustness of the proposed solution against several threats. The performance evaluation results show that our scheme demonstrates a decrease in the computational cost of 51.40% approximately and a reduction in communication overhead of around 22.57%. These results establish the efficiency and scalability of the proposed scheme as a viable solution for V2I architecture.

Abstract

The Internet of Nano Things (IoNT) is increasingly recognized as a superior alternative to the Internet of Things (IoT) due to its inherent benefits. However, the security of IoNT remains an open challenge that needs to be addressed at various levels. Given the highly sensitive data shared in IoNT, the development of security protocols becomes imperative. Despite the emergence of some methodologies, many security aspects have been overlooked, and no concrete cryptosystems have been developed. In this paper, we propose an Identity-Based Encryption (IBE) scheme built on the Learning With Errors (LWE) assumption. We design a lightweight protocol with the consideration of resource-constrained devices involved in the IoNT network. The proposed scheme is resistant to various attacks, including side-channel analysis, replay attacks, man-in-the-middle attacks, plaintext and ciphertext attacks, ensuring unforgeability. Additionally, performance evaluation indicates that the proposed scheme outperforms existing ones in terms of computational and communication costs.

Abstract

6G (sixth-generation wireless), the successor to 5G cellular technology, operates at higher frequencies than its predecessor and supports significantly greater capacity and markedly reduced latency. Healthcare is treated as a complex system with various stakeholders, like doctors, patients, hospitals, pharmaceutical companies as well as healthcare decision-makers. The innovations in the Internet of Things (IoT) and incorporating emerging technology in the healthcare systems provide the quality of services to the people and save millions of lives. However, patient privacy and secure interchange of medical data from various healthcare providers need to be adequately addressed. Furthermore, incorporating blockchain in the healthcare system helps to make the system more transparent and secure due to inherent properties of the blockchain. In addition, Big Data analytics helps in analyzing large datasets from hundreds of patients, and then in identifying various clusters and correlation among datasets, and also in developing predictive models. In this paper, we aim to propose a new smart contract-based access control for 6G-enabled blockchain assisted in the healthcare system (in short, we call it as SACS). SACS provides a patient to communicate with its healthcare management authority securely and helps to interchange his/her medical information across healthcare providers. A detailed security analysis, experimental results and comparative study assure that the proposed SACS is secure by preventing possible active and passive attacks, andrequires less computational and communication costs as compared to those for other relevant competing schemes.