With the evolvement of the Internet of things (IoT), privacy and security have become the primary indicators for users to deploy IoT applications. In the gateway-based IoT architecture, gateways aggregate data collected by perception-layer devices and upload message packets to platforms, while platforms automatically push different categories of data to different applications. However, security in processes of data transmission via gateways, storage in platforms, access by applications is the major challenge for user privacy protection. To tackle this challenge, this article presents a secure IoT scheme based on a fine-grained multi-receive signcryption scheme to realize end-to-end secure transmission and data access control. To enhance the security of online application decryption keys, we design a distributed threshold decryption scheme based on secret-sharing. Moreover, from the provable security perspective, we demonstrate that the scheme can achieve the expected IND-CCA security and EUF-CMA security. After the performance analysis, evaluation results show that the computational performance is efficient and linearly subject to the number of messages and the number of receivers.

中文翻译：

---

基于物联网网关应用的高效分布式解密方案

随着物联网（IoT）的演进，隐私和安全已经成为用户部署物联网应用的首要指标。在基于网关的物联网架构中，网关将感知层设备采集的数据进行聚合，并将消息包上传到平台，而平台自动将不同类别的数据推送到不同的应用。然而，数据通过网关传输、平台存储、应用访问等过程的安全性是用户隐私保护的主要挑战。为了应对这一挑战，本文提出了一种基于细粒度多接收签密方案的安全物联网方案，以实现端到端的安全传输和数据访问控制。为了增强在线应用程序解密密钥的安全性，我们设计了一种基于秘密共享的分布式阈值解密方案。此外，从可证明的安全性角度，我们证明了该方案可以实现预期的 IND-CCA 安全性和 EUF-CMA 安全性。经过性能分析，评估结果表明，计算性能是高效的，并且与消息数量和接收者数量呈线性关系。