Recently, the Industrial Internet of Things (IIoT) has become increasingly important for applications in the industry. IIoT has essentially become a prime security focus for implementing secure communication. Among the available cryptographic tools, identity-based signcryption provide a sound solution to fulfill the security requirement of IIoT. On the other hand a generalized proxy signcryption can

In recent years, QR code is popular online and offline, and it is an ideal media for secret sharing. This paper utilizes the error correction capacity of QR code to propose an (n, n)-threshold secret sharing scheme for QR code. A secret QR code can be split and encoded into n cover QR codes. The generated marked QR codes still carry cover messages so that they will greatly reduce the suspicion of unauthorized

The three primary requirements in privacy coin are sender anonymity, receiver anonymity, and transaction amount obscurity. In the process of achieving these three requirements, it can result in some side-effects. Some of the side-effects include large blockchain sizes, unpruneable blockchain, unverifiable total coin mintage, and complicated protocol. In this paper, we propose a coin privacy solution

Biometric template data protection is critical in preventing user privacy and identity from leakage. Random projection based cancelable biometrics is an efficient and effective technique to achieve biometric template protection. However, traditional random projection based cancelable template design suffers from the attack via record multiplicity (ARM), where an adversary obtains multiple transformed

Internet of Things (IoT) and edge-enabled networking infrastructures have been used to provide data processing capabilities at the edge rather than transferring it to the concerned cloud in the smart cities. However, security and privacy of both data and device Ci are among common issues associated with the edge-enabled IoT networking paradigm. Numerous edge-enabled mechanisms have been presented in

The rapid growth of Android apps and its worldwide popularity in the smartphone market has made it an easy and accessible target for malware. In the past few years, the Android operating system (AOS) has been updated several times to fix various vulnerabilities. Unfortunately, malware apps have also upgraded and adapted to this evolution. The ever-increasing number of native AOS permissions and developers’

Proxy re-encryption enables the conversion of ciphertext of a message encrypted with one users public key into a ciphertext that could be decrypted by another users private key. Proxy re-encryption can be used as tool for delegation in wide variety of applications. Since proxy re-encryption is used as a primitive for delegation in varied applications, the primitive should be secure and efficient. Also

Out of various cryptographic attacks, Chosen-Plaintext Attack (CPA) is one of the most powerful and widely used attack on encrypted images. In order to efficiently resist such a strong attack, a novel chaos and compressive sensing based image encryption algorithm is presented in this work. Firstly, the original plaintext image is compressed via Orthogonal Matching Pursuit with Partially Known Support

Zero-day malware samples pose a considerable danger to users as implicitly there are no documented defences for previously unseen, newly encountered behaviour. Malware detection therefore relies on past knowledge to attempt to deal with zero-days. Often such insight is provided by a human expert hand-crafting and pre-categorising certain features as malicious. However, tightly coupled feature-engineering

Nowadays, malware campaigns have reached a high level of sophistication, thanks to the use of cryptography and covert communication channels over traditional protocols and services. In this regard, a typical approach to evade botnet identification and takedown mechanisms is the use of domain fluxing through the use of Domain Generation Algorithms (DGAs). These algorithms produce an overwhelming amount

The existing SVD based watermarking techniques insert watermark into the singular component which causes the false positive problem (FPP). To overcome this problem, a robust watermarking technique using a chaotic kbest gravitational search algorithm (CKGSA) in DCT and SVD domain is proposed. To eliminate the FPP, the watermark is embedded into the principal component (PC) of the cover image rather

Attribute-Based Encryption (ABE) is an emerging cryptographic technique that allows one to embed a fine-grained access control mechanism into encrypted data. In this paper we propose a novel ABE scheme called SEA-BREW (Scalable and Efficient Abe with Broadcast REvocation for Wireless networks), which is suited for Internet of Things (IoT) and Industrial IoT (IIoT) applications. In contrast to state-of-the-art

Along with the development of Internet of Things (IoT) technology and Vehicular Ad-Hoc Networks (VANETs), security and effectiveness of road utilization have also been greatly improved. Currently, many certificateless signature schemes have been proposed to improve the communication speed while protecting the communication contents and real identities of the vehicles. Among others, some schemes realize

While the Internet has become an indispensable aspect of personal and professional lives, it has also served to render many individuals vulnerable to cybersecurity threats. Thus, the promotion of cybersecurity behaviors can effectively protect individuals from these threats. However, cybersecurity behaviors do not necessarily come naturally, and people need support and encouragement to develop and

Recent advances in information technology go beyond the simple convenience offered to individuals, leading to smart city technology that provides urban facilities and better quality of life. Smart City is a heterogeneous system consisting of a large IoT-based network, offering various applications for citizens by collecting and analyzing real-time information. As intelligent, efficient digital systems

Poor security practices among smartphone users, such as the use of simple, easily guessed passcodes for logins, are a result of the effort required to memorize stronger ones. In this paper, we devise a concept of “open code” biometric tap pad to authenticate smartphone users, which eliminates the need of memorizing secret codes. A biometric tap pad consists of a grid of buttons each labeled with a

Memory erasure protocols serve to clean up a device’s memory before the installation of new software. Although this task can be accomplished by direct hardware manipulation, remote software-based memory erasure protocols have emerged as a more efficient and cost-effective alternative. Existing remote memory erasure protocols, however, still rely on non-standard adversarial models to operate correctly

Artificial intelligence (AI)-based technologies are actively used for purposes of cyber defense. With the passage of time and with decreasing complexity in implementing AI-based solutions, the usage of AI-based technologies for offensive purposes has begun to appear in the world. These attacks vary from tampering with medical images using adversarial machine learning for false identification of cancer

Biometric is an emerging technique for user authentication thanks to its efficiency compared to the traditional methods, such as passwords and access-cards. However, most existing biometric authentication systems require the cooperation of users and provide only a login time authentication. To address these drawbacks, we propose in this paper a new, efficient continuous authentication scheme based

Recently, many studies show that deep neural networks (DNNs) are susceptible to adversarial examples, which are generated by adding imperceptible perturbations to the input of DNN. However, in order to convince that adversarial examples are real threats in real physical world, it is necessary to study and evaluate the adversarial examples in real-world scenarios. In this paper, we propose a natural

A recently proposed group key distribution scheme known as UMKESS, based on secret sharing, is shown to be insecure. Not only is it insecure, but it does not always work, and the rationale for its design is unsound. UMKESS is the latest in a long line of flawed group key distribution schemes based on secret sharing techniques.

Insurance agencies and digitally recorded healthcare databases can help society to decrease the high-level complexity and the cost of the entire healthcare ecosystem. The general data protection regulation provides the right to its data owner’s to know how data is stored, and for which purpose his/her data is being used. However, the healthcare data flow through an open channel, i.e., the Internet

The growing volume of cloud-based applications, services and cyber-physical IoT solutions presents vital challenges linked to resource allocation, misconfiguration, scaling, and running software updates. Various solutions and applications have different hardware and energy requirements of the involved elements. Hence, the recent technology trends suggests transferring some more complex computational

Elliptic curve cryptography has received great attention in recent years due to its high resistance against modern cryptanalysis. The aim of this article is to present efficient generators to generate substitution boxes (S-boxes) and pseudo random numbers which are essential for many well-known cryptosystems. These generators are based on a special class of ordered Mordell elliptic curves. Rigorous

Fraudulent Resource Consumption (FRC) attacks can be synthesized by subtly consuming metered resources of the cloud servers over a sustained period of time. The objective of the attacker in such attacks is to exploit the utility pricing model by fraudulently consuming cloud resources. This skillful over-consumption of resources results in a considerable financial burden to the client. These attacks

eBook reader surveillance can have a strong negative effect on freedom of association and freedom of expression. In this paper we consider the potential for Kindle surveillance through a review of two of Amazon’s patents. We then consider the impact of reader surveillance on freedom of association through a study of US and European law. Particular emphasis is placed on the chilling effect of loss of

Mobile Edge Computing (MEC) is an emergent paradigm that brings computation, storage, and network resources close to mobile users. It allows applications to execute near the user, which are delay-sensitive and content-aware. Since the MEC systems comprise distributed edge devices managed by self-governing people, they are more liable to security and privacy threats. Therefore, acure and efficient authentication

This paper proposes a reversible authentication scheme for demosaiced images with the capability to approximately recover original contents of tampered parts. The existing methods protect the marked images to a large extent; however, they cannot detect some intentional modifications, or lack the self-recovery capability of tampered regions. The proposed method uses the most significant bits (MSBs)

DDoS is becoming one of the most powerful and dangerous cyber-attacks. Tremendous research efforts have already been carried out in the detection of DDoS attacks. Entropy is a statistical measure of attack detection. A study on variation in the distribution of network traffic features is undertaken in this work. The network traffic parameters that are used for DDoS detection include the destination

A data encryption model is developed using Brownian Motion based confusion and intertwining logistic map based diffusion method. In the existing encryption models, shuffling is irrelevant for the pixels with same value i.e. (all white/black/same colour) and models are prone to differential and various statistical attacks. This article investigates random data insertion to ensure the validity of shuffling

Homomorphic Encryption (HE) aims to perform computations on encrypted data. Still in research stage, a lot of HE schemes have been created but their comparison remains costly as execution exhibits prohibitive costs. PAnTHErS is a HE schemes modeler. Modeling with a common formalism allows the evaluation of input parameters variation impact on performances of a HE scheme execution i.e. on its execution

Privacy-preserving data aggregation has been studied extensively over the past decades, but there are still some concerns remained. For example, some schemes cannot resist against internal attacks, especially when the internal attack is launched by either the data centers that allocate the system security parameters or the attacker who shares the common information with the targeted user. In this paper

Indoor localization is widely used as enabling technology for location-based services, such as advertising, indoor routing, and behavioral analysis. To keep these features available, service providers passively collect a large amount of data that may reveal strictly personal information about an individual. As an example, a timestamped mobility trace acquired in a mall may help the business owner to

This paper presents a comprehensive survey of authenticated key agreement protocols, which have been proposed for multi-server architectures. The growing use of cloud-based services has made multi-server authentication protocols a necessity. For a brief insight into the topic, the break-fix history of these protocols, vital functional and security requirements have been summarized. Protocols are categorized

DDoS attacks remain one of the top cyber threats targeting the financial, health care, retail, gaming, and political sectors, which affects Internet service disruption, data or monetary loss. Security experts have predicted that the development of 5G technology will increase the frequency and the vector of DDoS attacks. Moreover, enhanced DDoS attack technology utilises artificial intelligence [1]

Comparison with traditional network routing technology, multi-source network coding allows the routers to encode the received data and has the merits of large throughput, strong robustness and fast speed. In addition, certificateless public key cryptosystem (CL-PKC) is both certificate-free and key escrow-free. From now, there is no certificateless signature suitable for multi-source network coding

Hou et al. introduced a (2, n) block-based progressive visual cryptographic scheme (BPVCS). In (2, n)-BPVCS, a secret image is subdivided into n non-overlapped image blocks. When t (2 ≤ t ≤ n) participants stack their shadow images, the image blocks belonged to these t participants will be recovered. Unfortunately, Hou et al.’s (2, n)-BPVCS suffers from the cheating problem. Additionally, Hou et al

Malware threats and privacy protection are two of the biggest challenges in the cloud computing environment. Many studies have focused on the accuracy of malware detection, but they did not sufficiently take into account the privacy protection of cloud tenants. This paper proposes a novel malware detection model, based on semi-supervised transfer learning (SSTL) for the cloud, that consists of detection

It is well known that the designing or improving embedding cost becomes a key issue for current steganographic methods. Unlike existing works, we propose a novel framework to enhance the steganography security via post-processing on the embedding units (i.e., pixel values and DCT coefficients) of stego directly. In this paper, we firstly analyze the characteristics of STCs (Syndrome-Trellis Codes)

Like any emerging and disruptive technology, multiple obstacles are slowing down the Internet of Things (IoT) expansion for instance, multiplicity of things’ standards, users’ reluctance and sometimes rejection due to privacy invasion, and limited IoT platform interoperability. IoT expansion is also accompanied by the widespread use of mobile apps supporting anywhere, anytime service provisioning to

With the development of communication and information technologies, the telemedicine system has infiltrated many aspects of medicine field. It allows doctors to simultaneously diagnose patients in different areas, which provides great convenience to people. However, the increasing medical data brings serious challenges to people, such as data storage and processing. To reduce data management costs

Present-day organizations continue to expose their critical information infrastructures over the Internet for facilitating accessibility; substantially raising concerns about the security of data from both outsiders and insiders. In this paper, we propose a novel approach for detecting intrusive attacks on databases by assessing the risk for incoming transaction based upon the conflation of multiple

Pollution attacks in network coding result in the waste of bandwidth and computational resources. Several homomorphic message authentication code (HMAC) and signature-based schemes have been proposed to mitigate such attacks. In these schemes, authentication is achieved by appending several HMAC tags with or without a signature to the packet payload. This approach negatively affects the throughput

The technical features of blockchain, including decentralization, data transparency, tamper-proofing, traceability, privacy protection and open-sourcing, make it a suitable technology for solving the information asymmetry problem in personal credit reporting transactions. Applying blockchain technology to credit reporting meets the needs of social credit system construction and may become an important

Internet-of-Things (IoTs) are one of the most promising technologies in the present world. It connects people, processes and things. The increasing number of devices in IoT invoking various security and privacy issues. Authentication is one of them which should be measured at the very first level when a device comes into the network. Many authentication schemes are in use which follow the traditional

This paper demonstrates an efficient programmable Cellular Automata (CA) based hybrid encryption technique (PCHET) for chatting applications involving multiple clients who can chat simultaneously with each other. The proposed scheme is a symmetric key encryption technique, still very lightweight and it is easy to implement. The base of the work lies in the attributes of various CA rules and their cryptographic

Technology and usage advances in wireless communication and smart mobile devices with localization capabilities enable a large number of emerging applications of location-based services, e.g. mobile crowdsourcing applications, which are facilitating our daily life. However, collecting and sharing location data to service providers of applications will give rise to mobile users’ concerns on their privacy

The interest in trajectory data has sensibly increased since the widespread of mobile devices. Simple clustering techniques allow the recognition of personal gazetteers, i.e., the set of main points of interest (also called stay points) of each user, together with the list of time instants of each visit. Due to their sensitiveness, personal gazetteers are usually anonymized, but their inherent unique

Ransomware is a type of malware that blocks access to its victim's resources until a ransom is paid. Crypto-ransomware is a type of ransomware that blocks access to its victim's files by the use of an encryption algorithm. This encrypted file remains permanently blocked, even if the victim is able to remove the ransomware from the infected file. This has forced victims to pay the ransom demanded in

Malware remains the number one threat for individuals, enterprises, and governments. Malware’s aftermath can cause irreversible casualties if the requirements of the attackers are not met in time. Security researchers’ primary objective is protecting the assets that a person/company possesses. They are in a constant battle in this cyberware facing attackers’ malicious intent. To compete in this arms

One of the most important challenges in secure and efficient communications for Vehicular Ad hoc NETworks (VANET) is proposing an appropriate authentication scheme. On the other hand, commonly used authentication approaches cannot be directly applied since they would lead to the violation of the privacy of the involved vehicles. In this paper, to address the security and privacy issues in VANETs, we

The utility of virtual circuit (VC) based devices - UAVs, Drones, and similar other IoT based devices have gained immense momentum in the present day and age. These devices are predominantly used for aerial surveying in sensitive and remote areas. It is alarming that issues pertaining to stalking and information control have increased with the growth of technology. This paper presents a Blockchain

This study adopted a metaheuristic approach based on the firefly algorithm (FA) optimization to generate an appropriate configuration for an 8 × 8 Substitution boxes (S-boxes). The FA can construct a strong S-box that satisfies the stipulated criteria by rapidly searching for the optimal or near-optimal feature subsets that minimize a given fitness function. The FA is a newly developed computation

Security risk assessment is done to identify the vulnerabilities of a client’s application and develop strong security measures within budgetary constraints. However, while migrating to the Cloud platform, a generic notion of their publicly available security policies make it challenging for clients to assess the security threats solely relevant to their applications. Additionally, traditional risk

Spatiotemporal chaotic systems are widely used for image encryption due to their better chaos, more chaotic sequences and more complex dynamic behavior. This paper proposes a new spatiotemporal chaotic system named Multiple dynamically coupled map lattices (MDCML). The proposed system introduces dynamic coupling parameter, which enhances ergodicity and improves pseudo-randomness and chaos of the system

The rise of edge computing enables local network management. Services are no longer clustered inside the cloud but rather spread all over the whole network. In this paper, we propose a method for deploying security services within an IoT network according to devices capabilities. Our method models an IoT network as a weighted graph using device capabilities. Using the latter, we propose to identify

The botnet has been one of the most common threats to network security. Among all emerged botnet, Peer to Peer (P2P) botnets are more perilous and resistant due to their distributed nature. In addition to their resiliency against takedown strategies, modern P2P botnets are stealthier in the way they perform fraudulent activities. One of the main challenges to detect P2P bots/botnets is the presence

Cloud computing is admired as a notable computing terminology in which facilities of the computing framework are rendered as aid over Internet services. In the era of cloud computing, lightweight devices can be used to afford remote e-healthcare, which facilitates the development of remote healthcare consultations, monitoring of patients’ health reports, and medical research. The downside of the cloud

Analyzing safety and security together in the concept stage of system development can reduce redundant work and inconsistency in the identification of safety and security requirements. STPA is a safety analysis technique that also allows analyzing security concerns. STPA does not employ threat models to identify loss scenarios. Threat models allow identifying, enumerating, and prioritizing potential