Authors: Cong Peng, Jianhua Chen, Pandi Vijayakumar, Neeraj Kumar, Debiao He
Title: Efficient distributed decryption scheme for IoT gateway-based applications
Journal: ACM Transactions on Internet Technology

Abstract: With the evolvement of the Internet of things (IoT), privacy and security have become the primary indicators for users to deploy IoT applications. In the gateway-based IoT architecture, gateways aggregate data collected by perception-layer devices and upload message packets to platforms, while platforms automatically push different categories of data to different applications. However, security in processes of data transmission via gateways, storage in platforms, access by applications is the major challenge for user privacy protection. To tackle this challenge, this paper presents a secure IoT scheme based on a fine-grained multi-receive signcryption scheme to realize end-to-end secure transmission and data access control. To enhance the security of online application decryption keys, we design a distributed threshold decryption scheme based on secret-sharing. Moreover, from the provable security perspective, we demonstrate that the scheme can achieve the expected IND-CCA security and EUF-CMA security. After the performance analysis, evaluation results show that the computational performance is efficient and linearly subject to the number of messages and the number of receivers.
摘要：随着物联网的发展，隐私性和安全性已成为用户部署物联网应用的主要关注点。在基于网关的物联网架构中，网关聚合感知层设备收集的数据并将消息包上传到平台，而平台则自动将不同类别的数据推送到不同的应用服务端。但是，网关数据传输、平台数据存储、应用程序访问的安全性是这个场景下保护用户隐私保护的主要挑战。为了应对这一挑战，本文提出了一种基于细粒度多接受者签密方案的安全物联网方案，以实现端到端的安全传输和数据访问控制。为了提高在线应用程序解密密钥的安全性，我们设计了一种基于秘密共享的分布式门限解密方案。此外，本文从可证明的安全性角度证明了该方案可以实现预期的IND-CCA安全性和EUF-CMA安全性。经过性能分析，评估结果表明计算性能是高效的，计算开销与消息的数量和接收者的数量线性相关。