Top

Automatic Control and Computer Sciences

Published in:

01-12-2020

Isogeny-Based Cryptographic Access Control

Authors: E. B. Aleksandrova, A. A. Shtyrkina, A. V. Yarmak

Published in: Automatic Control and Computer Sciences | Issue 8/2020

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract—

Cryptographic access control is a relatively new concept that implements the access control rules of some subjects to an object using cryptographic primitives. A quantum computer of sufficient capacity allows solving in polynomial time the discrete logarithm and integer factorization problems, which are the basis of most modern public-key cryptosystems. In this regard, there is a need to search for new problems that are resistant to attacks on both classical computers and quantum computers. Computing the isogenies of supersingular elliptic curves is one of the most challenging problems. A scheme for cryptographic access control based on isogenies is proposed. Security analysis of the protocol and the results of practical implementation in the SAGE computer algebra system are given.

previous article Ensuring Cyber Resilience of Large-Scale Network Infrastructure Using the Ant Algorithm

next article Self-Regulation of the Network Infrastructure of Cyberphysical Systems on the Basis of the Genome Assembly Problem

Lavrova, D., Zaitceva, E., and Zegzhda, P., Bio-inspired approach to self-regulation for industrial dynamic network infrastructure, CEUR Workshop Proc., 2019, vol. 2603, pp. 34–39.

Zegzhda, D.P. and Pavlenko, E.Yu., Digital manufacturing security indicators, Autom. Control Comput. Sci., 2018, vol. 52, no. 8, pp. 1150–1159. https://doi.org/10.3103/S0146411618080333CrossRef

Zegzhda, D.P., Zegzhda, P.D., and Kalinin, M.O., Clarifying integrity control at the trusted information environment, Lect. Notes Comput. Sci., 2010, vol. 6258, pp. 337–344.CrossRef

Kalinin, M.O. and Pavlenko, E.Y., Increasing the fault tolerance and availability of software defined networks using network equipment control based on multiobjective optimization by service quality parameters, Autom. Control Comput. Sci., 2015, vol. 49, no. 8, pp. 673–678.CrossRef

Zegzhda, D.P. and Pavlenko, E.Y., Cyber-physical system homeostatic security management, Autom. Control Comput. Sci., 2017, vol. 51, no. 8, pp. 805–816.CrossRef

Lavrova, D., Zegzhda, D., and Yarmak, A., Predicting cyber attacks on industrial systems using the Kalman filter, 3rd World Conference on Smart Trends in Systems, Security and Sustainability, WorldS4 2019, 2019, pp. 317–321.

Pavlenko, E., Zegzhda, D., and Poltavtseva, M., Ensuring the sustainability of cyberphysical systems based on dynamic reconfiguration, Proceedings of 2019 IEEE International Conference on Industrial Cyber Physical Systems, ICPS 2019, 2019, pp. 785–789. https://doi.org/10.1109/ICPHYS.2019.8780193

Lavrova, D., Zegzhda, D., and Yarmak, A., Using GRU neural network for cyber-attack detection in automated process control systems, IEEE International Black Sea Conference on Communications and Networking (BlackSeaCom), Sochi, 2019, pp. 1–3.

Kalinin, M., Krundyshev, V., Rezedinova, E., and Zegzhda, P., Role-based access control for vehicular adhoc networks, 2018 IEEE International Black Sea Conference on Communications and Networking, BlackSeaCom 2018, 2018.

10.

Konoplev, A.S. and Kalinin, M.O., Access control system for distributed computing networks, Autom. Control Comput. Sci., 2016, vol. 50, no. 8, pp. 664–668.CrossRef

11.

Konoplev, A.S. and Kalinin, M.O., Tasks of providing information security in distributed computing networks, Autom. Control Comput. Sci., 2016, vol. 50, no. 8, pp. 669–672.CrossRef

12.

Kalinin, M., Zegzhda, P., Zegzhda, D., Vasiliev, Y., and Belenko, V., Software defined security for vehicular ad hoc networks, 2016 International Conference on Information and Communication Technology Convergence, 2016, pp. 533–537.

13.

Zegzhda, D.P. and Kalinin, M.O., Security assurance for the attribute-based access control systems, International Conference on Enterprise Information Systems and Web Technologies 2008, EISWT 2008, 2008, pp. 147–154.

14.

Kalinin, M.O. and Konoplev, A.S., Formalization of objectives of grid systems resources protection against unauthorized access, Nonlinear Phenom. Complex Syst. (Dordrecht, Neth.), 2014, vol. 17, no. 3, pp. 272–277.

15.

Konoplev, A.S. and Kalinin, M.O., Access control method in distributed grid computing networks, Autom. Control Comput. Sci., 2015, vol. 49, no. 8, pp. 679–683.CrossRef

16.

Shor, P.W., Algorithms for quantum computation: Discrete logarithms and factoring, Proceedings of 35th Annual Symposium on Foundations of Computer Science, Santa Fe, NM, 1994, pp. 124–134.

17.

NIST, Post-Quantum Cryptography. https://csrc.nist.gov/Projects/Post-Quantum-Cryptography.

18.

Merkle, R., Secrecy, authentication, and public key systems, PhD Thesis, Stanford Univ., 1979.

19.

Palmieri, P., Hash-based signatures for the Internet of Things, Proceedings of International Conference on Computing Frontiers (CF'18), Ischia, 2018, pp. 332–335.

20.

Grover, L.K., A Fast Quantum Mechanical Algorithm for Database Search, 1996. arXiv:quant-ph/9605043.

21.

Picnic. https://microsoft.github.io/Picnic/.

22.

McEliece, R.J., A public-key cryptosystem based on algebraic coding theory, DSN Prog. Rep., 1978, vols. 42–44, pp. 114–116.

23.

Krouk, E., Ovchinnikov, A., and Vostokova, E., About one modification of McEliece cryptosystem based on Plotkin construction, 15th International Symposium Problems of Redundancy in Information and Control Systems (REDUNDANCY), St. Petersburg, 2016, pp. 75–78.

24.

LUOV. https://www.esat.kuleuven.be/cosic/pqcrypto/luov/.

25.

Bos, J.W., et al., Post-quantum key exchange for the TLS protocol from the ring learning with errors problem, IEEE Symposium on Security and Privacy, San Jose, CA, 2015, pp. 553–570.

26.

Round5: Compact and Fast Post-Quantum Public-Key Encryption. https://round5.org/.

27.

ThreeBears. https://sourceforge.net/projects/threebears/.

28.

Silverman, J.H., The Arithmetic of Elliptic Curves, Springer Science & Business Media, 2009.CrossRef

29.

Teske, E., An elliptic curve trapdoor system, J. Cryptol., 2006, vol. 19, no. 1, pp. 115–133.MathSciNetCrossRef

30.

Rostovtsev, A. and Stolbunov, A., Public-key cryptosystem based on isogenies, IACR Cryptol. ePrint Arch., 2006, vol. 2006, p. 145.

31.

Childs, A., Jao, D., and Soukharev, V., Constructing elliptic curve isogenies in quantum subexponential time, J. Math. Cryptol., 2014, vol. 8, no. 1, pp. 1–29.MathSciNetCrossRef

32.

Jao, D. and De Feo, L., Towards quantum-resistant cryptosystems from supersingular elliptic curve isogenies, International Workshop on Post-Quantum Cryptography, Berlin–Heidelberg: Springer, 2011.

33.

Jao, D. and Soukharev, V., Isogeny-based quantum-resistant undeniable signatures, International Workshop on Post-Quantum Cryptography, Cham: Springer, 2014, pp. 160–179.

34.

Srinath, M.S. and Chandrasekaran, V., Isogeny-based quantum-resistant undeniable blind signature scheme, IACR Cryptol. ePrint Arch., 2016, vol. 2016, p. 148.

35.

Goyal, V., et al., Attribute-based encryption for fine-grained access control of encrypted data, Proceedings of the 13th ACM Conference on Computer and Communications Security, Alexandria, VA, 2006, pp. 89–98.

36.

Bethencourt, J., Sahai, A., and Waters, B., Ciphertext-policy attribute-based encryption, IEEE Symposium on Security and Privacy (SP'07), Berkeley, CA, 2007, pp. 321–334.

37.

Kroll, J.A., et al., Accountable Cryptographic Access Control. http://www.cs.yale.edu/homes/jf/kroll-paper.pdf.

38.

Zhu, Y., et al., Role-based cryptosystem: A new cryptographic RBAC system based on role-key hierarchy, IEEE Trans. Inf. Forensics Secur., 2013, vol. 8, no. 12, pp. 2138–2153.CrossRef

39.

Boneh, D., Sahai, A., and Waters, B., Functional encryption: Definitions and challenges, Theory of Cryptography Conference, 2011, pp. 253–273.

40.

Wang, H., Sheng, B., and Li, Q., Elliptic curve cryptography-based access control in sensor networks, Int. J. Secur. Networks, 2006, vol. 1, nos. 3–4, pp. 127–137.CrossRef

41.

Le, X.H., et al., An energy-efficient access control scheme for wireless sensor networks based on elliptic curve cryptography, J. Commun. Networks, 2009, vol. 11, no. 6, pp. 599–606.CrossRef

42.

Aleksandrova, E.B., Shtyrkina, A.A., and Iarmak, A.V., Post-Quantum Primitives in Information Security: Nonlinear Phenomena in Complex Systems, 2019, vol. 22, no. 3, pp. 269–276.MATH

43.

SageMath, Cocalc Collaborative Computation Online, 2017.

Title: Isogeny-Based Cryptographic Access Control
Authors: E. B. Aleksandrova
A. A. Shtyrkina
A. V. Yarmak
Publication date: 01-12-2020
Publisher: Pleiades Publishing
Published in: Automatic Control and Computer Sciences / Issue 8/2020
Print ISSN: 0146-4116
Electronic ISSN: 1558-108X
DOI: https://doi.org/10.3103/S0146411620080027

Springer Professional

Abstract—

Please log in to get access to your license.

Other articles of this Issue 8/2020

A Technique for Safely Transforming the Infrastructure of Industrial Control Systems to the Industrial Internet of Things

Localizing Failures with Metadata

Countering Cyberattacks against Intelligent Bioinspired Systems Based on FANET

Securing Post-Quantum Resistance for Quantum-Protected Communication Systems

Inference Attacks and Information Security in Databases

Detection of Distributed Denial of Service Attacks in Large-Scale Networks Based on Methods of Mathematical Statistics and Artificial Intelligence