A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking
Named Data Networking (NDN) is a promising network architecture that differs from the traditional TCP/IP network, as it focuses on data rather than the host. A new secure model is required to provide the data-oriented trust instead of the host-oriented trust. This paper proposes a new secure solutio...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2024-01-01
|
| Series: | IET Information Security |
| Online Access: | http://dx.doi.org/10.1049/2024/6616095 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849309358307934208 |
|---|---|
| author | Bing Li Mingxuan Zheng Maode Ma |
| author_facet | Bing Li Mingxuan Zheng Maode Ma |
| author_sort | Bing Li |
| collection | DOAJ |
| description | Named Data Networking (NDN) is a promising network architecture that differs from the traditional TCP/IP network, as it focuses on data rather than the host. A new secure model is required to provide the data-oriented trust instead of the host-oriented trust. This paper proposes a new secure solution in the NDNs named Secure Mechanism supported by Certificateless Digital Signature and Blockchain (CLDS-B). The CLDS-B scheme employs a certificateless digital signature to guarantee the authentication and integrity of data. On the one hand, the key escrow problem has been solved to eliminate the risks of compromised private key generators; on the other hand, the data name has been bound to the public key to prevent the false public key. Moreover, the blockchain is used to manage cryptographic information. Each domain designates an information service entity to join the blockchain so that the consumer could retrieve the cryptographic information public parameter in the local domain if necessary. Furthermore, due to the decentralization of the blockchain, the CLDS-B would be robust to resist the single-node failure. Simulation results show that the CLDS-B scheme outperforms a classic NDN scheme, although it shows slightly inferior to the other secure NDN scheme. The security verification and analysis show that the CLDS-B would resist the key escrow attack. The CLDS-B would be a competitive solution in scenarios with a high-security level. |
| format | Article |
| id | doaj-art-0f67143a1f8a47f29635c9c79e23bfb7 |
| institution | Kabale University |
| issn | 1751-8717 |
| language | English |
| publishDate | 2024-01-01 |
| publisher | Wiley |
| record_format | Article |
| series | IET Information Security |
| spelling | doaj-art-0f67143a1f8a47f29635c9c79e23bfb72025-08-20T03:54:11ZengWileyIET Information Security1751-87172024-01-01202410.1049/2024/6616095A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data NetworkingBing Li0Mingxuan Zheng1Maode Ma2Shenzhen UniversityShenzhen UniversityCollege of Engineering at Qatar UniversityNamed Data Networking (NDN) is a promising network architecture that differs from the traditional TCP/IP network, as it focuses on data rather than the host. A new secure model is required to provide the data-oriented trust instead of the host-oriented trust. This paper proposes a new secure solution in the NDNs named Secure Mechanism supported by Certificateless Digital Signature and Blockchain (CLDS-B). The CLDS-B scheme employs a certificateless digital signature to guarantee the authentication and integrity of data. On the one hand, the key escrow problem has been solved to eliminate the risks of compromised private key generators; on the other hand, the data name has been bound to the public key to prevent the false public key. Moreover, the blockchain is used to manage cryptographic information. Each domain designates an information service entity to join the blockchain so that the consumer could retrieve the cryptographic information public parameter in the local domain if necessary. Furthermore, due to the decentralization of the blockchain, the CLDS-B would be robust to resist the single-node failure. Simulation results show that the CLDS-B scheme outperforms a classic NDN scheme, although it shows slightly inferior to the other secure NDN scheme. The security verification and analysis show that the CLDS-B would resist the key escrow attack. The CLDS-B would be a competitive solution in scenarios with a high-security level.http://dx.doi.org/10.1049/2024/6616095 |
| spellingShingle | Bing Li Mingxuan Zheng Maode Ma A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking IET Information Security |
| title | A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking |
| title_full | A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking |
| title_fullStr | A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking |
| title_full_unstemmed | A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking |
| title_short | A Novel Security Scheme Supported by Certificateless Digital Signature and Blockchain in Named Data Networking |
| title_sort | novel security scheme supported by certificateless digital signature and blockchain in named data networking |
| url | http://dx.doi.org/10.1049/2024/6616095 |
| work_keys_str_mv | AT bingli anovelsecurityschemesupportedbycertificatelessdigitalsignatureandblockchaininnameddatanetworking AT mingxuanzheng anovelsecurityschemesupportedbycertificatelessdigitalsignatureandblockchaininnameddatanetworking AT maodema anovelsecurityschemesupportedbycertificatelessdigitalsignatureandblockchaininnameddatanetworking AT bingli novelsecurityschemesupportedbycertificatelessdigitalsignatureandblockchaininnameddatanetworking AT mingxuanzheng novelsecurityschemesupportedbycertificatelessdigitalsignatureandblockchaininnameddatanetworking AT maodema novelsecurityschemesupportedbycertificatelessdigitalsignatureandblockchaininnameddatanetworking |