Article

AES vs SSL/TLS: Encryption for the internet of things

July 2015

Authors:

AES and SSL/TLS are two popular encryption protocols for device to server communications. AES is an open encryption standard first established by the United States National Institute of Standards and Technology (NIST) in 2001, which is referred to as FIPS 197 for the government standard publication that established it. TLS is well known as the protocol that encapsulates HTTP and SMTP to provide secure web browsing via HTTPS, and secure email client/server communications via SMTPS. The protocol uses asymmetric cryptography to authenticate the other party.

ResearchGate has not been able to resolve any citations for this publication.

ResearchGate has not been able to resolve any references for this publication.

Chapter

Multi-owner Architecture System Using Visual Cryptography and Watermarking for Secure Ownership in C...

October 2018 · Smart Innovation

Cloud computing is the best way for storing and computing data over an internet. Data can be shared in the form of texts, images, audio, and video. Sharing data securely over internet is a key issue. Cloud computing faces serious issues like security, integrity, and confidentiality of data. The most popular existing techniques for achieving data security faced conflicts like generation of large ... [Show full abstract] keys, the heavy computation of large keys, and collision attack of malicious users and also it meant for single owner. To overcome the limitations of existing techniques, we proposed a scheme and implemented image encryption and decryption using symmetric key. In the proposed system, we aim to improve security which implement three algorithms namely, visual cryptography (VC), AES (Advanced Encryption Standards), and watermarking. In this paper, the secret image is divided into multiple shares according to the number of users by visual cryptography, later AES is used. For more authentication and copyright protection, watermarking is used. In the obtained result, security is improved and also a key size is decreased which leads to data sharing among multiple authenticated owners securely without any conflict and original image is regenerated by combining all the shares.

Conference Paper

E-mail encryption methods and lawful interception methods of it

January 2013

This paper presents e-mail encryption methods and lawful interception method of it. We deal with OpenPGP, S/MIME, SSL and TLS methods for e-mail encryption. Gmail encryption scheme is analyzed briefly. We also present lawful interception schemes for e-mail encryption methods. We want to explain e-mail encryption general terms.

Article

Secure GCM implementation on AVR

November 2016 · Discrete Applied Mathematics

In Internet of Things (IoT), sensor devices should deliver the collected sensor data to the server after the data is encrypted. The encrypted data cannot be eavesdropped by adversaries but the side channel information including clock cycles and power consumption patterns during encryption operations can leak the secret information. For this reason, cryptography engineering should prevent ... [Show full abstract] potential threats by designing the cryptography functions in secure manner. In this paper, we explore the feasible side channel attacks on cryptography operations, particularly polynomial multiplication for Galois/Counter Mode of operation (GCM). We perform the horizontal Correlation Power Analysis (CPA) on the most well-known Lopez et al.’s polynomial multiplication and successfully extract the secret values from power consumption patterns. In order to prevent proposed attack model, we suggest a masked polynomial multiplication, ensuring a regular and constant-time solution without potential vulnerabilities including Look-up Table (LUT) access and branch statements. With proposed polynomial multiplication, we suggest the secure and efficient implementation of GCM on the low-end embedded processor. Finally, we further explore the long polynomial multiplication for Elliptic Curve Cryptography (ECC) operations. We exploit the combination of Karatsuba algorithm and proposed masked polynomial multiplication, which achieved the practically fast polynomial multiplication on embedded processors.

Chapter

Efficient Integrated Circuit Design for High Throughput AES: MUE/FutureTech 2018

January 2019 · Lecture Notes in Electrical Engineering

Advanced Encryption Standard (AES) has been adopted widely in most security protocols due to its robustness till date. It would thus serve well in IoT technology for controlling the threats posed by unethical hackers. This paper presents a hardware-based implementation of the AES algorithm. We present a four-stage pipelined architecture of the encryption and key generation. This method allowed a ... [Show full abstract] total plaintext size of 512 bits to be encrypted in 46 cycles. The proposed hardware design achieved a maximum frequency of 1.18 GHz yielding a throughput of 13 Gbps and 800 MHz yielding a throughput of 8.9 Gbps on the 65 and 180 nm processes respectively.

Conference Paper

Full-text available

Lightweight Cryptography for Internet of Insecure Things: A Survey

January 2019

This paper surveys Lightweight Cryptographic solutions for Internet of Things (IoT). This survey covers comprehensively a flow of security measures from Lightweight Cryptographic solutions to comparison among different types of block ciphers. It also includes comparison between Hardware vs Software solutions and different recent approaches of the most trusted and researched block cipher, Advanced ... [Show full abstract] Encryption Standard (AES) in terms of architecture, Mix-Column/S-box modify strategy and attacks for IoT security. According to the study, lightweight AES has proved to be a good security solution for constrained IoT devices.

View full-text

Chapter

Security Vulnerabilities

January 2013

Badrinarayanan Lakshmiraghavan

We saw in Chapter 1 that the term information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction to ensure confidentiality, integrity, and availability. Related to this, we have seen how an application can identify and authenticate entities using the three factors based on knowledge, ownership, and ... [Show full abstract] inherence to control the access of protected application resources from unauthorized entities. Also, we examined how cryptography can help ensure the two important aspects of message security: confidentiality through encryption and integrity through digital signing techniques. We also looked at transport security achieved through TLS over HTTP (HTTPS).

Conference Paper

Full-text available

An analysis of the CAST-256 cipher

February 1999

We examine the cryptographic security of the CAST-256 symmetric block encryption algorithm. The CAST-256 cipher has been proposed as a candidate for the Advanced Encryption Standard currently under consideration by the U.S. National Institute of Standards and Technology (NTST). It has been designed for a 128-bit block size and variable key sizes of up to 256 bits to suit AES requirements. We ... [Show full abstract] specifically consider the cryptographic security of the cipher in relation to the cryptanalytic property of diffusion and the cryptanalysis techniques of linear and differential cryptanalysis

View full-text

Conference Paper

High-Speed Parallel Hardware Architecture for Galois Counter Mode

June 2007

Akashi Satoh

Parallel hardware architecture for an authenticated encryption mode GCM (Galois counter mode) capable of a throughput higher than 100 Gbps is proposed. In GCM, the CTR mode can encrypt multiple data blocks independently, but a hash function performs multiply-add operation with the cipher-text blocks sequentially. Therefore, a parallel multiply-adder was designed and integrated into the GCM ... [Show full abstract] hardware with a 14-stage pipelined AES circuit and two kinds of S-box, composite field and BDD (binary decision tree) versions. Performance of a 4-parallel version was evaluated by using a 0.13-mum CMOS standard cell library, and very high throughputs of 102 Gbps with 600 Kgates and 162 Gbps with 979 Kgates were obtained by the composite and BDD S-boxes, respectively. Higher hardware efficiency (throughput/gate) in comparison with prior art was also achieved. The critical path of the design is the multiply-adder in each local processing block, and is not affected by the number of the parallel blocks. Therefore the proposed architecture has almost linear scalability in terms of hardware speed versus size.

Article

Full-text available

AES CCMP Algorithm with N-Way Interleaved Cipher Block Chaining

August 2012

Nowadays, the increased use of battery-powered mobile appliances and the urge to access time-sensitive data anytime anywhere has fuelled a high demand for wireless networks. However, wireless networks are susceptible to intrusion and security problems. There is an inherent need to secure the wireless data communication to ensure the confidentiality, authenticity, integrity and non repudiation of ... [Show full abstract] the data being exchanged. On the other hand, the computation and the resultant energy consumption to achieve sufficient security can be high. Encryption algorithms are generally computationally intensive, and consume a significant amount of computing resources (such as CPU time, memory, and battery power). Considering the limited resources on wireless devices, it is crucial that security protocols be implemented efficiently. This manuscript focuses on how energy consumption is impacted by the use of unoptimised AES-CCMP algorithms and proposes an optimized AES CCMP algorithm using 2-way interleaving that does not compromise the security of wireless communication sessions. There is also analysis of the performance of AES (a.k.a. Rijndael) in its AES-CCMP implementation. The 2-way interleaving technique is an optimization of the CBC-MAC that is investigated using two performance metrics (namely encryption time and throughput).

View full-text

Conference Paper

Authenticated Encryption Schemes with Message Linkage for Threshold Signatures

April 2005

Based on the factorization problem, a modified (t, n) threshold group-oriented scheme with message recovery is proposed. In the proposed scheme, any combination of more than t members of the group can cooperate to generate the modified group secret key. By using the proposed scheme, the transmission of the signature is secure. Besides, the message linkage blocks which are removed by an ... [Show full abstract] eavesdropper can be detected.

Article

Hashed lightweight authentication in encryption

September 2016

Secure Communication of data is a major concern in today’s growing world. Cryptography is the mathematical technique of hiding information for ensuring authentication,confidentiality and other aspects of information security. The growing aspect of data transmission needs an exceptional means of security over the network. Cryptanalysis attack has to be difficult for the third party access. These ... [Show full abstract] emphasize the demand for light weight concept in encryption. An Authenticated Lightweight Encryption (ALE) is an individual-path nonce-based encryption algorithm which uses associated data. It implements the combination of both AES-128 bit key schedule and their round transformation. ALE provides better security and high performance than other encryption techniques but it leads to Slide attack which occurs when the periodic process illustrates self-similarity and independent of the iterated round function. It is prevented by avoiding the self-similarity of a periodic process by adding iteration counters and random constants which is fixed. It employs all symmetric cryptographic functions,from hashing to authenticated encryption and random number generation. Thus a cryptographic process based on AES technique,implemented with lightweight algorithm and lightweight hash function is proposed for better security. © 2016,International Journal of Pharmacy and Technology. All rights reserved.

Article

A novel error-tolerant method in AES for satellite images

March 2011

This paper uses one of the security algorithms like the Advanced Encryption Standard (AES) in Earth Observation small Satellites. Commercial security in Earth observation satellite images is in need to protect valuable data transmitted from the satellite. In November 2001 NIST published Rijndael as the proposed Algorithm for AES (Advanced Encryption Standard), it provides the highest level of ... [Show full abstract] security by utilizing the newest and strongest 128 bit AES encryption algorithm to encrypt and authenticate the data. At the same time while encryption process immunity of encryption is taken into the account. Five modes of AES have been used to perform security on satellite data. The different modes are ECB, CBC, OFB, CFB and CTR. All the above techniques except OFB lead to fault during data transmission to ground because of noisy channels. It is due to Single Event Upsets (SEU). In order to avoid data corruption due to SEU's a novel fault tolerant model of AES is presented which is based on the Hamming error correction code. This reduces the data corruption and increases the performance. As a result we can identify the error and also we can encrypt the image as color. Thus the data corruption due to Single Event Upset can be avoided and the performance was increased.

AES vs SSL/TLS: Encryption for the internet of things

Abstract

No full-text available

Recommended publications

Multi-owner Architecture System Using Visual Cryptography and Watermarking for Secure Ownership in C...

E-mail encryption methods and lawful interception methods of it

Secure GCM implementation on AVR

Efficient Integrated Circuit Design for High Throughput AES: MUE/FutureTech 2018

Lightweight Cryptography for Internet of Insecure Things: A Survey

Security Vulnerabilities

An analysis of the CAST-256 cipher

High-Speed Parallel Hardware Architecture for Galois Counter Mode

AES CCMP Algorithm with N-Way Interleaved Cipher Block Chaining

Authenticated Encryption Schemes with Message Linkage for Threshold Signatures

Hashed lightweight authentication in encryption

A novel error-tolerant method in AES for satellite images