TY - GEN
T1 - CRFs for Digital Signature and NIZK Proof System in Web Services
AU - Kang, Burong
AU - Zhang, Lei
AU - Yang, Yafang
AU - Meng, Xinyu
N1 - Publisher Copyright:
© 2023, Springer Nature Switzerland AG.
PY - 2023
Y1 - 2023
N2 - Web services are service-oriented computing technology which allows computers running different operating domains to access and share each other’s databases. Each web service is an application (like online business) which may require the private information of users. Thus, it will be important to preserve these web users’ individual privacy. The traditional approaches to achieve this goal in web security is to use the cryptographic technologies, such as digital signature, NIZK proof system. Whereas, some recent research results indicate that these cryptographic technologies may suffer from the algorithm substitution attack (ASA). ASA means that the cryptographic technology would be embedded some backdoor in the process of its implementation by the attacker, and with the backdoor information the attacker can steal the user’s private information. To address this problem, the concept of cryptographic reverse firewall (CRF) has been introduced, which could sanitize the messages inputting and outputting the user’s computer. In this paper, we construct the CRFs for the efficient Pointcheval-Sanders (PS) signature as well as the NIZK proof system.
AB - Web services are service-oriented computing technology which allows computers running different operating domains to access and share each other’s databases. Each web service is an application (like online business) which may require the private information of users. Thus, it will be important to preserve these web users’ individual privacy. The traditional approaches to achieve this goal in web security is to use the cryptographic technologies, such as digital signature, NIZK proof system. Whereas, some recent research results indicate that these cryptographic technologies may suffer from the algorithm substitution attack (ASA). ASA means that the cryptographic technology would be embedded some backdoor in the process of its implementation by the attacker, and with the backdoor information the attacker can steal the user’s private information. To address this problem, the concept of cryptographic reverse firewall (CRF) has been introduced, which could sanitize the messages inputting and outputting the user’s computer. In this paper, we construct the CRFs for the efficient Pointcheval-Sanders (PS) signature as well as the NIZK proof system.
KW - Algorithm substitution attack
KW - Cryptographic reverse firewall
KW - Digital signature
KW - Non-interactive zero knowledge proof system
KW - Web security
UR - https://www.scopus.com/pages/publications/85148698170
U2 - 10.1007/978-3-031-22677-9_11
DO - 10.1007/978-3-031-22677-9_11
M3 - 会议稿件
AN - SCOPUS:85148698170
SN - 9783031226762
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 192
EP - 213
BT - Algorithms and Architectures for Parallel Processing - 22nd International Conference, ICA3PP 2022, Proceedings
A2 - Meng, Weizhi
A2 - Lu, Rongxing
A2 - Min, Geyong
A2 - Vaidya, Jaideep
PB - Springer Science and Business Media Deutschland GmbH
T2 - 22nd International Conference on Algorithms and Architectures for Parallel Processing, ICA3PP 2022
Y2 - 10 October 2022 through 12 October 2022
ER -