A Wrapping Encryption Based on Double Randomness Mechanism

Computers, materials & continua Pub Date : 2023-01-01 DOI:10.32604/cmc.2023.037161

Yi-Li Huang, Fang-Yie Leu, Ruey-Kai Sheu, Jung-Chun Liu, Chi-Jan Huang

{"title":"A Wrapping Encryption Based on Double Randomness Mechanism","authors":"Yi-Li Huang, Fang-Yie Leu, Ruey-Kai Sheu, Jung-Chun Liu, Chi-Jan Huang","doi":"10.32604/cmc.2023.037161","DOIUrl":null,"url":null,"abstract":"Currently, data security mainly relies on password (PW) or system channel key (SKCH) to encrypt data before they are sent, no matter whether in broadband networks, the 5th generation (5G) mobile communications, satellite communications, and so on. In these environments, a fixed password or channel key (e.g., PW/SKCH) is often adopted to encrypt different data, resulting in security risks since this PW/SKCH may be solved after hackers collect a huge amount of encrypted data. Actually, the most popularly used security mechanism Advanced Encryption Standard (AES) has its own problems, e.g., several rounds have been solved. On the other hand, if data protected by the same PW/SKCH at different time points can derive different data encryption parameters, the system’s security level will be then greatly enhanced. Therefore, in this study, a security scheme, named Wrapping Encryption Based on Double Randomness Mechanism (WEBDR), is proposed by integrating a password key (or a system channel key) and an Initialization Vector (IV) to generate an Initial Encryption Key (IEK). Also, an Accumulated Shifting Substitution (ASS) function and a three-dimensional encryption method are adopted to produce a set of keys. Two randomness encryption mechanisms are developed. The first generates system sub-keys and calculates the length of the first pseudo-random numbers by employing IEK for providing subsequent encryption/decryption. The second produces a random encryption key and a sequence of internal feedback codes and computes the length of the second pseudo-random numbers for encrypting delivered messages. A wrapped mechanism is further utilized to pack a ciphertext file so that a wrapped ciphertext file, rather than the ciphertext, will be produced and then transmitted to its destination. The findings are as follows. Our theoretic analyses and simulations demonstrate that the security of the WEBDR in cloud communication has achieved its practical security. Also, AES requires 176 times exclusive OR (XOR) operations for both encryption and decryption, while the WEBDR consumes only 3 operations. That is why the WEBDR is 6.7~7.09 times faster than the AES, thus more suitable for replacing the AES to protect data transmitted between a cloud system and its users.","PeriodicalId":93535,"journal":{"name":"Computers, materials & continua","volume":"70 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computers, materials & continua","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.32604/cmc.2023.037161","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Currently, data security mainly relies on password (PW) or system channel key (SK_CH) to encrypt data before they are sent, no matter whether in broadband networks, the 5th generation (5G) mobile communications, satellite communications, and so on. In these environments, a fixed password or channel key (e.g., PW/SK_CH) is often adopted to encrypt different data, resulting in security risks since this PW/SK_CH may be solved after hackers collect a huge amount of encrypted data. Actually, the most popularly used security mechanism Advanced Encryption Standard (AES) has its own problems, e.g., several rounds have been solved. On the other hand, if data protected by the same PW/SK_CH at different time points can derive different data encryption parameters, the system’s security level will be then greatly enhanced. Therefore, in this study, a security scheme, named Wrapping Encryption Based on Double Randomness Mechanism (WEBDR), is proposed by integrating a password key (or a system channel key) and an Initialization Vector (IV) to generate an Initial Encryption Key (IEK). Also, an Accumulated Shifting Substitution (ASS) function and a three-dimensional encryption method are adopted to produce a set of keys. Two randomness encryption mechanisms are developed. The first generates system sub-keys and calculates the length of the first pseudo-random numbers by employing IEK for providing subsequent encryption/decryption. The second produces a random encryption key and a sequence of internal feedback codes and computes the length of the second pseudo-random numbers for encrypting delivered messages. A wrapped mechanism is further utilized to pack a ciphertext file so that a wrapped ciphertext file, rather than the ciphertext, will be produced and then transmitted to its destination. The findings are as follows. Our theoretic analyses and simulations demonstrate that the security of the WEBDR in cloud communication has achieved its practical security. Also, AES requires 176 times exclusive OR (XOR) operations for both encryption and decryption, while the WEBDR consumes only 3 operations. That is why the WEBDR is 6.7~7.09 times faster than the AES, thus more suitable for replacing the AES to protect data transmitted between a cloud system and its users.

查看原文本刊更多论文

基于双随机机制的包装加密

目前，无论是在宽带网络、第五代(5G)移动通信、卫星通信等网络中，数据安全主要依靠密码(PW)或系统信道密钥(SKCH)对数据进行发送前加密。在这些环境中，通常采用固定的密码或通道密钥(如PW/SKCH)对不同的数据进行加密，这种PW/SKCH可能会在黑客收集到大量加密数据后被破解，因此存在安全风险。实际上，最常用的安全机制高级加密标准AES (Advanced Encryption Standard, AES)也有其自身的问题，例如已经解决了几轮。另一方面，如果同一PW/SKCH在不同时间点保护的数据可以导出不同的数据加密参数，那么系统的安全级别将大大提高。因此，本研究提出了一种基于双随机机制的包装加密(WEBDR)安全方案，该方案将密码密钥(或系统通道密钥)与初始化向量(IV)集成，生成初始加密密钥(IEK)。采用累积移位替换(ASS)函数和三维加密方法生成密钥集。提出了两种随机加密机制。第一个生成系统子密钥，并通过使用IEK提供随后的加密/解密来计算第一个伪随机数的长度。第二个生成一个随机加密密钥和一个内部反馈代码序列，并计算第二个伪随机数的长度，用于加密传递的消息。进一步利用包装机制来打包密文文件，从而产生一个包装的密文文件，而不是密文本身，然后将其传输到目的地。研究结果如下。理论分析和仿真结果表明，WEBDR在云通信中的安全性达到了实际安全要求。此外，AES加密和解密都需要176次的异或操作，而WEBDR只需要3次操作。因此WEBDR的速度是AES的6.7~7.09倍，更适合取代AES来保护云系统与用户之间传输的数据。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computers, materials & continua

自引率

0.00%

发文量