Intrusion-Resilient Undetachable Signature for Mobile-Agent-Based Collaborative Commerce Systems

IF 6.7 2区计算机科学 Q1 ENGINEERING, MULTIDISCIPLINARY

IEEE Transactions on Network Science and Engineering Pub Date : 2025-01-22 DOI:10.1109/TNSE.2025.3532691

Yang Shi;Minyu Teng;Jingwen Liang;Jingxuan Han;Jiayao Gao;Guoyue Xiong;Xiaoping Wang;Hongfei Fan

{"title":"Intrusion-Resilient Undetachable Signature for Mobile-Agent-Based Collaborative Commerce Systems","authors":"Yang Shi;Minyu Teng;Jingwen Liang;Jingxuan Han;Jiayao Gao;Guoyue Xiong;Xiaoping Wang;Hongfei Fan","doi":"10.1109/TNSE.2025.3532691","DOIUrl":null,"url":null,"abstract":"Mobile agents are valuable in collaborative commerce systems due to their mobility and autonomy, enabling them to traverse the Internet and purchase goods and services on behalf of their owners. However, in the face of potential attacks from malicious hosts, securely executing a contract on behalf of the original signer poses a significant challenge. In this paper, we propose an Intrusion-Resilient Undetachable Signature (IRUS) approach for mitigating security risks associated with signing key leakage on the signer's host, base device, and even potentially malicious remote hosts. Additionally, it addresses the risk of signing algorithm misuse on remote hosts. Our approach ensures that adversaries cannot forge past or future signatures as long as the base device remains secure, even if the current signing key is compromised. In cases where the base device is compromised, although future signatures may be forged, all past signatures remain secure. Furthermore, we integrate the encrypted signing function with the original signer's requirements to prevent the misuse of the signing algorithm and the exposure of the original signing key on malicious hosts. Security proofs have confirmed that our scheme can effectively defend against various types of attacks, and experimental evaluations have demonstrated the strong performance of the proposed approach with enhanced security, meanwhile reducing the execution times of the signing phase by at most 75% and the verification phase by 95% compared with three existing undetachable signature schemes.","PeriodicalId":54229,"journal":{"name":"IEEE Transactions on Network Science and Engineering","volume":"12 3","pages":"1510-1523"},"PeriodicalIF":6.7000,"publicationDate":"2025-01-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Network Science and Engineering","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10849659/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"ENGINEERING, MULTIDISCIPLINARY","Score":null,"Total":0}

引用次数: 0

Abstract

Mobile agents are valuable in collaborative commerce systems due to their mobility and autonomy, enabling them to traverse the Internet and purchase goods and services on behalf of their owners. However, in the face of potential attacks from malicious hosts, securely executing a contract on behalf of the original signer poses a significant challenge. In this paper, we propose an Intrusion-Resilient Undetachable Signature (IRUS) approach for mitigating security risks associated with signing key leakage on the signer's host, base device, and even potentially malicious remote hosts. Additionally, it addresses the risk of signing algorithm misuse on remote hosts. Our approach ensures that adversaries cannot forge past or future signatures as long as the base device remains secure, even if the current signing key is compromised. In cases where the base device is compromised, although future signatures may be forged, all past signatures remain secure. Furthermore, we integrate the encrypted signing function with the original signer's requirements to prevent the misuse of the signing algorithm and the exposure of the original signing key on malicious hosts. Security proofs have confirmed that our scheme can effectively defend against various types of attacks, and experimental evaluations have demonstrated the strong performance of the proposed approach with enhanced security, meanwhile reducing the execution times of the signing phase by at most 75% and the verification phase by 95% compared with three existing undetachable signature schemes.

查看原文本刊更多论文

基于移动代理的协同商务系统抗入侵不可分离签名

移动代理在协作商业系统中很有价值，因为它们具有移动性和自主性，使它们能够遍历Internet并代表其所有者购买商品和服务。然而，面对来自恶意主机的潜在攻击，代表原始签署人安全地执行合同构成了一个重大挑战。在本文中，我们提出了一种入侵弹性不可分离签名（IRUS）方法，以减轻与签名人主机、基本设备甚至潜在恶意远程主机上签名密钥泄漏相关的安全风险。此外，它还解决了远程主机上签名算法误用的风险。我们的方法确保攻击者不能伪造过去或未来的签名，只要基本设备保持安全，即使当前的签名密钥被泄露。在基础设备被破坏的情况下，尽管未来的签名可能被伪造，但所有过去的签名仍然是安全的。此外，我们将加密签名功能与原始签名者的需求相结合，以防止签名算法的滥用和原始签名密钥在恶意主机上的暴露。安全证明表明，我们的方案能够有效防御各种类型的攻击，实验评估表明，与现有的三种不可分离签名方案相比，我们的方案具有强大的性能和增强的安全性，同时签名阶段的执行时间最多减少75%，验证阶段的执行时间最多减少95%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Transactions on Network Science and Engineering Engineering-Control and Systems Engineering

CiteScore

12.60

自引率

9.10%

发文量

393

期刊介绍： The proposed journal, called the IEEE Transactions on Network Science and Engineering (TNSE), is committed to timely publishing of peer-reviewed technical articles that deal with the theory and applications of network science and the interconnections among the elements in a system that form a network. In particular, the IEEE Transactions on Network Science and Engineering publishes articles on understanding, prediction, and control of structures and behaviors of networks at the fundamental level. The types of networks covered include physical or engineered networks, information networks, biological networks, semantic networks, economic networks, social networks, and ecological networks. Aimed at discovering common principles that govern network structures, network functionalities and behaviors of networks, the journal seeks articles on understanding, prediction, and control of structures and behaviors of networks. Another trans-disciplinary focus of the IEEE Transactions on Network Science and Engineering is the interactions between and co-evolution of different genres of networks.