Paper 2024/965

Efficient and Secure Post-Quantum Certificateless Signcryption for Internet of Medical Things

Shiyuan Xu, University of Hong Kong, Beijing Normal University
Xue Chen, Hong Kong Polytechnic University
Yu Guo, Beijing Normal University
Siu-Ming Yiu, University of Hong Kong
Shang Gao, Hong Kong Polytechnic University
Bin Xiao, Hong Kong Polytechnic University
Abstract

Internet of Medical Things (IoMT) has gained significant research focus in both academic and medical institutions. Nevertheless, the sensitive data involved in IoMT raises concerns regarding user validation and data privacy. To address these concerns, certificateless signcryption (CLSC) has emerged as a promising solution, offering authenticity, confidentiality, and unforgeability. Unfortunately, most existing CLSC schemes are impractical for IoMT due to their heavy computational and storage requirements. Additionally, these schemes are vulnerable to quantum computing attacks. Therefore, research focusing on designing an efficient post-quantum CLSC scheme is still far-reaching. In this work, we propose PQ-CLSC, a novel post-quantum CLSC scheme that ensures quantum safety for IoMT. Our proposed design facilitates secure transmission of medical data between physicians and patients, effectively validating user legitimacy and minimizing the risk of private information leakage. To achieve this, we leverage lattice sampling algorithms and hash functions to generate the particial secret key and then employ the sign-then-encrypt method to obtain the ciphertext. We also formally and prove the security of our design, including indistinguishability against chosen-ciphertext attacks (IND-CCA2) and existential unforgeability against chosen-message attacks (EU-CMA) security. Finally, through comprehensive performance evaluation, our signcryption overhead is only 30%-55% compared to prior arts, while our computation overhead is just around 45% of other existing schemes. The evaluation results demonstrate that our solution is practical and efficient.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Preprint.
Keywords
Certificateless SigncryptionInternet of Medical ThingsInformation SecurityLattice-based Cryptography
Contact author(s)
syxu2 @ cs hku hk
xue-serena chen @ connect polyu hk
yuguo @ bnu edu cn
smyiu @ cs hku hk
shang-jason gao @ polyu edu hk
b xiao @ polyu edu hk
History
2024-06-17: approved
2024-06-15: received
See all versions
Short URL
https://ia.cr/2024/965
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/965,
      author = {Shiyuan Xu and Xue Chen and Yu Guo and Siu-Ming Yiu and Shang Gao and Bin Xiao},
      title = {Efficient and Secure Post-Quantum Certificateless Signcryption for Internet of Medical Things},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/965},
      year = {2024},
      url = {https://eprint.iacr.org/2024/965}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.