Skip navigation

Secure multi-party computation-based privacy-preserving authentication for smart cities

Secure multi-party computation-based privacy-preserving authentication for smart cities

Sucasas, Victor ORCID logoORCID: https://orcid.org/0000-0002-7981-401X, Aly, Abdelrahaman, Mantas, Georgios ORCID logoORCID: https://orcid.org/0000-0002-8074-0417, Rodriguez, Jonathan ORCID logoORCID: https://orcid.org/0000-0001-9829-0955 and Aaraj, Najwa (2023) Secure multi-party computation-based privacy-preserving authentication for smart cities. IEEE Transactions on Cloud Computing. pp. 1-18. ISSN 2372-0018 (Print), 2168-7161 (Online) (doi:10.1109/TCC.2023.3294621)

[thumbnail of AAM]
Preview
PDF (AAM)
43177_MANTAS_Secure_multi_party_computation_based_privacy_preserving_asuthentication_for_Smart_Cities.pdf - Accepted Version

Download (4MB) | Preview

Abstract

The increasing concern for identity confidentiality in the Smart City scenario has fostered research on privacy-preserving authentication based on pseudonymization. Pseudonym systems enable citizens to generate pseudo-identities and establish unlinkable anonymous accounts in cloud service providers. The citizen's identity is concealed, and his/her different anonymous accounts cannot be linked to each other. Unfortunately, current pseudonym systems require a trusted certification authority (CA) to issue the cryptographic components (e.g. credentials, secret keys, or pseudonyms) to citizens. This CA, generally a Smart City governmental entity, has the capability to grant or revoke privacy rights at will, hence posing a serious threat in case of corruption. Additionally, if the pseudonym system enables de-anonymization of misusers, a corrupted CA can jeopardize the citizens' privacy. This paper presents a novel approach to construct a pseudonym system without a trusted issuer. The CA is emulated by a set of Smart City service providers by means of secure multi-party computation (MPC), which circumvents the requirement of assuming an honest CA. The paper provides a full description of the system, which integrates an MPC protocol and a pseudonym-based signature scheme. The system has been implemented and tested.

Item Type: Article
Uncontrolled Keywords: smart cities; authentication; privacy; protocols; public key; cloud computing; costs
Subjects: N Fine Arts > NA Architecture
Q Science > QA Mathematics > QA75 Electronic computers. Computer science
T Technology > T Technology (General)
Faculty / School / Research Centre / Research Group: Faculty of Engineering & Science
Faculty of Engineering & Science > School of Engineering (ENG)
Faculty of Liberal Arts & Sciences
Faculty of Liberal Arts & Sciences > Advanced Urban
Last Modified: 17 Jul 2023 08:50
URI: http://gala.gre.ac.uk/id/eprint/43177

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year

View more statistics