The BiBa one-time signature and broadcast authentication protocol

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

The BiBa one-time signature and broadcast authentication protocol

Full text

Pdf (269 KB)

Source

Conference on Computer and Communications Security archive
Proceedings of the 8th ACM conference on Computer and Communications Security table of contents

Philadelphia, PA, USA

Session: Password Management and Digital Signatures table of contents

Pages: 28 - 37

Year of Publication: 2001

ISBN:1-58113-385-5

Author

Adrian Perrig

University of California, Berkeley, CA

Sponsor

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 20, Downloads (12 Months): 84, Citation Count: 23

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/501983.501988 What is a DOI?

ABSTRACT

We introduce the BiBa signature scheme, a new signature construction that uses one-way functions without trapdoors. BiBa features a low verification overhead and a relatively small signature size. In comparison to other one-way function based signature schemes, BiBa has smaller signatures and is at least twice as fast to verify (which probably makes it one of the fastest signature scheme to date for verification). On the downside, the BiBa public key is large, and the signature generation overhead is higher than previous schemes based on one-way functions without trapdoors (although it can be trivially parallelized).One of the main challenges of securing broadcast communication is source authentication, which allows all receivers to verify the origin of the data. An ideal broadcast authentication protocol should be efficient for the sender and the receiver, have a small communication overhead, allow the receiver to authenticate each individual packet, provide perfect robustness to packet loss, scale to large numbers of receivers, and provide instant authentication (no buffering of data at the sender or receiver side). We are not aware of any previous protocol that satisfies all these properties. We present the BiBa broadcast authentication protocol, a new construction based on the BiBa signature, that achieves all our desired properties, with the tradeoff that it requires a moderate computation overhead for the sender to generate the authentication information, and that it requires loose time synchronization between the sender and receivers.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Mihir Bellare , Phillip Rogaway, Collision-Resistant Hashing: Towards Making UOWHFs Practical, Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology, p.470-484, August 17-21, 1997
	2	Daniel Bleichenbacher , Ueli M. Maurer, Directed Acyclic Graphs, One-way Functions and Digital Signatures, Proceedings of the 14th Annual International Cryptology Conference on Advances in Cryptology, p.75-82, August 21-25, 1994
	3	G.Brassard,editor.Advances in Cryptology - CRYPTO '89 ,number 435 in Lecture Notes in Computer Science,Santa Barbara,CA,USA,1990.
	4	R.Canetti,J.Garay,G.Itkis,D.Micciancio, M.Naor,and B.Pinkas.Multicast security:A taxonomy and some e .cient constructions.In INFOCOMM '99 ,Mar.1999.
	5	Shimon Even , Oded Goldreich , Silvio Micali, On-line/off-line digital signatures, Proceedings on Advances in cryptology, p.263-275, July 1989, Santa Barbara, California, United States
	6	Rosario Gennaro , Pankaj Rohatgi, How to Sign Digital Streams, Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology, p.180-197, August 17-21, 1997
	7	Oded Goldreich , Shafi Goldwasser , Silvio Micali, How to construct random functions, Journal of the ACM (JACM), v.33 n.4, p.792-807, Oct. 1986 [doi>10.1145/6490.6503]
	8	N.Haller.The S/Key one-time password system.In D.N.G.Chair)andR.S.P.Chair),editors, Symposium on Network and Distributed Systems Security ,San Diego,California,Feb.1994.
	9	L.Lamport.Discussion with Whit .eld Di .e. http://research.compaq.com/SRC/personal/ lamport/pubs/pubs.html#dig-sig 1975.
	10	L.Lamport.Constructing digital signatures from a one-way function.Technical Report SRI-CSL-98,SRI International Computer Science Laboratory,Oct. 1979.
	11	Leslie Lamport, Password authentication with insecure communication, Communications of the ACM, v.24 n.11, p.770-772, Nov. 1981 [doi>10.1145/358790.358797]
	12	R.Merkle.Protocols for public key cryptosystems.In Proceedings of the IEEE Symposium on Research in Security and Privacy ,Oakland,CA,Apr.1980.
	13	Ralph C. Merkle, A Digital Signature Based on a Conventional Encryption Function, A Conference on the Theory and Applications of Cryptographic Techniques on Advances in Cryptology, p.369-378, August 16-20, 1987
	14	Ralph C. Merkle, A certified digital signature, Proceedings on Advances in cryptology, p.218-238, July 1989, Santa Barbara, California, United States
	15	Nessie:New European schemes for signatures, integrity,and encryption. http://www.cryptonessie.org 1999.
	16	A.Perrig,R.Canetti,D.Song,and D.Tygar. E .cient and secure source authentication for ulticast.In Symposium on Network and Distributed Systems Security (NDSS 2001),SanDiego,CA,Feb. 2001.Internet Society.
	17	Adrian Perrig , J. D. Tygar , Dawn Song , Ran Canetti, Efficient Authentication and Signing of Multicast Streams over Lossy Channels, Proceedings of the 2000 IEEE Symposium on Security and Privacy, p.56, May 14-17, 2000
	18	M.O.Rabin.Digitalized signatures.In R.A.DeMillo, D.P.Dobkin,A.K.Jones,and R.J.Lipton,editors, Foundations of Secure Computation ,pages 155 -168. Academic Press,1978.
	19	Ron Rivest.The MD5 message-digest algorithm. Internet Request for Comment RFC 1321,Internet Engineering Task Force,April 1992.
	20	Ron Rivest.The RC5 encryption algorithm.In Anderson,editor,Proceedings of the 1st International Workshop on Fast Software Encryption ,volume 809 of Le ture Notes in Computer Science ,pages 86 -96, 1994.Springer-Verlag,Berlin Germany.
	21	Ronald L. Rivest , Adi Shamir, PayWord and MicroMint: Two Simple Micropayment Schemes, Proceedings of the International Workshop on Security Protocols, p.69-87, April 10-12, 1996
	22	R. L. Rivest , A. Shamir , L. Adleman, A method for obtaining digital signatures and public-key cryptosystems, Communications of the ACM, v.21 n.2, p.120-126, Feb. 1978 [doi>10.1145/359340.359342]
	23	Pankaj Rohatgi, A compact and fast hybrid signature scheme for multicast packet authentication, Proceedings of the 6th ACM conference on Computer and communications security, p.93-100, November 01-04, 1999, Kent Ridge Digital Labs, Singapore [doi>10.1145/319709.319722]
	24	R.von Mises.~ber Aufteilungs-und Besetzungswahrscheinlichkeiten.Revue de la Faculte des Sciences de l'Universite d'Istanbul ,4:145 -163, 1939.
	25	C.K.Wong and S.S.Lam.Digital signatures for flows and ulticasts.In IEEE ICNP '98 ,1998.

CITED BY 23

	Dalit Naor , Amir Shenhav , Avishai Wool, Toward securing untrusted storage without public-key operations, Proceedings of the 2005 ACM workshop on Storage security and survivability, November 11-11, 2005, Fairfax, VA, USA
	Yih-Chun Hu , Adrian Perrig , David B. Johnson, Rushing attacks and defense in wireless ad hoc network routing protocols, Proceedings of the 2003 ACM workshop on Wireless security, September 19-19, 2003, San Diego, CA, USA
	Nicoletta De Francesco , Marinella Petrocchi, Authenticity in a reliable protocol for mobile computing, Proceedings of the 2003 ACM symposium on Applied computing, March 09-12, 2003, Melbourne, Florida
	Donggang Liu , Peng Ning, Multilevel μTESLA: Broadcast authentication for distributed sensor networks, ACM Transactions on Embedded Computing Systems (TECS), v.3 n.4, p.800-836, November 2004
	Jung Min Park , Edwin K. P. Chong , Howard Jay Siegel, Efficient multicast stream authentication using erasure codes, ACM Transactions on Information and System Security (TISSEC), v.6 n.2, p.258-285, May 2003
	Ahsan Habib , Dongyan Xu , Mikhail Atallah , Bharat Bhargava , John Chuang, A Tree-Based Forward Digest Protocol to Verify Data Integrity in Distributed Media Streaming, IEEE Transactions on Knowledge and Data Engineering, v.17 n.7, p.1010-1014, July 2005
	Phillip G. Bradford , Olga V. Gavrylyako, Hash chains with diminishing ranges for sensors, International Journal of High Performance Computing and Networking, v.4 n.1/2, p.31-38, July 2006
	Chris J. Mitchell , Fred C. Piper , Peter R. Wild, ID-based cryptography using symmetric primitives, Designs, Codes and Cryptography, v.44 n.1-3, p.249-262, September 2007
	Mark Luk , Adrian Perrig , Bram Whillock, Seven cardinal properties of sensor network broadcast authentication, Proceedings of the fourth ACM workshop on Security of ad hoc and sensor networks, October 30-30, 2006, Alexandria, Virginia, USA
	Xuhua Ding , Daniele Mazzocchi , Gene Tsudik, Equipping smart devices with public key signatures, ACM Transactions on Internet Technology (TOIT), v.7 n.1, p.3-es, February 2007
	Ya-Jeng Lin , Shiuhpyng Shieh , Warren W. Lin, Lightweight, pollution-attack resistant multicast authentication scheme, Proceedings of the 2006 ACM Symposium on Information, computer and communications security, March 21-24, 2006, Taipei, Taiwan
	Jing Deng , Richard Han , Shivakant Mishra, Secure code distribution in dynamically programmable wireless sensor networks, Proceedings of the fifth international conference on Information processing in sensor networks, April 19-21, 2006, Nashville, Tennessee, USA
	Prabal K. Dutta , Jonathan W. Hui , David C. Chu , David E. Culler, Securing the deluge Network programming system, Proceedings of the fifth international conference on Information processing in sensor networks, April 19-21, 2006, Nashville, Tennessee, USA
	Shang-Ming Chang , Shiuhpyng Shieh , Warren W. Lin , Chih-Ming Hsieh, An efficient broadcast authentication scheme in wireless sensor networks, Proceedings of the 2006 ACM Symposium on Information, computer and communications security, March 21-24, 2006, Taipei, Taiwan
	Barath Raghavan , Saurabh Panjwani , Anton Mityagin, Analysis of the SPV secure routing protocol: weaknesses and lessons, ACM SIGCOMM Computer Communication Review, v.37 n.2, April 2007
	Ritesh Mukherjee , J. William Atwood, Scalable solutions for secure group communications, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.51 n.12, p.3525-3548, August, 2007
	Yossi Matias , Ely Porat, Efficient pebbling for list traversal synopses with application to program rollback, Theoretical Computer Science, v.379 n.3, p.418-436, June, 2007
	Xuefei Cao , Weidong Kou , Lanjun Dang , Bin Zhao, IMBAS: Identity-based multi-user broadcast authentication in wireless sensor networks, Computer Communications, v.31 n.4, p.659-667, March, 2008
	Peng Ning , An Liu , Wenliang Du, Mitigating DoS attacks against broadcast authentication in wireless sensor networks, ACM Transactions on Sensor Networks (TOSN), v.4 n.1, p.1-35, January 2008
	Ashish Kundu , Elisa Bertino, Structural signatures for tree data structures, Proceedings of the VLDB Endowment, v.1 n.1, August 2008
	Rainer Steinwandt , Viktória I. Villányi, A one-time signature using run-length encoding, Information Processing Letters, v.108 n.4, p.179-185, October, 2008
	Andrea Cirulli , Roberto Di Pietro, PEAC: a probabilistic, efficient, and resilient authentication protocol for broadcast communications, Proceedings of the 4th international conference on Security and privacy in communication netowrks, September 22-25, 2008, Istanbul, Turkey
	Yaohui Lei , Alejandro Quintero , Samuel Pierre, Mobile services access and payment through reusable tickets, Computer Communications, v.32 n.4, p.602-610, March, 2009