cryptography

Today, various clients use the cloud to transfer Thing by Internet (ETI). Many companies and organizations are persuaded to use the cloud utilities in secure environment. Beside of this technology is becoming popular, the risks and attacks on data are increasing. Ultimately, a security broker management in cloud services tries to balance security, performance, and availability features availabilities. This paper tries to increase the customer satisfaction index by creating 4 phases of security on the data process during transporting between the customer and the Cloud Service Provider (CSP), while increasing efficiency and availability. Tables and graphs show that the amount of the system allocated penalty is reduced by 61.41% and the customer satisfaction index has increased by 60.67%.

Today, the security of information in communication channels is of great importance, and the higher the classification of information, the higher the importance of security. From a long time ago, various encryption algorithms were proposed to ensure communication security, and different organizations use different encryption algorithms based on the sensitivity of the information. Information can be classified into different types, textual information is one of the most diverse types of information, which becomes more important if there is a classification. In this article, based on the 28-character alphabet, a new encryption method is presented, which has high security and speed, and is resistant to attacks based on the frequency of letters. Laboratory results show a very high resistance of this method against a comprehensive attack. The attacker's need for a lot of memory, which is practically inaccessible, that is another reason for the robustness of this algorithm. Given the key generation algorithm in this method, it can be ensured that this algorithm is also very resistant to attack in the middle.

One of the main components in the security of cryptography systems is random numbers. Random numbers are often used in the generation of secure keys, digital signatures, and other cryptographic systems. Random numbers generated by an algorithm are called pseudo-random numbers. Although pseudo-random numbers have good statistical properties, they have the problem of periodicity. For this reason, to generate random numbers, the true random number generator method is used, which uses a physical entropy source to generate random numbers. In the real random number generator method, due to the instability of electric circuits, a post-processing step is needed so that the generated numbers have acceptable statistical characteristics. In this paper, an overview of the common post-processing methods of random number generators has been done, so that some of the introduced methods are also used in the generation of quantum random numbers. An important point is the role of renewable energies in the design and construction of devices with limited computing power. For this purpose, in the final part of this article, a fast and optimal post-processing method is introduced in terms of hardware implementation, which can be used in mobile phones, smart cards and devices that have limited computing power.

Today, we are witnessing the expansion of various Internet of Things (IoT) applications and services such as monitoring and health. These services are delivered to users via smart devices anywhere and anytime. Forecasts show that the IoT, which is controlled online in the user environment, will reach 25 billion devices worldwide by 2020. Data security is one of the main concerns in the IoT. The IoT is supposed to deal with a population of about billions of objects, so the number of malicious attacks can be very high and alarming given the global connection (anyone access) and the wide availability (access to any place at any time). However, these accesses can make security and privacy critical. Reports show that 26% of IoT attacks in 2019 were related to non-authentication, which is why IoT authentication has become one of the most sensitive security concepts. IoT devices are usually left unattended and this makes it easy for an attacker to target such equipment. For example, security breaches and unwanted changes in patient's health parameters in smart health care systems can cause wrong treatments or even lead to his death. The fact that each device in the IoT knows who it is communicating with and at what level of access is one of the important aspects of security, especially in cases where various devices with different capabilities have to perform common tasks and cooperate with each other. IoT authentication is a trust model to protect control access and data when information travels between devices. So far, different methods have been proposed for authentication in the IoT network. These methods are usually based on the public key, private key, random key distribution, and hash function. A point that should be taken into account in IoT authentication is that IoT networks and devices have limited bandwidth, low memory, low processing power, and energy limitations. Therefore, the proposed method should pay special attention to such limitations. In addition, IoT authentication needs to ensure enhanced security features such as confidentiality, data integrity, reliability, maintainability, scalability, and privacy to their consumers. This paper proposes a two-way or mutual authentication protocol in which both devices authenticate each other without human intervention in a smart home network. The proposed protocol is based on asymmetric encryption for authentication of devices, which have a shared private session key, along with hashing operations in the network. Also, to ensure the security of communications at each session, each device has a one-time private session key. The session keys are changed regularly to ensure the security of sessions between devices. The proposed protocol is programmed by HLPSL and simulated and verified by the SPAN and AVISPA tools. The security analysis results show the proposed protocol is extremely practical, and secure against potential attacks.

IoT has the potential to become the most important concept that has led to a huge information and communication technology revolution in recent decades. In fact, the concept of the Internet of Things defines a global Internet-based network in which all objects can connect, exchange information and perform intelligent activities. This new concept has affected both civilian and military applications of its new definitions. With the advent of the Internet of Things, as well as the ability to connect various weapons systems to the network, the opportunity for commanders to facilitate weapons control and the speed of action in the reactions arises. In the meantime, and more than civilian applications, military IoT applications, known as the MIoT domain, are more important because they can have positive or destructive direct impacts on battlefields. Therefore, the security issues associated with different parts of the Militarily Internet of Things are critical. In this article, we will first discuss the concepts and architecture of the Military Internet of Things (MIoT) and review the mechanism of the Military Internet of Things with a focus on the United States MIoT. Then, we discuss security challenges and concerns, and finally, outline the Internet of Things security requirements for military things.

A Side Channel Attacker tries to infer sensitive information from a security device like a smart card using its power consumption, timing information or electromagnetic emanation. Implementation of cryptographic algorithms, regardless of how much their security is mathematically proven, demand for extra considerations to be secure against SCA. In this paper we introduce a CPU architecture which can execute two queues of instructions randomly interleaved which together comprise a whole cryptographic algorithm. Since execution order of instructions varies from each run to another, power consumption pattern of device is undetermined and can resist against SCA. We also use a set of methods to develop a compiler toolkit which can accept a program and produce two queues of instructions equivalent two the original program. We examined strength of our method, conducting a Correlation Power Analysis which is one kind of SCA.

In this paper, a new structure for image encryption using recursive cellular automatais presented. The image encryption contains three recursive cellular automata in three steps, individually. At the first step, the image is blocked and the pixels are substituted. In the next step, pixels are scrambledby the second cellular automata and at the last step, the blocks are attachedtogether and the pixels substitute by the third cellular automata. Due to reversibility of cellular automata, the decryption of the image is possible by doing the steps reversely. The experimental results show that the encrypted image is not comprehend visually, also this algorithmhas satisfactory performance in terms of quantitative assessment from some other schemes.

In this paper, a new structure for image encryption using hybrid cellular automata is presented. The image encryption is done in two steps. At the first step, each pixel is encrypted by rules of hybrid cellular automata. In the next step, each pixel converted to a binary number and each bit is encrypted by rules of cellular automata. The rules are made by a function. Due to reversibility of cellular automata, the decryption of the image is possible by doing the steps reversely. The experimental results show that this algorithm has satisfactory performance in terms of quantitative assessment.

Quantum Cellular Automata (QCA) represents an emerging technology at the nanotechnology level. Because of high speed, nanoscale size and ultra low power nature of QCA, cryptography can be an interesting application of QCA technology. QCA implementation of the serpent block cipher is discussed in this paper. The basic modules of serpent are implemented using QCA cells. it can be obviously seen that the implementation of cryptographic algorithms in this technology has considerable advantages compared to conventional CMOS approach.

Quantum Cellular Automata (QCA) represents an emerging technology at the nanotechnology level. Nowadays, many applications of QCA technology are introduced and cryptography can be an interesting application of QCA technology. The original encryption algorithm for GSM was A5/1. Here, we have implemented the A5/1 stream cipher using QCA technology. Simulation results are obtained from soft ware of QCA Designer.