Skip to Main content Skip to Navigation
Journal articles

Comment on "Efficient and Secure Outsourcing Scheme for RSA Decryption in Internet of Things"

Abstract : Internet of Things (IoT) devices have grown in popularity over the past few years. The RSA public-key cryptographic primitive is time-consuming for resource-constrained IoT. Recently, Zhang, Yu, Tian, Tong, Lin, Ge and Wang proposed a two-party outsourcing protocol between a client and a server for RSA decryption in IoT. It relies on the Chinese Remainder Theorem as proposed by Quisquater and Couvreur in 1982 and is very efficient. We show that their protocol does not achieve the claimed security guarantees: (1) the (secret) decryption exponent, the plaintext and the factorization of the RSA modulus are revealed to a passive adversary, and (2) a malicious server can make the client accept an (invalid) value of its choice as the result of the delegated computation.
Document type :
Journal articles
Complete list of metadata

Cited literature [18 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-02876134
Contributor : Damien Vergnaud <>
Submitted on : Saturday, June 20, 2020 - 5:16:00 PM
Last modification on : Tuesday, March 23, 2021 - 9:28:03 AM

File

comment-iot-final.pdf
Files produced by the author(s)

Identifiers

Citation

Damien Vergnaud. Comment on "Efficient and Secure Outsourcing Scheme for RSA Decryption in Internet of Things". IEEE internet of things journal, IEEE, In press, 7 (11), pp.11327-11329. ⟨10.1109/JIOT.2020.3004346⟩. ⟨hal-02876134⟩

Share

Metrics

Record views

45

Files downloads

116