TS-ABOS-CMS: time-bounded secure attribute-based online/offline signature with constant message size for IoT systems

Authentication is especially significant in IoT since the identity of the connected object needs to be verified before carrying out interaction processes with the various IoT data. The involvement of data has raised the concern about the risk of secure data sharing, which becomes a huge challenge when deploying IoT applications into real applications. In this paper, we present a time-bounded secure attribute-based online/offline signature with constant message size (TS-ABOS-CMS). Our scheme achieves high efficiency by introducing online/offline signing method and maintaining the communication overheads at a constant level. In addition, we adopt the key refreshing mechanism to provide time-bounded security protections for IoT terminals. We design the concrete algorithms of TS-ABOS-CMS and present its security proof. By performance assessment in terms of theoretical analysis and experiments on hardware, our TS-ABOS-CMS is demonstrated to be equipped with beneficial efficacy and appropriate to be deployed for data authentication in IoT scenarios.