Volume-5 Issue-2, November 2025 – Indian Journal of Cryptography and Network Security (IJCNS)

B144205021125

IJCNS Journal — Sat, 01 Nov 2025 08:53:31 +0000

The Indian Journal of Cryptography and Network Security (IJCNS) has ISSN 2582-9238 (online), an open-access, peer-reviewed, periodical half-yearly international journal, which is published by Lattice Science Publication (LSP) in May and November. The aim of the journal is to publish high quality peer–reviewed original articles in the area of Cryptography and Network Security that covers Cryptographic Protocols, Cryptography and Coding, Untrace-Ability, Privacy and Authentication, Key Management, Authentication, Trust Management, Quantum Cryptography, Computational Intelligence in Security, Artificial Immune Systems, Biological & Evolutionary, Computation, Intelligent Agents and Systems, Reinforcement & Unsupervised Learning, Autonomy-Oriented Computing, Coevolutionary Algorithms, Fuzzy Systems, Biometric Security, Trust Models and Metrics, Regulation and Trust Mechanisms, Data Integrity, Models for Authentication, Trust and Authorization, Wireless Network Security, Information Hiding, Data & System Integrity, Access Control and Intrusion Detection, Intrusion Detection and Vulnerability Assessment, Authentication and Non-Repudiation, Identification and Authentication Insider Threats and Countermeasures, Intrusion Detection & Prevention, Secure Cloud Computing, Security Information Systems Architecture and Design and Security Patterns, Security Management, Security Requirements (Threats, Vulnerabilities, Risk, Formal Methods, etc.), Sensor and Mobile ad hoc Network Security, Service and Systems Design and QOS Network Security, System Security, Intrusion Detection, Secure end Systems, Secure Operating Systems, Data Base Security, Security Infrastructures, Security Evaluation, Software Security, Security and Privacy in Mobile Systems, Security and Privacy in Pervasive/Ubiquitous Computing, Security and Privacy in Web Services, Security and Privacy Policies, Security Area Control, Security Deployment, Security Engineering, Security for Grid Computing, Security in Distributed Systems, Network Security, Internet Security, Firewalls, Mobile Security, Security Agents, Protocols, Anti-Virus and Anti-Hacker Measures, Content Protection, Software Protection, Tamper Resistant Software, Electronic Commerce, Electronic Government, Health, Telecommunications, Mobility, Foundations, Privacy, Access Control, Identification, Applied Cryptography and Formal Methods in Information Security.#Cryptographic Protocols #Cryptography and Coding #Untrace-Ability #Privacy and Authentication #Key Management #Authentication #Trust Management #Quantum Cryptography #Computational Intelligence in Security #Artificial Immune Systems #Biological & Evolutionary Computation #Intelligent Agents and Systems #Reinforcement & Unsupervised Learning #Autonomy-Oriented Computing #Coevolutionary Algorithms #Fuzzy Systems #Biometric Security #Trust Models and Metrics #Regulation and Trust Mechanisms #Data Integrity #Models for Authentication #Trust and Authorization #Wireless Network Security #Information Hiding #Data & System Integrity #Access Control and Intrusion Detection #Intusion Detection and Vulnerability Assessment #Authentication and Non-Repudiation #Identification and Authentication #Insider Threats and Countermeasures #Intrusion Detection & Prevention #Secure Cloud Computing #Security Information Systems Architecture and Design and Security Patterns #Security Management #Security Requirements (Threats, Vulnerabilities, Risk, Formal Methods, etc.) #Sensor and Mobile ad hoc Network Security #Service and Systems Design and QOS Network Security #System Security #Intrusion Detection #Secure end Systems #Secure Operating Systems #Data Base Security #Security Infrastructures #Security Evaluation #Software Security #Security and Privacy in Mobile Systems #Security and Privacy in Pervasive/Ubiquitous Computing #Security and Privacy in Web Services #Security and Privacy Policies #Security Area Control #Security Deployment #Security Engineering #Security for Grid Computing #Security in Distributed Systems #Network Security #Internet Security #Firewalls #Mobile Security #Security Agents #Protocols #Anti-Virus and Anti-Hacker Measures #Content Protection #Software Protection #Tamper Resistant Software #Electronic Commerce #Electronic Government #Health #Telecommunications #Mobility #Foundations #Privacy #Access Control #Authentication #Identification #Applied Cryptography #Formal Methods in Information Security #PhD ademic #Scopus #SCI #LatticeScience #Springer, #ScienceDirect #IEEE #Mendeley #Research #Scholarship #UGC #SSRN #LatticeScience #ESCI #Science #Journal #Conference #SSRN #PubLons #PhD #Academic #Scopus #SCI #LatticeScience #Springer, #ScienceDirect #IEEE #Mendeley #Research #Scholarship #UGC #SSRN #LatticeScience #ESCI #Science #Journal #Conference #SSRN #PubLons

Simplest (3,2) Threshold Secret Sharing Schemes Based on EXCLUSIVE-OR Function
Sergei Kulikov

Sergei Kulikov, Head, Department of Biostatistics, National Research Center for Hematology, Novozykovsky pr. 4A, MOSCOW, Russian Federation (RUS), Russia.

Abstract: This paper presents a new XOR-based secret sharing scheme designed for simplicity, efficiency, and strong security guarantees. Unlike traditional threshold schemes that rely on matrix operations and work on large data blocks, the proposed method operates on a per-byte basis, applying lightweight bytewise XOR calculations. The goal of this research is to create a minimalistic yet robust (3,2) threshold secret sharing algorithm that is practical for real-world systems with constrained computational resources. The proposed scheme divides a secret file into three independent shadow shares using a simple transformation: each share is generated as the XOR of the secret with a random byte string and a shifted version of that string. Specifically, the algorithm uses one random string and constructs the second and third shares by XOR-ing the secret with the random string and with the string shifted by one byte in opposite directions. This process is applied independently to each byte of the secret file. The resulting scheme is both perfect and ideal: each share is the same size as the original file, and no information about the secret can be obtained from a single share. Any two out of three shares are sufficient to reconstruct the original data, while fewer reveal nothing. The encoding and decoding procedures are transparent, computationally efficient, and well-suited for implementation in hardware or constrained environments. The algorithm was implemented in Fortran and can be easily integrated into secure cloud storage systems, distributed communication protocols, or embedded devices. This work contributes a lightweight alternative to existing XOR-based sharing methods, providing a novel balance between cryptographic strength and algorithmic simplicity.

Keywords: Secret Sharing. Cryptographic Protocols, Real-Time Systems.
Scope of the Article: Cryptographic Algorithms

Download PDF

The post B144205021125 appeared first on Indian Journal of Cryptography and Network Security (IJCNS).

B144105021125

IJCNS Journal — Sat, 01 Nov 2025 07:55:56 +0000

Ring-LWE Identity-Based Encryption with Dynamic Revocation for Cloud Data Sharing
Gabriel Assamah¹, Alimatu Latiff Y², Benjamin Appiah³, Regina Esi T⁴, Emmanuel Derry⁵

¹Gabriel Assamah, Department of Computer Science, University of Cape Coast, Cape Coast, Ghana.

²Alimatu Latiff Yussif, Department of Computer Science, University of Cape Coast, Cape Coast, Ghana.

³Benjamin Appiah, Department of Computer Science, Ho Technical University, Ho, Ghana.

⁴Regina Esi Turkson, Department of Computer Science, University of Cape Coast, Cape Coast, Ghana.

⁵Emmanuel Derry, Department of Computer Science, University of Cape Coast, Cape Coast, Ghana.

Abstract: Cloud storage faces significant security and access control challenges due to reduced user oversight and the emerging threat of quantum computing to traditional cryptographic methods. Existing revocable Identity-Based Encryption (IBE) schemes are limited by their lack of postquantum security, inefficient revocation mechanisms that require re-encryption of data, and cumbersome key update procedures. We propose a post-quantum secure Ring-LWE IBE scheme with dynamic time-based revocation tailored for cloud environments. Our solution is built on the hardness of the Ring Learning with Errors (RLWE) problem to ensure quantum resistance and introduces a novel time-based revocation framework. In our approach, user access is bound to discrete periods and managed through a hierarchical binary tree structured over identities and time. This design eliminates the need to re-encrypt stored data upon user revocation. Instead, a trusted authority periodically distributes lightweight key updates exclusively to non-revoked users. Thanks to the binary tree structure, non-revoked users can compute updated decryption keys with only O (log Nₘₐₓ) overhead in both computation and communication, where Nₘₐₓ is the maximum number of users or periods. Revoked users, having no access to future updates, lose decryption capabilities. We provide formal security proofs showing the scheme’s resistance against adaptive identity and time-period-based attacks, grounded in the RLWE assumption. Overall, our scheme offers an effective combination of post-quantum security, efficient access control, and simplified key management, making it suitable for secure cloud data sharing in the quantum era.

Keywords: IBE, Post-Quantum Cryptography, Ring-LWE, Time-based Revocation, Secure Cloud Storage.
Scope of the Article: Cryptographic Algorithms

Download PDF

The post B144105021125 appeared first on Indian Journal of Cryptography and Network Security (IJCNS).

Volume-5 Issue-2, November 2025 – Indian Journal of Cryptography and Network Security (IJCNS)

B144205021125

Share this entry

B144105021125

Share this entry