{"id":"https://openalex.org/W4405786493","doi":"https://doi.org/10.1109/tifs.2024.3523202","title":"An Efficient Privacy-Preserving Scheme for Weak Password Collection in Internet of Things Against Perpetual Leakage","display_name":"An Efficient Privacy-Preserving Scheme for Weak Password Collection in Internet of Things Against Perpetual Leakage","publication_year":2024,"publication_date":"2024-12-25","ids":{"openalex":"https://openalex.org/W4405786493","doi":"https://doi.org/10.1109/tifs.2024.3523202"},"language":"en","primary_location":{"id":"doi:10.1109/tifs.2024.3523202","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2024.3523202","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://ink.library.smu.edu.sg/sis_research/10813","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5008065088","display_name":"Changsong Jiang","orcid":"https://orcid.org/0000-0002-6510-3380"},"institutions":[{"id":"https://openalex.org/I150229711","display_name":"University of Electronic Science and Technology of China","ror":"https://ror.org/04qr3zq92","country_code":"CN","type":"education","lineage":["https://openalex.org/I150229711"]},{"id":"https://openalex.org/I3018263800","display_name":"Huzhou University","ror":"https://ror.org/04mvpxy20","country_code":"CN","type":"education","lineage":["https://openalex.org/I3018263800"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Changsong Jiang","raw_affiliation_strings":["School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China","Yangtze Delta Region Institute (Huzhou), University of Electronic Science and Technology of China, Huzhou, P. R. China"],"raw_orcid":"https://orcid.org/0000-0002-6510-3380","affiliations":[{"raw_affiliation_string":"School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China","institution_ids":["https://openalex.org/I150229711"]},{"raw_affiliation_string":"Yangtze Delta Region Institute (Huzhou), University of Electronic Science and Technology of China, Huzhou, P. R. China","institution_ids":["https://openalex.org/I3018263800","https://openalex.org/I150229711"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5064473849","display_name":"Chunxiang Xu","orcid":"https://orcid.org/0000-0002-5411-7621"},"institutions":[{"id":"https://openalex.org/I150229711","display_name":"University of Electronic Science and Technology of China","ror":"https://ror.org/04qr3zq92","country_code":"CN","type":"education","lineage":["https://openalex.org/I150229711"]},{"id":"https://openalex.org/I3018263800","display_name":"Huzhou University","ror":"https://ror.org/04mvpxy20","country_code":"CN","type":"education","lineage":["https://openalex.org/I3018263800"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Chunxiang Xu","raw_affiliation_strings":["School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China","Yangtze Delta Region Institute (Huzhou), University of Electronic Science and Technology of China, Huzhou, P. R. China"],"raw_orcid":"https://orcid.org/0000-0002-5411-7621","affiliations":[{"raw_affiliation_string":"School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China","institution_ids":["https://openalex.org/I150229711"]},{"raw_affiliation_string":"Yangtze Delta Region Institute (Huzhou), University of Electronic Science and Technology of China, Huzhou, P. R. China","institution_ids":["https://openalex.org/I3018263800","https://openalex.org/I150229711"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100862227","display_name":"Xinfeng Dong","orcid":null},"institutions":[{"id":"https://openalex.org/I150229711","display_name":"University of Electronic Science and Technology of China","ror":"https://ror.org/04qr3zq92","country_code":"CN","type":"education","lineage":["https://openalex.org/I150229711"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xinfeng Dong","raw_affiliation_strings":["School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China","institution_ids":["https://openalex.org/I150229711"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101672513","display_name":"Kefei Chen","orcid":null},"institutions":[{"id":"https://openalex.org/I163151501","display_name":"Hangzhou Normal University","ror":"https://ror.org/014v1mr15","country_code":"CN","type":"education","lineage":["https://openalex.org/I163151501"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Kefei Chen","raw_affiliation_strings":["Department of Mathematics, Hangzhou Normal University, Hangzhou, China"],"raw_orcid":"https://orcid.org/0000-0003-1961-5614","affiliations":[{"raw_affiliation_string":"Department of Mathematics, Hangzhou Normal University, Hangzhou, China","institution_ids":["https://openalex.org/I163151501"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5091475823","display_name":"Guomin Yang","orcid":"https://orcid.org/0000-0002-4949-7738"},"institutions":[{"id":"https://openalex.org/I79891267","display_name":"Singapore Management University","ror":"https://ror.org/050qmg959","country_code":"SG","type":"education","lineage":["https://openalex.org/I79891267"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Guomin Yang","raw_affiliation_strings":["School of Computing and Information Systems, Singapore Management University, Bras Basah, Singapore","School of Computing and Information Systems, Singapore Management University, Singapore"],"raw_orcid":"https://orcid.org/0000-0002-4949-7738","affiliations":[{"raw_affiliation_string":"School of Computing and Information Systems, Singapore Management University, Bras Basah, Singapore","institution_ids":["https://openalex.org/I79891267"]},{"raw_affiliation_string":"School of Computing and Information Systems, Singapore Management University, Singapore","institution_ids":["https://openalex.org/I79891267"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5008065088"],"corresponding_institution_ids":["https://openalex.org/I150229711","https://openalex.org/I3018263800"],"apc_list":null,"apc_paid":null,"fwci":5.222,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.95898054,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":99},"biblio":{"volume":"20","issue":null,"first_page":"1405","last_page":"1420"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9944000244140625,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9944000244140625,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9696999788284302,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10828","display_name":"Biometric Identification and Security","score":0.935699999332428,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8006207942962646},{"id":"https://openalex.org/keywords/password","display_name":"Password","score":0.8000836372375488},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6544091701507568},{"id":"https://openalex.org/keywords/internet-of-things","display_name":"Internet of Things","score":0.5919798612594604},{"id":"https://openalex.org/keywords/scheme","display_name":"Scheme (mathematics)","score":0.49673038721084595},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.48680374026298523},{"id":"https://openalex.org/keywords/leakage","display_name":"Leakage (economics)","score":0.47399842739105225},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4681817591190338},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4246230721473694},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.42352113127708435},{"id":"https://openalex.org/keywords/password-cracking","display_name":"Password cracking","score":0.4126232862472534},{"id":"https://openalex.org/keywords/one-time-password","display_name":"One-time password","score":0.4008483290672302},{"id":"https://openalex.org/keywords/password-strength","display_name":"Password strength","score":0.30816954374313354},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.22285154461860657}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8006207942962646},{"id":"https://openalex.org/C109297577","wikidata":"https://www.wikidata.org/wiki/Q161157","display_name":"Password","level":2,"score":0.8000836372375488},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6544091701507568},{"id":"https://openalex.org/C81860439","wikidata":"https://www.wikidata.org/wiki/Q251212","display_name":"Internet of Things","level":2,"score":0.5919798612594604},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.49673038721084595},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.48680374026298523},{"id":"https://openalex.org/C2777042071","wikidata":"https://www.wikidata.org/wiki/Q6509304","display_name":"Leakage (economics)","level":2,"score":0.47399842739105225},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4681817591190338},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4246230721473694},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.42352113127708435},{"id":"https://openalex.org/C3847113","wikidata":"https://www.wikidata.org/wiki/Q2746524","display_name":"Password cracking","level":5,"score":0.4126232862472534},{"id":"https://openalex.org/C89479133","wikidata":"https://www.wikidata.org/wiki/Q1137840","display_name":"One-time password","level":3,"score":0.4008483290672302},{"id":"https://openalex.org/C70530487","wikidata":"https://www.wikidata.org/wiki/Q1990841","display_name":"Password strength","level":4,"score":0.30816954374313354},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.22285154461860657},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C139719470","wikidata":"https://www.wikidata.org/wiki/Q39680","display_name":"Macroeconomics","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tifs.2024.3523202","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2024.3523202","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},{"id":"pmh:oai:ink.library.smu.edu.sg:sis_research-11815","is_oa":true,"landing_page_url":"https://ink.library.smu.edu.sg/sis_research/10813","pdf_url":null,"source":{"id":"https://openalex.org/S4306401925","display_name":"Singapore Management University Institutional Knowledge (InK) (Singapore Management University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79891267","host_organization_name":"Singapore Management University","host_organization_lineage":["https://openalex.org/I79891267"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://doi.org/10.1109/TIFS.2024.3523202","raw_type":"Journal Article"}],"best_oa_location":{"id":"pmh:oai:ink.library.smu.edu.sg:sis_research-11815","is_oa":true,"landing_page_url":"https://ink.library.smu.edu.sg/sis_research/10813","pdf_url":null,"source":{"id":"https://openalex.org/S4306401925","display_name":"Singapore Management University Institutional Knowledge (InK) (Singapore Management University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79891267","host_organization_name":"Singapore Management University","host_organization_lineage":["https://openalex.org/I79891267"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://doi.org/10.1109/TIFS.2024.3523202","raw_type":"Journal Article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/5","display_name":"Gender equality","score":0.4399999976158142}],"awards":[{"id":"https://openalex.org/G2782668500","display_name":null,"funder_award_id":"62272091","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":42,"referenced_works":["https://openalex.org/W1576411270","https://openalex.org/W1584498424","https://openalex.org/W1610688607","https://openalex.org/W1694136297","https://openalex.org/W1967308747","https://openalex.org/W2073342447","https://openalex.org/W2146270836","https://openalex.org/W2149929743","https://openalex.org/W2155873597","https://openalex.org/W2165257856","https://openalex.org/W2168970529","https://openalex.org/W2230451675","https://openalex.org/W2538793708","https://openalex.org/W2621151780","https://openalex.org/W2662464606","https://openalex.org/W2734150319","https://openalex.org/W2750634282","https://openalex.org/W2891698757","https://openalex.org/W2914261331","https://openalex.org/W2983838566","https://openalex.org/W3007412953","https://openalex.org/W3045898733","https://openalex.org/W3097523736","https://openalex.org/W3110885177","https://openalex.org/W3136030217","https://openalex.org/W3167626677","https://openalex.org/W3185386066","https://openalex.org/W4245814547","https://openalex.org/W4247857566","https://openalex.org/W4295241276","https://openalex.org/W4308408787","https://openalex.org/W4365421284","https://openalex.org/W4368232621","https://openalex.org/W4392136905","https://openalex.org/W4392405631","https://openalex.org/W4392666399","https://openalex.org/W4402212157","https://openalex.org/W6605803077","https://openalex.org/W6632790133","https://openalex.org/W6719406283","https://openalex.org/W6722583902","https://openalex.org/W6767270520"],"related_works":["https://openalex.org/W3088784215","https://openalex.org/W2949495265","https://openalex.org/W2054626033","https://openalex.org/W2021087413","https://openalex.org/W2953105088","https://openalex.org/W2969720675","https://openalex.org/W2400890210","https://openalex.org/W2989690789","https://openalex.org/W85711018","https://openalex.org/W2743151892"],"abstract_inverted_index":{"Password-based":[0],"authentication":[1],"is":[2,119,156,192,244],"widely":[3],"applied":[4],"in":[5,113,161],"Internet":[6],"of":[7,25,42,58,96,186,234],"Things":[8],"(IoT).":[9],"It":[10],"allows":[11],"IoT":[12,46,114,135],"devices":[13,47,91,187],"to":[14,19,37,48,148,164,199,212,222,240],"identify":[15,150],"users":[16],"with":[17,144,194],"passwords":[18,44,64],"resist":[20,200],"unauthorized":[21],"access.":[22],"However,":[23],"choices":[24],"weak":[26,59,110],"passwords,":[27,152],"especially":[28],"popular":[29,43,151],"ones,":[30],"might":[31],"violate":[32],"users\u2019":[33],"privacy":[34],"and":[35,78,86,92,125,132,168,236],"lead":[36],"large-scale":[38],"network":[39],"attacks.":[40,204],"Collection":[41],"among":[45],"establish":[49],"blocklists":[50],"via":[51],"a":[52,141,154,183,195,208],"service":[53,179],"provider":[54,180],"can":[55,171],"prevent":[56],"use":[57],"passwords.":[60],"To":[61],"protect":[62],"unpopular":[63],"during":[65],"collection,":[66],"existing":[67,248],"privacy-preserving":[68,107],"schemes":[69],"rely":[70],"on":[71,89,122,134,219],"expensive":[72],"cryptographic":[73],"primitives":[74],"(e.g.,":[75],"garbled":[76],"circuits":[77],"zero-knowledge":[79],"proofs),":[80],"which":[81],"would":[82],"impose":[83],"heavy":[84],"communication":[85,133],"computation":[87,131],"burdens":[88],"constrained":[90],"hinder":[93],"wide":[94],"deployment":[95],"these":[97],"schemes.":[98,249],"In":[99,137],"this":[100],"paper,":[101],"we":[102,139],"propose":[103],"EAGER+,":[104,138,235],"an":[105],"efficient":[106,246],"scheme":[108],"for":[109,216],"password":[111,155,170,217],"collection":[112],"against":[115],"perpetual":[116,224],"leakage.":[117],"EAGER+":[118,206,243],"mainly":[120],"built":[121],"secret":[123],"sharing":[124],"symmetric":[126],"encryption,":[127],"thereby":[128],"enabling":[129],"lightweight":[130],"devices.":[136],"conceive":[140],"password-locked":[142],"encryption":[143,163],"conditional":[145],"decryption":[146],"mechanism":[147,191,198,211],"efficiently":[149],"where":[153],"essentially":[157],"locked":[158],"under":[159],"itself":[160],"the":[162,169,175,178,227,232],"guarantee":[165],"its":[166],"security,":[167],"be":[172],"revealed":[173],"from":[174],"ciphertext":[176],"by":[177],"only":[181],"if":[182],"sufficient":[184],"number":[185],"exploit":[188],"it.":[189],"The":[190],"integrated":[193],"servers-aided":[196],"password-hardening":[197],"offline":[201],"dictionary":[202],"guessing":[203],"Moreover,":[205],"uses":[207],"key":[209,220],"renewal":[210],"periodically":[213],"update":[214],"secrets":[215],"hardening":[218],"servers":[221],"thwart":[223],"leakage":[225],"towards":[226],"secrets.":[228],"We":[229],"formally":[230],"analyze":[231],"security":[233],"conduct":[237],"experimental":[238],"evaluations":[239],"show":[241],"that":[242],"more":[245],"than":[247]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":5}],"updated_date":"2025-12-27T23:08:20.325037","created_date":"2025-10-10T00:00:00"}