IMPLEMENTASI SKEMA SIGN-THEN-ENCRYPT MENGGUNAKAN KRIPTOSISTEM RSA-OAEP DAN TANDA TANGAN DIGITAL DISSANAYAKE
Isi Artikel Utama
Abstrak
Perkembangan teknologi informasi yang masif menuntut adanya jaminan keamanan data yang tangguh selama proses transmisi pada jaringan terbuka guna memitigasi risiko intersepsi pasif dan modifikasi aktif oleh pihak ilegal. Penelitian ini bertujuan untuk mengimplementasikan dan menganalisis performa skema keamanan Sign-then-Encrypt yang mengintegrasikan Kriptosistem Optimal Asymmetric Encryption Padding (RSA-OAEP) dengan Dissanayake Digital Signature. Metode penelitian dilakukan melalui pengujian eksperimental terhadap parameter waktu eksekusi (execution time) komponen key generation, enkripsi, dekripsi, serta verifikasi menggunakan variasi panjang plaintext dari 50 hingga 250 karakter, dilanjutkan dengan pengujian sensitivitas Avalanche Effect. Hasil penelitian menunjukkan fungsi penandatanganan digital (signing) dan verifikasi pada Algoritma Dissanayake bekerja baik, dengan rata-rata waktu signing stabil pada 0,02-0,024 detik dan waktu verifikasi pada skala mikro-detik (0,000048-0,000062 detik). Sementara itu, proses enkripsi RSA-OAEP memerlukan waktu di bawah 0,08 detik, dan proses dekripsinya berkisar antara 0,503–0,963 detik. Pengujian Avalanche Effect menghasilkan nilai rata-rata yang sangat ideal mendekati ambang batas kriptografis kokoh, yaitu sebesar 50,95% untuk algoritma Dissanayake dan 51,15% untuk RSA-OAEP. Kesimpulan dari penelitian ini membuktikan bahwa integrasi skema Sign-then-Encrypt tersebut sangat optimal, sensitif terhadap perubahan satu karakter data, dan andal dalam menjaga kerahasiaan serta integritas pesan.
Rincian Artikel
Artikel ini berlisensiCreative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
Copyright (c) STMIK TIMEReferensi
[1] S. Sharma and R. Kumar, "Review on modern cryptographic techniques and cyber security challenges," IEEE Access, vol. 10, pp. 21045-21060, 2022.
[2] A. Kumar and N. Singh, "Hybrid cryptography for secure data transmission in cloud environments," Journal of King Saud University - Computer and Information Sciences, vol. 34, no. 5, pp. 1845-1856, 2022.
[3] M. Ramadhan, A. S. Ahmad, and T. Wahyuni, "Analisis perbandingan performa algoritma kriptografi kunci publik pada pengamanan data teks," Jurnal Nasional Teknik Elektro dan Teknologi Informasi, vol. 12, no. 2, pp. 145-152, 2023.
[4] S. Al-Riyami, "An overview of signcryption and authenticated encryption paradigms," Journal of Information Security and Applications, vol. 72, Art. no. 103412, 2024.
[5] J. An, "A Note on Relation between Encryption and Signature Schemes in the Public-Key Model," Cryptology ePrint Archive, Report 2001/018, 2001.
[6] X. Boyen and G. Waters, "Signcryption vs. sign-then-encrypt: Paradigm analysis in public-key cryptography," Designs, Codes and Cryptography, vol. 91, no. 4, pp. 1125-1148, 2023.
[7] H. Siregar, "Implementasi protokol kemanan jaringan berbasis sign-then-encrypt untuk pengamanan dokumen elektronik," Jurnal Ilmiah Teknologi Informasi, vol. 22, no. 1, pp. 34-43, 2024.
[8] L. Zhang, "Security analysis of sign-then-encrypt paradigm in public-key settings," Journal of Computer Security, vol. 32, no. 1, pp. 45-67, 2024.
[9] K. Prasad, "Performance evaluation of lightweight digital signatures in asymmetric environments," International Journal of Information Security, vol. 23, no. 3, pp. 189-201, 2023.
[10] M. W. D. M. G. Dissanayake, "A Novel Scheme for Digital Signatures," International Journal of Electronics and Information Engineering, vol. 11, no. 2, pp. 61-72, Dec. 2019.
[11] R. Bahri, M. A. Budiman, and B. B. Nasution, "Sign-Then-Encrypt Scheme with Cramer-Shoup Cryptosystem and Dissanayake Digital Signature," Journal of Computing and Applied Informatics, vol. 7, no. 2, pp. 114-123, 2023.
[12] M. A. Budiman, R. Bahri, and H. Wijaya, "Optimasi waktu komputasi tanda tangan digital berbasis teori bilangan ganjil," Jurnal Teknologi dan Sistem Komputer, vol. 12, no. 1, pp. 55-62, 2024.
[13] J. Gomez, "Mathematical reduction of modular exponentiation overhead in asymmetric schemes," IEEE Transactions on Information Forensics and Security, vol. 20, pp. 889-902, 2025.
[14] T. Shindo and H. Tanaka, "Provable security of RSA-OAEP under adaptive chosen ciphertext attacks in the standard model," IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences, vol. E106-A, no. 9, pp. 1201-1215, 2023.
[15] A. Pratama, "Kajian komparatif keamanan skema padding rsa-oaep terhadap serangan oracle aktif," Jurnal Cyberku, vol. 8, no. 2, pp. 89-98, 2022.
[16] J. Manger, "A chosen ciphertext attack on RSA optimal asymmetric encryption padding (OAEP) as defined in PKCS #1 v2.0," Journal of Cryptographic Engineering, vol. 14, no. 1, pp. 85-99, 2021.
[17] Y. Lu, "Resource-constrained cryptographic protocols: A comparative analysis," IEEE Internet of Things Journal, vol. 11, no. 2, pp. 3120-3135, 2024.
[18] P. Gupta, "Cryptographic overhead reduction in real-time communication systems," Computer Networks, vol. 258, Art. no. 110432, 2025.
[19] I. K. Wijaya and R. Kusuma, "Analisis penggunaan resource memori pada algoritma enkripsi asimetris probabilistik," Jurnal Infotel, vol. 15, no. 3, pp. 201-209, 2023.
[20] L. Tan, M. Watson, and H. Kim, "Authenticated encryption and hybrid envelope paradigms in modern cloud architectures," International Journal of Communication Systems, vol. 39, no. 2, pp. 1412-1430, 2026.