https://isj.vn/index.php/journal_STIS/issue/feedJournal of Science and Technology on Information security2026-06-24T00:00:00+07:00Ban thư ký/Secretariatisj.vn.2015@gmail.comOpen Journal Systems<h2 style="color: red !important; font-size: 30px;">About the Journal</h2> <h1><strong><span class="pkp_screen_reader">Edit About the Journal<span style="font-size: 14px;">Information Security Journal publishes a periodical academic, scientific, specialized journal in the field of information security named “Journal of Science and Technology on Information security”. The publication aims to create a forum to discuss scientific and technological issues in the field of information security, to support of researching science and technology in this field, and contribute to connecting research, trainning and applications deployment.</span></span></strong></h1> <div id="sponsors"> <p>The Journal of Science and Technology on Information Security - abbreviated name ISJ, with index ISSN 2615-9570 is a publication of Information Security Journal, Vietnam Government Information Security Commission. This is an academic, scientific, specialized magazine and is also a place to discuss scientific and technological issues in the field of information security, support scientific and technological research in this field, and contribute connecting research, training and application deployment. Helpful for leaders, managers, scientific and technical staff, teachers, students...</p> <p>The Journal of Science and Technology on Information Security has been published since 2015 with 2 issues/year (1 issue in Vietnamese and 1 issue in English). By 2022, the publication has increased the number of publications to 3 issues/year with 2 English issues (published in June and December) and 1 Vietnamese issue (published in September). From 2024, the Journal's installments will be published entirely in English.</p> <p>The Journal of Science and Technology on Information security in the field of Information Security is recognized as high quality according to Decision No. 22/QĐ-HĐGSNN of the State Council for Professorship (<a href="http://hdgsnn.gov.vn/tin-tuc/quyet-dinh-so-25-qd-hdgsnn-phe-duyet-danh-muc-tap-chi-khoa-hoc-duoc-tinh-diem-nam-2024_788/">http://hdgsnn.gov.vn/tin-tuc/quyet-dinh-so-25-qd-hdgsnn-phe-duyet-danh-muc-tap-chi-khoa-hoc-duoc-tinh-diem-nam-2024_788/</a>). According to The State Council for Professorship of Vietnam, the paper are counted 0.75 score by The Council for Professorship in Information Technology and 0.75 score by The Interdisciplinary Council for Professorship in Electrical-Electronics-Automation.</p> <p>The papers published in the Journal are scientific research works, new technologies applications, scientific achievements and new techniques in the field of information security. They have not been published or sent to any magazines or any conference proceedings.</p> <p>The papers are sent to scientists for strict assessment and criticism and to be counted points, according to the process of publishing scientific works of The State Council for Professor Title of Vietnam. The authors whose papers are published will receive royalties according to the provisions of the Journal, along with the issues including their papers and soft copies (PDFs) of other issues if needed. Authors do not have to submit any fees when submitting articles. All cost for the publication process is supported by Journal of Science and Technology on Information security.</p> <p> </p> <p> </p> </div> <h2 style="color: red !important; font-size: 30px;"><strong>Call for scientific papers for</strong><strong> 2026</strong></h2> <div class="content-new" style="font-size: 14px; line-height: 25px;"> <p><img style="width: 207px; float: left; margin-right: 20px; margin-bottom: 50px; margin-top: 10px;" src="https://isj.vn/public/site/images/admin/bia-en.png" alt="" height="289" />Dear professionals!</p> <p>To prepare for publishing the Journal of Science and Technology on Information security 2026 in English and aim to become a prestigious, quality magazine with unique characteristics in the field of information security and safety. The Journal respectfully invites and calls on all domestic and foreign scientists to submit quality articles to the Journal. The release schedule for 3 issues in 2026 is as follows:</p> <p>No. 1.CS(27) 2026 is expected to be published: June 2026</p> <p>No. 2.CS(28) 2026 is expected to be published: September 2026</p> <p>No. 3.CS(29) 2026 is expected to be published: December 2026</p> <p>Authors please submit the manuscript according to the format of the Journal provided at <a href="https://isj.vn/index.php/journal_STIS/information/authors">https://isj.vn/index.php/journal_STIS/information/authors</a>. Article submission rules and guidelines for presenting articles are posted on the website <a href="https://isj.vn/index.php/journal_STIS/about/submissions">https://isj.vn/index.php/journal_STIS/about/submissions</a>. <span class="text">For support, please contact us via email at </span><a class="text-is-email" href="mailto:thukychuyensan@bcy.gov.vn" target="_blank" rel="noopener">thukychuyensan@bcy.gov.vn</a><span class="text"> or reach out to the Administrative Secretary, Hoang Thi Thu Hang (mobile phone at </span><a class="text-is-phone-number">+84 914372016)</a>.</p> <p>Sincerely./.</p> </div>https://isj.vn/index.php/journal_STIS/article/view/1252A Novel Model of Comprehensive Data Encryption for the Website Using Blockchain2026-01-22T14:58:04+07:00Pham Van Huonghuongpv1981@gmail.comNguyen Duc Tuyenhuongpv@actvn.edu.vnDang Hai Longhuongpv@actvn.edu.vnTran Quoc Toanhtoanh.tranquoc@gmail.comNguyen Ngoc Tuyenhuongpv@actvn.edu.vn<p>The paper proposes a comprehensive data security model for blockchain-based web applications. This model can be used as a general template for Web3 applications. The model consists of two parts: a blockchain core with integrated database encryption modules, replacing Fabric CA; and an application part that also integrates file encryption, database encryption, and digital signatures. The proposed model was tested on a VBCC management website using Hyperledger Fabric. File and database encryption uses AES, and digital signatures use ECDSA. To improve performance, we also replaced the GolevelDB database management system with LevelDB. Experimental results confirm the accuracy and good performance. </p>2026-06-24T00:00:00+07:00Copyright (c) 2026 Phạm Văn Hưởng, Nguyễn Đức Tuyến, Đặng Hải Long, Trần Quốc Toanh, Nguyễn Ngọc Tuyềnhttps://isj.vn/index.php/journal_STIS/article/view/6404Lightweight Linear Layers with High Branch Number for Ascon-Like Permutations2026-05-11T16:57:07+07:00Hoang Dinh Linhhoangdinhlinh@bcy.gov.vnTran Thi Luongluongtranhong@gmail.comNguyen Van Longnvlong.bcy@gmail.com<p> <span class="fontstyle0">The linear layer is a fundamental building block of substitution-permutation network (SPN) based ciphers, responsible for the diffusion of differences and linear masks across the state. In this paper, we analyze and evaluate several lightweight linear layers through the lens of branch number theory, focusing on constructions that rely solely on XOR operations and cyclic rotations, such as the Column Parity Mixer (CPM), the Twin Column Parity Mixer (TCPM), the Symmetric Twin Column Parity Mixer (STCPM), and the Multiple Rows Mixer (MRM). Based on these analyses, we propose new linear layers that achieve higher branch numbers while requiring fewer XOR operations than existing designs. We then evaluate the proposed constructions when instantiated in Ascon-like permutations operating on a </span><span class="fontstyle2">5 x 64</span><span class="fontstyle0">-bit state, comparing Ascon, Gaston, Gaston-S, and Hsilu in terms of trail weight bounds. Our results confirm that the proposed linear layers achieve: a column differential branch number 7 at 2.8 XOR/bit (Construction 1), branch number 7 with improved linear resistance at 3 XOR/bit (Construction 2), and branch number 17 at 4 XOR/bit (Construction 3). In particular, the final structure provides a substantially higher column branch number compared to TCPM and STCPM at a similar XOR implementation cost</span> </p>2026-06-24T00:00:00+07:00Copyright (c) 2026 Hoàng Đình Linh, Trần Thị Lượng, Nguyễn Văn Longhttps://isj.vn/index.php/journal_STIS/article/view/1162An Explainable Hybrid Framework for Detecting Harmful Short Comments on Vietnamese Social Media Using TF-IDF and Lightweight Transformers2025-12-17T15:02:11+07:00Ha Van Muonmuon.ha@mail.ruNguyen Thanh Hainguyenthanhhai.k18@gmail.comNguyen Ngoc Nhannhan.nguyen.97@mail.ruTran Quang Tuantranquangtuan.637@tcu.edu.vn<p>The proliferation of harmful content on Vietnamese social media platforms necessitates effective detection systems for short, concise, and slang-heavy texts. This study proposes the Explainable Hybrid Framework (EHF) for enhanced detection and interpretability. On an expert-annotated dataset of 15,162 samples, EHF with SVM achieves an F1-Score of 92.5% and Accuracy of 92.6%, outperforming strong baselines such as PhoBERT on our dataset, while state-of-the-art models like ViHateT5 are discussed on external Vietnamese benchmarks. Notably, it reduces false positives by 30% and false negatives by 25% versus traditional methods, with 45ms inference time. Our primary contribution is an efficient, fast, and explainable solution that addresses the critical challenge of automated moderation for short Vietnamese texts.</p>2026-06-24T00:00:00+07:00Copyright (c) 2026 Hà Văn Muôn, Nguyễn Thanh Hải, Nguyễn Ngọc Nhân, Trần Quang Tuấnhttps://isj.vn/index.php/journal_STIS/article/view/4042Impact of Cipher-Core Selection on XTS-based Secure Network-Attached Storage Systems: A Comparison Study of MKV and AES2026-04-07T08:34:42+07:00Trần Văn Khánhtrankhanh.miptvn@gmail.comPhan Van Kypvk.hvktqs@gmail.comVu Van Vietvietvu1912.97@gmail.com<p><span class="fontstyle0">The linear layer is a fundamental building block of substitution-permutation network (SPN) based ciphers, responsible for the diffusion of differences and linear masks across the state. In this paper, we analyze and evaluate several lightweight linear layers through the lens of branch number theory, focusing on constructions that rely solely on XOR operations and cyclic rotations, such as the Column Parity Mixer (CPM), the Twin Column Parity Mixer (TCPM), the Symmetric Twin Column Parity Mixer (STCPM), and the Multiple Rows Mixer (MRM). Based on these analyses, we propose new linear layers that achieve higher branch numbers while requiring fewer XOR operations than existing designs. We then evaluate the proposed constructions when instantiated in Ascon-like permutations operating on a </span><span class="fontstyle2">5 x 64</span><span class="fontstyle0">-bit state, comparing Ascon, Gaston, Gaston-S, and Hsilu in terms of trail weight bounds. Our results confirm that the proposed linear layers achieve: a column differential branch number 7 at 2.8 XOR/bit (Construction 1), branch number 7 with improved linear resistance at 3 XOR/bit (Construction 2), and branch number 17 at 4 XOR/bit (Construction 3). In particular, the final structure provides a substantially higher column branch number compared to TCPM and STCPM at a similar XOR implementation cost.</span> </p>2026-06-24T00:00:00+07:00Copyright (c) 2026 Trần Văn Khánh, Phan Văn Kỷ, Vũ Văn Việthttps://isj.vn/index.php/journal_STIS/article/view/6406Refining Galois/Counter Mode for 256-Bit Blocks: Multilinear Authentication and Security Proofs2026-06-22T15:17:30+07:00Nguyen Tuan Anhtuananhnghixuan@gmail.comNguyen Bui Cuongnguyenbuicuong@gmail.comKieu Viet Dichdich.kv@gmail.com<p>This paper investigates the feasibility of extending the authenticated encryption mode GCM to a 256-bit block size to increase the amount of authenticated data and enhance security in large-scale information processing systems. Based on an analysis of the limitations of the standard GCM construction, particularly the restriction on the amount of data processed per invocation and the weaknesses arising from the linearity of the GHASH function, we propose a GCM-256 variant employing a 256-bit block cipher together with a multilinear authentication mechanism, replacing the conventional linear GHASH function.</p>2026-06-24T00:00:00+07:00Copyright (c) 2026 Nguyen Tuan Anh, Nguyễn Bùi Cương, Kiều Việt Đíchhttps://isj.vn/index.php/journal_STIS/article/view/1242On the Uniqueness of RSA Keys in EJBCA PKI Systems 2026-01-27T08:05:34+07:00Nguyen Le Minhnguyenminhhymta2000@gmail.comDinh Quoc Tientienqd77@gmail.com<p>RSA deployments in EJBCA-based public key infrastructures (PKIs) rely on X.509 Subject Key Identifiers (SKIs) to prevent reuse of identical public keys. However, SKI-level checks fail to detect shared-prime collisions, where distinct RSA moduli reuse a prime factor and become factorable via batch GCD analysis. This paper examines why existing SKI mechanisms cannot guarantee RSA key uniqueness and how such weaknesses propagate through enrollment and renewal processes in EJBCA.</p> <p>We propose two complementary controls that extend uniqueness from the public key to RSA’s secret parameters. The first is a secrecy-preserving duplication check, where one-way commitments to the primes (p, q) are embedded in the certificate request and verified against a commitment registry to block reuse without exposing secret values. The second is an identity-scoped RSA generation algorithm that deterministically maps subject identifiers to disjoint prime-search intervals, ensuring well-spaced and non-overlapping primes across users.</p>2026-06-24T00:00:00+07:00Copyright (c) 2026 Nguyễn Lê Minh, Đinh Quốc Tiếnhttps://isj.vn/index.php/journal_STIS/article/view/6384RIS Assisted Anti Jamming Backscatter Communication Using Deep Reinforcement Learning2026-05-07T14:32:33+07:00Le Hoang Hieplhhiep@ictu.edu.vnNgo Huu Huynhhuy@ictu.edu.vn<p><span class="fontstyle0">Backscatter communication is a promising low-power solution for large scale Internet of Things (IoT) networks; however, it is highly susceptible to intentional jamming and dynamic interference. This paper proposes a Deep Reinforcement Learning (DRL) - based anti-jamming framework for reconfigurable intelligent surface (RIS) - assisted backscatter systems. The problem is formulated as a Markov decision process, where an agent adaptively optimizes RIS reflection coefficients without prior environmental knowledge. A deep Q-network with experience replay and a target network ensures stable learning in high-dimensional state spaces. Simulation results show convergence within 600 – 800 episodes. Compared with random RIS configurations and RIS-free systems, the proposed scheme improves SINR by 3 – 6 dB and over 8 dB, respectively, under moderate-to-strong jamming. Moreover, BER is reduced by nearly one order of magnitude, and throughput increases by 25% -40%. These results demonstrate robust and adaptive interference mitigation for future IoT and 6G networks</span> </p>2026-06-24T00:00:00+07:00Copyright (c) 2026 Lê Hoàng Hiệp, Ngô Hữu Huyhttps://isj.vn/index.php/journal_STIS/article/view/1160DVA-IR: Runtime Integrity Attestation for Secure VNF Operation in NFV2026-04-07T08:44:12+07:00Vu Ngoc Hoahoavn@hiec.edu.vnNguyen Viet Phannvphan@bcy.gov.vnNguyen Tuan Hung25025069@vnu.edu.vnNgo Hai Anhngohaianh@ioit.ac.vn<p> <span class="fontstyle0">Network Function Virtualization (NFV) improves flexibility and cost efficiency, but it also creates new security risks at the virtualization, VNF, service-chain, and orchestration layers. This paper focuses on a specific NFV security problem: detecting and containing runtime compromise of Virtual Network Functions (VNFs), including unauthorized binary, configuration, or memory-state modification, invalid attestation responses, and no-response events. We propose </span><span class="fontstyle2">Dynamic VNF Attestation and Instant Response </span><span class="fontstyle0">(DVA-IR), a framework that combines periodic remote attestation of running VNFs with MANO-driven isolation and replacement of compromised VNFs. Unlike access-control-only or signature-based mechanisms, DVA-IR verifies runtime VNF integrity and immediately updates service-chain forwarding behavior when compromise is detected. A Monte Carlo simulation compares DVA-IR with manual monitoring, signature-based IDS/IPS, and DVA-only attestation. The results show that DVA-IR achieves high detection quality, rapid containment, and significantly reduced service downtime, while its centralized orchestration overhead remains manageable for small-to-medium and medium-to-large NFV deployments.</span> </p>2026-06-24T00:00:00+07:00Copyright (c) 2026 Ngô Hải Anh, Vũ Ngọc Hoa, Nguyễn Viết Phan