Journal of Science and Technology on Information security
https://isj.vn/index.php/journal_STIS
<h2 style="color: red !important; font-size: 30px;">About the Journal</h2> <h1><strong><span class="pkp_screen_reader">Edit About the Journal<span style="font-size: 14px;">Information Security Journal publishes a periodical academic, scientific, specialized journal in the field of information security named “Journal of Science and Technology on Information security”. The publication aims to create a forum to discuss scientific and technological issues in the field of information security, to support of researching science and technology in this field, and contribute to connecting research, trainning and applications deployment.</span></span></strong></h1> <div id="sponsors"> <p>The Journal of Science and Technology on Information Security - abbreviated name ISJ, with index ISSN 2615-9570 is a publication of Information Security Journal, Vietnam Government Information Security Commission. This is an academic, scientific, specialized magazine and is also a place to discuss scientific and technological issues in the field of information security, support scientific and technological research in this field, and contribute connecting research, training and application deployment. Helpful for leaders, managers, scientific and technical staff, teachers, students...</p> <p>The Journal of Science and Technology on Information Security has been published since 2015 with 2 issues/year (1 issue in Vietnamese and 1 issue in English). By 2022, the publication has increased the number of publications to 3 issues/year with 2 English issues (published in June and December) and 1 Vietnamese issue (published in September). From 2024, the Journal's installments will be published entirely in English.</p> <p>The Journal of Science and Technology on Information security in the field of Information Security is recognized as high quality according to Decision No. 22/QĐ-HĐGSNN of the State Council for Professorship (<a href="http://hdgsnn.gov.vn/tin-tuc/quyet-dinh-so-25-qd-hdgsnn-phe-duyet-danh-muc-tap-chi-khoa-hoc-duoc-tinh-diem-nam-2024_788/">http://hdgsnn.gov.vn/tin-tuc/quyet-dinh-so-25-qd-hdgsnn-phe-duyet-danh-muc-tap-chi-khoa-hoc-duoc-tinh-diem-nam-2024_788/</a>). According to The State Council for Professorship of Vietnam, the paper are counted 0.75 score by The Council for Professorship in Information Technology and 0.75 score by The Interdisciplinary Council for Professorship in Electrical-Electronics-Automation.</p> <p>The papers published in the Journal are scientific research works, new technologies applications, scientific achievements and new techniques in the field of information security. They have not been published or sent to any magazines or any conference proceedings.</p> <p>The papers are sent to scientists for strict assessment and criticism and to be counted points, according to the process of publishing scientific works of The State Council for Professor Title of Vietnam. The authors whose papers are published will receive royalties according to the provisions of the Journal, along with the issues including their papers and soft copies (PDFs) of other issues if needed. Authors do not have to submit any fees when submitting articles. All cost for the publication process is supported by Journal of Science and Technology on Information security.</p> <p> </p> <p> </p> </div> <h2 style="color: red !important; font-size: 30px;"><strong>Call for scientific papers for</strong><strong> 2026</strong></h2> <div class="content-new" style="font-size: 14px; line-height: 25px;"> <p><img style="width: 207px; float: left; margin-right: 20px; margin-bottom: 50px; margin-top: 10px;" src="https://isj.vn/public/site/images/admin/bia-en.png" alt="" height="289" />Dear professionals!</p> <p>To prepare for publishing the Journal of Science and Technology on Information security 2026 in English and aim to become a prestigious, quality magazine with unique characteristics in the field of information security and safety. The Journal respectfully invites and calls on all domestic and foreign scientists to submit quality articles to the Journal. The release schedule for 3 issues in 2026 is as follows:</p> <p>No. 1.CS(27) 2026 is expected to be published: June 2026</p> <p>No. 2.CS(28) 2026 is expected to be published: September 2026</p> <p>No. 3.CS(29) 2026 is expected to be published: December 2026</p> <p>Authors please submit the manuscript according to the format of the Journal provided at <a href="https://isj.vn/index.php/journal_STIS/information/authors">https://isj.vn/index.php/journal_STIS/information/authors</a>. Article submission rules and guidelines for presenting articles are posted on the website <a href="https://isj.vn/index.php/journal_STIS/about/submissions">https://isj.vn/index.php/journal_STIS/about/submissions</a>. <span class="text">For support, please contact us via email at </span><a class="text-is-email" href="mailto:thukychuyensan@bcy.gov.vn" target="_blank" rel="noopener">thukychuyensan@bcy.gov.vn</a><span class="text"> or reach out to the Administrative Secretary, Hoang Thi Thu Hang (mobile phone at </span><a class="text-is-phone-number">+84 914372016)</a>.</p> <p>Sincerely./.</p> </div>Vietnam Government Information Security Commissionen-USJournal of Science and Technology on Information security2615-9570<p><strong>Open Access Policy</strong></p> <p align="justify">The Journal of Science and Technology on Information Security provides open access to its published articles to broaden opportunities for high-quality research findings to be available and widely disseminated free of charge, contributing to the greater exchange of knowledge.</p> <p align="justify">Open access statement: CTUJoS permits everyone to read, download, copy, distribute, print, search, or link to the full texts of the published articles without registration, price barriers, or asking for permission from the Journal or the author.</p> <p><strong>Proposed Policy for Journals That Offer Delayed Open Access</strong></p> <p>Authors who publish with this journal agree to the following terms:</p> <p>1. Authors retain copyright and grant the journal right of first publication, with the work [SPECIFY PERIOD OF TIME] after publication simultaneously licensed under a <a href="http://creativecommons.org/licenses/by/3.0/" target="_new">Creative Commons Attribution License</a> that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.</p> <p>2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.</p> <p>3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See <a href="http://opcit.eprints.org/oacitation-biblio.html" target="_new">The Effect of Open Access</a>).</p>Refining Galois/Counter Mode for 256-Bit Blocks: Multilinear Authentication and Security Proofs
https://isj.vn/index.php/journal_STIS/article/view/6406
<p>This paper investigates the feasibility of extending the authenticated encryption mode GCM to a 256-bit block size to increase the amount of authenticated data and enhance security in large-scale information processing systems. Based on an analysis of the limitations of the standard GCM construction, particularly the restriction on the amount of data processed per invocation and the weaknesses arising from the linearity of the GHASH function, we propose a GCM-256 variant employing a 256-bit block cipher together with a multilinear authentication mechanism, replacing the conventional linear GHASH function.</p>Nguyen Tuan AnhNguyen Bui CuongKieu Viet Dich
Copyright (c) 2026 Nguyen Tuan Anh, Nguyễn Bùi Cương, Kiều Việt Đích
2026-06-242026-06-249910810.54654/isj.v1i27.6406On the Uniqueness of RSA Keys in EJBCA PKI Systems
https://isj.vn/index.php/journal_STIS/article/view/1242
<p>RSA deployments in EJBCA-based public key infrastructures (PKIs) rely on X.509 Subject Key Identifiers (SKIs) to prevent reuse of identical public keys. However, SKI-level checks fail to detect shared-prime collisions, where distinct RSA moduli reuse a prime factor and become factorable via batch GCD analysis. This paper examines why existing SKI mechanisms cannot guarantee RSA key uniqueness and how such weaknesses propagate through enrollment and renewal processes in EJBCA.</p> <p>We propose two complementary controls that extend uniqueness from the public key to RSA’s secret parameters. The first is a secrecy-preserving duplication check, where one-way commitments to the primes (p, q) are embedded in the certificate request and verified against a commitment registry to block reuse without exposing secret values. The second is an identity-scoped RSA generation algorithm that deterministically maps subject identifiers to disjoint prime-search intervals, ensuring well-spaced and non-overlapping primes across users.</p>Nguyen Le MinhDinh Quoc Tien
Copyright (c) 2026 Nguyễn Lê Minh, Đinh Quốc Tiến
2026-06-242026-06-24616910.54654/isj.v1i27.1242RIS Assisted Anti Jamming Backscatter Communication Using Deep Reinforcement Learning
https://isj.vn/index.php/journal_STIS/article/view/6384
<p><span class="fontstyle0">Backscatter communication is a promising low-power solution for large scale Internet of Things (IoT) networks; however, it is highly susceptible to intentional jamming and dynamic interference. This paper proposes a Deep Reinforcement Learning (DRL) - based anti-jamming framework for reconfigurable intelligent surface (RIS) - assisted backscatter systems. The problem is formulated as a Markov decision process, where an agent adaptively optimizes RIS reflection coefficients without prior environmental knowledge. A deep Q-network with experience replay and a target network ensures stable learning in high-dimensional state spaces. Simulation results show convergence within 600 – 800 episodes. Compared with random RIS configurations and RIS-free systems, the proposed scheme improves SINR by 3 – 6 dB and over 8 dB, respectively, under moderate-to-strong jamming. Moreover, BER is reduced by nearly one order of magnitude, and throughput increases by 25% -40%. These results demonstrate robust and adaptive interference mitigation for future IoT and 6G networks</span> </p>Le Hoang HiepNgo Huu Huy
Copyright (c) 2026 Lê Hoàng Hiệp, Ngô Hữu Huy
2026-06-242026-06-24708610.54654/isj.v1i27.6384DVA-IR: Runtime Integrity Attestation for Secure VNF Operation in NFV
https://isj.vn/index.php/journal_STIS/article/view/1160
<p> <span class="fontstyle0">Network Function Virtualization (NFV) improves flexibility and cost efficiency, but it also creates new security risks at the virtualization, VNF, service-chain, and orchestration layers. This paper focuses on a specific NFV security problem: detecting and containing runtime compromise of Virtual Network Functions (VNFs), including unauthorized binary, configuration, or memory-state modification, invalid attestation responses, and no-response events. We propose </span><span class="fontstyle2">Dynamic VNF Attestation and Instant Response </span><span class="fontstyle0">(DVA-IR), a framework that combines periodic remote attestation of running VNFs with MANO-driven isolation and replacement of compromised VNFs. Unlike access-control-only or signature-based mechanisms, DVA-IR verifies runtime VNF integrity and immediately updates service-chain forwarding behavior when compromise is detected. A Monte Carlo simulation compares DVA-IR with manual monitoring, signature-based IDS/IPS, and DVA-only attestation. The results show that DVA-IR achieves high detection quality, rapid containment, and significantly reduced service downtime, while its centralized orchestration overhead remains manageable for small-to-medium and medium-to-large NFV deployments.</span> </p>Vu Ngoc HoaNguyen Viet PhanNguyen Tuan HungNgo Hai Anh
Copyright (c) 2026 Ngô Hải Anh, Vũ Ngọc Hoa, Nguyễn Viết Phan
2026-06-242026-06-24516010.54654/isj.v1i27.1160A Novel Model of Comprehensive Data Encryption for the Website Using Blockchain
https://isj.vn/index.php/journal_STIS/article/view/1252
<p>The paper proposes a comprehensive data security model for blockchain-based web applications. This model can be used as a general template for Web3 applications. The model consists of two parts: a blockchain core with integrated database encryption modules, replacing Fabric CA; and an application part that also integrates file encryption, database encryption, and digital signatures. The proposed model was tested on a VBCC management website using Hyperledger Fabric. File and database encryption uses AES, and digital signatures use ECDSA. To improve performance, we also replaced the GolevelDB database management system with LevelDB. Experimental results confirm the accuracy and good performance. </p>Pham Van HuongNguyen Duc TuyenDang Hai LongTran Quoc ToanhNguyen Ngoc Tuyen
Copyright (c) 2026 Phạm Văn Hưởng, Nguyễn Đức Tuyến, Đặng Hải Long, Trần Quốc Toanh, Nguyễn Ngọc Tuyền
2026-06-242026-06-24879810.54654/isj.v1i27.1252Lightweight Linear Layers with High Branch Number for Ascon-Like Permutations
https://isj.vn/index.php/journal_STIS/article/view/6404
<p> <span class="fontstyle0">The linear layer is a fundamental building block of substitution-permutation network (SPN) based ciphers, responsible for the diffusion of differences and linear masks across the state. In this paper, we analyze and evaluate several lightweight linear layers through the lens of branch number theory, focusing on constructions that rely solely on XOR operations and cyclic rotations, such as the Column Parity Mixer (CPM), the Twin Column Parity Mixer (TCPM), the Symmetric Twin Column Parity Mixer (STCPM), and the Multiple Rows Mixer (MRM). Based on these analyses, we propose new linear layers that achieve higher branch numbers while requiring fewer XOR operations than existing designs. We then evaluate the proposed constructions when instantiated in Ascon-like permutations operating on a </span><span class="fontstyle2">5 x 64</span><span class="fontstyle0">-bit state, comparing Ascon, Gaston, Gaston-S, and Hsilu in terms of trail weight bounds. Our results confirm that the proposed linear layers achieve: a column differential branch number 7 at 2.8 XOR/bit (Construction 1), branch number 7 with improved linear resistance at 3 XOR/bit (Construction 2), and branch number 17 at 4 XOR/bit (Construction 3). In particular, the final structure provides a substantially higher column branch number compared to TCPM and STCPM at a similar XOR implementation cost</span> </p>Hoang Dinh LinhTran Thi LuongNguyen Van Long
Copyright (c) 2026 Hoàng Đình Linh, Trần Thị Lượng, Nguyễn Văn Long
2026-06-242026-06-2451910.54654/isj.v1i27.6404An Explainable Hybrid Framework for Detecting Harmful Short Comments on Vietnamese Social Media Using TF-IDF and Lightweight Transformers
https://isj.vn/index.php/journal_STIS/article/view/1162
<p>The proliferation of harmful content on Vietnamese social media platforms necessitates effective detection systems for short, concise, and slang-heavy texts. This study proposes the Explainable Hybrid Framework (EHF) for enhanced detection and interpretability. On an expert-annotated dataset of 15,162 samples, EHF with SVM achieves an F1-Score of 92.5% and Accuracy of 92.6%, outperforming strong baselines such as PhoBERT on our dataset, while state-of-the-art models like ViHateT5 are discussed on external Vietnamese benchmarks. Notably, it reduces false positives by 30% and false negatives by 25% versus traditional methods, with 45ms inference time. Our primary contribution is an efficient, fast, and explainable solution that addresses the critical challenge of automated moderation for short Vietnamese texts.</p>Ha Van MuonNguyen Thanh HaiNguyen Ngoc NhanTran Quang Tuan
Copyright (c) 2026 Hà Văn Muôn, Nguyễn Thanh Hải, Nguyễn Ngọc Nhân, Trần Quang Tuấn
2026-06-242026-06-24355010.54654/isj.v3i26.1162Impact of Cipher-Core Selection on XTS-based Secure Network-Attached Storage Systems: A Comparison Study of MKV and AES
https://isj.vn/index.php/journal_STIS/article/view/4042
<p><span class="fontstyle0">The linear layer is a fundamental building block of substitution-permutation network (SPN) based ciphers, responsible for the diffusion of differences and linear masks across the state. In this paper, we analyze and evaluate several lightweight linear layers through the lens of branch number theory, focusing on constructions that rely solely on XOR operations and cyclic rotations, such as the Column Parity Mixer (CPM), the Twin Column Parity Mixer (TCPM), the Symmetric Twin Column Parity Mixer (STCPM), and the Multiple Rows Mixer (MRM). Based on these analyses, we propose new linear layers that achieve higher branch numbers while requiring fewer XOR operations than existing designs. We then evaluate the proposed constructions when instantiated in Ascon-like permutations operating on a </span><span class="fontstyle2">5 x 64</span><span class="fontstyle0">-bit state, comparing Ascon, Gaston, Gaston-S, and Hsilu in terms of trail weight bounds. Our results confirm that the proposed linear layers achieve: a column differential branch number 7 at 2.8 XOR/bit (Construction 1), branch number 7 with improved linear resistance at 3 XOR/bit (Construction 2), and branch number 17 at 4 XOR/bit (Construction 3). In particular, the final structure provides a substantially higher column branch number compared to TCPM and STCPM at a similar XOR implementation cost.</span> </p>Trần Văn KhánhPhan Van KyVu Van Viet
Copyright (c) 2026 Trần Văn Khánh, Phan Văn Kỷ, Vũ Văn Việt
2026-06-242026-06-24203410.54654/isj.v1i27.4042