Xiaoliang Wang,Xinhui She,Liang Bai,Yang Qing,Frank Jiang

DOI: https://doi.org/10.32604/cmc.2021.012454

2021-01-01

Abstract:The vehicular cloud computing is an emerging technology that changes vehicle communication and underlying traffic management applications. However, cloud computing has disadvantages such as high delay, low privacy and high communication cost, which can not meet the needs of realtime interactive information of Internet of vehicles. Ensuring security and privacy in Internet of Vehicles is also regarded as one of its most important challenges. Therefore, in order to ensure the user information security and improve the real-time of vehicle information interaction, this paper proposes an anonymous authentication scheme based on edge computing. In this scheme, the concept of edge computing is introduced into the Internet of vehicles, which makes full use of the redundant computing power and storage capacity of idle edge equipment. The edge vehicle nodes are determined by simple algorithm of defining distance and resources, and the improved RSA encryption algorithm is used to encrypt the user information. The improved RSA algorithm encrypts the user information by reencrypting the encryption parameters . Compared with the traditional RSA algorithm, it can resist more attacks, so it is used to ensure the security of user information. It can not only protect the privacy of vehicles, but also avoid anonymous abuse. Simulation results show that the proposed scheme has lower computational complexity and communication overhead than the traditional anonymous scheme.

Lianhai Liu,Yujue Wang,Jingwei Zhang,Qing Yang

DOI: https://doi.org/10.3390/s19030482

IF: 3.9

2019-01-01

Sensors

Abstract:A vehicular ad hoc network (VANET) is a special mobile ad hoc network that provides vehicle collaborative security applications using intervehicle communication technology. The method enables vehicles to exchange information (e.g., emergency brake). In VANET, there are many vehicle platoon driving scenes, where vehicles with identical attributes (location, organization, etc.) are organized as a group. However, this organization causes the issue of security threats (message confidentiality, identity privacy, etc.) because of an unsafe wireless communication channel. To protect the security and privacy of group communication, it is necessary to design an effective group key agreement scheme. By negotiating a dynamic session secret key using a fixed roadside unit (RSU), which has stronger computational ability than the on-board unit (OBU) equipped on the vehicle, the designed scheme can help to provide more stable communication performance and speed up the encryption and decryption processes. To effectively implement the anonymous authentication mechanism and authentication efficiency, we use a batch authentication scheme and a shared secret key mechanism among the vehicles, RSUs and trusted authority (TA). We design an efficient group secret key agreement scheme, which satisfies the above communication and security requirements, protects the privacy of vehicles, and traces the real identity of the vehicle at a time when it is necessary. Computational analysis shows that the proposed scheme is secure and more efficient than existing schemes.

Yingjie Xia,Wenzhi Chen,Xuejiao Liu,Luming Zhang,Xuelong Li,Yang Xiang

DOI: https://doi.org/10.1109/tits.2017.2653103

IF: 8.5

2017-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Vehicular ad-hoc networks (VANETs) have drawn much attention of researchers. The vehicles in VANETs frequently join and leave the networks, and therefore restructure the network dynamically and automatically. Forwarded messages in vehicular ad-hoc networks are primarily multimedia data, including structured data, plain text, sound, and video, which require access control with efficient privacy preservation. Ciphertext-policy attribute-based encryption (CP-ABE) is adopted to meet the requirements. However, solutions based on traditional CP-ABE suffer from challenges of the limited computational resources on-board units equipped in the vehicles, especially for the complex policies of encryption and decryption. In this paper, we propose a CP-ABE delegation scheme, which allows road side units (RSUs) to perform most of the computation, for the purpose of improving the decryption efficiency of the vehicles. By using decision tree to jointly optimize multiple factors, such as the distance from RSU, the communication and computational cost, the CP-ABE delegation scheme is adaptively activated based on the estimation of various vehicles decryption overhead. Experimental results thoroughly demonstrate that our scheme is effective and efficient for multimedia data forwarding in vehicular ad-hoc networks with privacy preservation.

Yilong Liu,Shengwei Xu,Ziyan Yue

DOI: https://doi.org/10.3390/e25070979

2023-06-25

Abstract:Ciphertext-Policy Attribute-Based Encryption (CP-ABE) technology provides a new solution to address the security and fine-grained access control of traffic information in vehicular ad hoc networks (VANETs). However, in most CP-ABE schemes for VANETs, attribute revocation suffers from high system consumption and complex revocation operations, as well as from high computational overhead and low efficiency due to the use of bilinear pairwise operations. Based on this, this paper proposes a lightweight CP-ABE scheme that supports direct attribute revocation in VANETs. The scheme implements an agent-based direct attribute revocation mechanism by separating dynamic and static attributes of vehicle terminals, which reduces system consumption and simplifies the revocation operation process. The scheme uses scalar multiplication on elliptic curves instead of bilinear pairing operations and uses computational outsourcing techniques to reduce the terminal decryption cost and improve the efficiency of the scheme. The security and performance analysis shows that the overall efficiency of our scheme is better than the existing schemes under the premise of ensuring data confidentiality and integrity.

Yang Zhao,Xing Zhang,Xin Xie,Yi Ding,Sachin Kumar

DOI: https://doi.org/10.1002/ett.3785

IF: 3.6

2019-01-01

Transactions on Emerging Telecommunications Technologies

Abstract:As a new kind of cryptographic primitive, attribute‐based encryption (ABE) is widely used in various complex scenarios because it has the characteristic of access control while encrypting messages. However, the existing ciphertext policy ABE (CP‐ABE) encryption schemes have some inherent defects, such as the lack of privacy‐preserving and inefficient decryption. These weak points make them difficult to play a role in scenarios with high real‐time and high data confidentiality requirements, for example, vehicle ad hoc network (VANET). Therefore, we proposed a verifiable hidden policy CP‐ABE with decryption testing scheme (or VHPDT, for short). It has the following features: hidden policy to privacy‐preserving and outsourced decryption testing can verify the correctness of the decrypted result. Furthermore, we apply it into VANET.

Chuchu Zhao,Leyou Zhang,Qing Wu,Fatemeh Rezaeibagha

DOI: https://doi.org/10.1109/tvt.2024.3360698

IF: 6.8

2024-01-01

IEEE Transactions on Vehicular Technology

Abstract:Vehicle ad hoc networks (VANETs) provide a convenient mobile communication environment for vehicles, pedestrians, and infrastructure. However, data confidentiality, access permission leakage, and privacy disclosure, are major issues of concern in such systems. Therefore, we present a publicly accountable data-sharing scheme for VANETs based on an expressive ciphertext policy attribute-based encryption (CP-ABE) algorithm. In this paper, we use white-box traceability and auditing technology to enforce accountability of both traitors and the key authority, and we employ two authorities to generate user keys collaboratively to weaken the power of one component and prevent the authority from tampering with users' identities. Considering the flexible change of vehicle attributes, we implement the revocation of malicious users or vehicles by updating partial keys and ciphertexts related to revoked user's attributes. Our method also supports attribute revocation and attribute update to deal with the complex and changeable environments of VANETs and achieves privacy preservation by adopting partial policy hiding technology. Multiple fog nodes are deployed at the edge of the cloud server to assist users who are short on resources in completing the encryption and decryption calculations. Comprehensive experimental results indicate that the proposed scheme has many advantages over others in terms of key storage consumption and the computational time consumption of encryption and decryption operations.

telecommunications,engineering, electrical & electronic,transportation science & technology

Hui Tian,Xiang Li,Hanyu Quan,Chin-Chen Chang,Thar Baker

DOI: https://doi.org/10.1109/jsen.2020.3030688

IF: 4.3

2021-07-15

IEEE Sensors Journal

Abstract:The Intelligent Transportation System (ITS) provides more possibilities for the realization of smart cities by integrating the Internet of Things (IoT) and cloud computing. However, how to ensure security of IoT data stored in the cloud has become one of the biggest challenges at present. As a promising solution for realizing fine-grained access control, Ciphertext-Policy Attribute-Based Encryption (CP-ABE) can be used to ensure data security. However, the traditional CP-ABE schemes may leak privacy of ITS users. Moreover, due to their high computational overheads, the current privacy-preserving techniques are not suitable for IoT lightweight devices. To fill this gap, this article presents ABE-FPP, a lightweight attribute-based access control scheme with full privacy protection (FPP), which can achieve full privacy protection in the three key stages (i.e., key generation, access control, and partial decryption), while reducing consumption overhead on the user side. Specifically, to protect privacy during key generation, a lightweight two-party secure computing protocol between the user and the authority is designed to generate secret keys; to protect privacy during the access control policy setting, we present an efficient policy hidden strategy, which only reveals attribute names and efficiently hides attribute values; to protect privacy during partial decryption, we propose a hybrid authentication method that does not need to submit attribute values to the cloud. Moreover, to achieve lightweight computation for IoT devices, online/offline encryption and outsourced decryption are employed in ABE-FPP. Finally, formal security proofs show that our scheme is secure in the standard model. The asymptotic complexity analyses and experimental results demonstrate that the presented scheme achieves higher computation efficiency than the state-of-the-art ones.

engineering, electrical & electronic,instruments & instrumentation,physics, applied

Jiawei Zhang,Teng Li,Mohammad S. Obaidat,Chi Lin,Jianfeng Ma

DOI: https://doi.org/10.1109/jsyst.2020.3044309

IF: 4.802

2022-03-01

IEEE Systems Journal

Abstract:The rapid development of cloud computing and Internet of Things enables widely use of Internet of Vehicles (IoV) and drives a revolutionary change for intelligent transport system. The advent of 5G and fog computing architectures also facilitates applications of IoV and makes the enormous IoV data outsourcing and sharing in cloud and fog more convenient. However, the data outsourcing and sharing will incur many security concerns to IoV including data leakage and breach as the users cannot direct control their data. To guarantee IoV data security, a novel scheme is proposed for IoV data sharing with high efficiency. In our scheme, we utilize ciphertext-policy attribute-based encryption (CP-ABE) to achieve confidentiality and fine-grained access control for IoV data shared in cloud and fog. Nevertheless, as another intrinsic feature in IoV environment, the dynamicity in a group of connected vehicles brings some challenges to our scheme. To deal with this situation, we bring forward a concept of auditable user revocation for CP-ABE to adapt to the dynamic vehicle groups. Moreover, online/offline and verifiable outsourcing techniques are leveraged to improve the efficiency and guarantee the correctness of decryption. At the end, we demonstrate the security and efficiency for our scheme by giving detailed security analysis and performance evaluation with extensive experiments.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Shi-Jinn Horng,Cheng-Chung Lu,Wanlei Zhou

DOI: https://doi.org/10.1109/tvt.2020.3037804

IF: 6.8

2020-12-01

IEEE Transactions on Vehicular Technology

Abstract:Ensuring data confidentiality in a vehicular ad hoc network (VANET) is an increasingly important issue. Message confidentiality, user privacy and access control are the most important problems that affect services provided by VANETs. However, access control that addresses data downloads while preserving users' privacy remains an open problem. Based on a set of attributes, the ciphertext-policy attribute-based encryption (CP-ABE) algorithm proposes a party data encryption/decryption mechanism for shared data; consequently, the algorithm has become a popular solution for data-sharing access control. However, the current CP-ABE schemes are still infeasible for VANETs because these schemes use a single authority and inefficient encryption/decryption and ignore revocation mechanisms. Here, over CP-ABE with revocation, we introduce an identity-based scheme that achieves secure data sharing in VANETs. To reduce the computation load for in-vehicle on-board units (OBUs), we outsource computationally intensive encryption and decryption operations to cloud compute nodes. Attributes are decentralized and managed by application service providers that provide services to vehicles based on subscriptions. Comprehensive experimental results and security analysis show that our scheme achieves fine-grained access control while preserving user privacy. Through implementation, performance analysis demonstrates that our scheme is suitable for VANETs.

telecommunications,engineering, electrical & electronic,transportation science & technology

Xuejiao Liu,Yingjie Xia,Wenzhi Chen,Yang Xiang,Mohammad Mehedi Hassan,Abdulhameed Alelaiwi

DOI: https://doi.org/10.1016/j.jcss.2016.05.006

IF: 1.043

2016-01-01

Journal of Computer and System Sciences

Abstract:Vehicular ad hoc network (VANET) is an increasing important paradigm, which not only provides safety enhancement but also improves roadway system efficiency. However, the security issues of data confidentiality, and access control over transmitted messages in VANET have remained to be solved. In this paper, we propose a secure and efficient message dissemination scheme (SEMD) with policy enforcement in VANET, and construct an outsourcing decryption of ciphertext-policy attribute-based encryption (CP-ABE) to provide differentiated access control services, which makes the vehicles delegate most of the decryption computation to nearest roadside unit (RSU). Performance evaluation demonstrates its efficiency in terms of computational complexity, space complexity, and decryption time. Security proof shows that it is secure against replayable choosen-ciphertext attacks (RCCA) in the standard model.

Jie Cui,Yaning Chen,Hong Zhong,Debiao He,Lu Wei,Irina Bolodurina,Lu Liu

DOI: https://doi.org/10.1109/tvt.2023.3281276

IF: 6.8

2023-01-01

IEEE Transactions on Vehicular Technology

Abstract:With the rapid development of autonomous vehicles (AVs), vehicle safety has attracted attention. Controller area network (CAN) bus without authentication and encryption mechanisms is a weakness of the in-vehicle network (IVN), and attackers always primarily target the CAN bus. Attacks on the AVs' CAN bus are more frequent because AVs have more external interfaces and sensors than ordinary vehicles. To address the abovementioned issues, this paper proposes a lightweight encryption and authentication scheme for the CAN bus of AVs using message authentication codes and Grain stream cipher. The scheme realizes efficient authentication between electronic control units and a counter re-synchronization protocol is used to ensure that authentication failure owing to counter inconsistency is prevented. Blom key management scheme is employed to rapidly distribute and update session keys, avoiding the complicated process of updating pairwise keys. In addition, considering the scalability of the IVN, a key distribution protocol for new nodes was provided. The security proof using Burrows-Abadi-Needham logic and security analysis prove that the proposed scheme can satisfy the security requirements of the IVN. In addition, performance analysis shows that the proposed scheme can meet real-time requirements and has little impact on the busload.

telecommunications,engineering, electrical & electronic,transportation science & technology

Wei Luo,Wenping Ma

DOI: https://doi.org/10.1109/access.2018.2858233

IF: 3.9

2018-01-01

IEEE Access

Abstract:Vehicular networking involves the storage, compute, and analysis of massive vehicular data. Vehicular cloud computing, as a special cloud computing platform, seamlessly combines vehicular ad hoc networks and conventional cloud computing. However, in the vehicular cloud computing, there is still the problem of unauthorized users accessing and stealing data. In the traditional ciphertext-policy attribute-based encryption (CP-ABE) scheme, a trusted central authority is employed to manage attributes and distribute keys. Based on multi-authority (MA) CP-ABE, we propose a secure and revocable access control scheme for vehicular cloud computing in this paper, in which the requester can decrypt the ciphertext with only a small amount of computation. We show that our MA-CP-ABE scheme can prevent static corruption of authorities in the standard model under the decisional q-parallel bilinear Diffie–Hellman exponent assumption. Theoretical analysis and experimental simulation results show that our scheme has lower communication cost and lower computational complexity than other schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Ivan E. Carvajal-Roca,Jian Wang

DOI: https://doi.org/10.1109/vtc2021-fall52928.2021.9625336

2021-01-01

Abstract:With the fast evolution of vehicle networks, Connected and Autonomous Vehicles (CAVs) are mobile devices that are not only used for transportation but also form part of other promising technologies such as the internet of vehicles and cyber-physical systems. Despite the benefits of CAVs, exposing in-vehicle networks to external devices can lead to different privacy and security challenges. Due to scalability, efficiency, and dynamic communication requirements, the security between in-vehicle networks with external devices cannot fully rely on the vehicle's external third parties. In this paper, we propose a semi-decentralized fine-grained security framework based on Ciphertex-Policy Attribute-Based Encryption (CP-ABE) to secure the communication of in-vehicle network's Electronic Control Units (ECUs) with vehicle's external connected device. Our approach's fine-grained access control is based on the attributes of external devices connected to different subsystems inside the vehicle. Each subsystem inside the vehicle has full control of the access policy during the vehicle's operation. Therefore, our proposed approach has a flexible and dynamic key management suitable for future CAVs. Finally, the experiment of our framework validates its feasibility for implementation.

Chunhua Jin,Penghui Zhou,Zhiwei Chen,Wenyu Qin,Guanhua Chen,Hao Zhang,Jian Weng

DOI: https://doi.org/10.1016/j.vehcom.2024.100847

IF: 6.7

2024-10-27

Vehicular Communications

Abstract:Vehicular ad hoc network (VANET) has been a promising technology in smart transportation system, which can enable information exchange between vehicles and roadside units (RSUs). However, the privacy of vehicles and RSUs is a critical challenge in VANET, as they may expose sensitive information to malicious attackers or unauthorized parties. Many existing authenticated key agreement (AKA) schemes aim to protect the privacy of vehicles and RSUs, but they often neglect the physical security of the devices involved in the communication. Therefore, we propose an efficient and privacy-preserving AKA scheme in VANET, which embeds physical unclonable function (PUF) and fuzzy extraction (FE) technology. PUF is a physical device that generates random strings based on their intrinsic characteristics and external inputs, which can protect the secrets in the devices from being stolen by attackers. FE can compensate for the drawbacks of PUF affected by environmental factors. Our scheme preserves the identity privacy of legitimate RSUs and vehicles, as well as intercepts and traces the identity of malicious attackers. In addition, we eliminate the involvement of the third party (TP) in the AKA phase to better meet the high-speed driving of vehicles. Finally, we conduct formal and informal security analyses in random oracle model (ROM), which prove that our scheme can resist various attacks. We also show in the performance analysis that our scheme has the lowest computational cost, communication overhead, and total energy consumption.

telecommunications,transportation science & technology

Kai Fan,Ye Bi,Yintang Yang,Kuan Zhang,Hui Li

DOI: https://doi.org/10.1109/mnet.002.2300009

IF: 10.294

2023-12-01

IEEE Network

Abstract:With the increased number of vehicles, infrastructure, and demand for various road services, the traditional Internet of Vehicles (IoV) architecture fails to provide quality services to users. New frameworks combining the vehicular network with cloud computing to extend storage capacity and processing power are highly sought. The vehicles communicate with the roadside units (RSUs) and upload the road condition information to the cloud server, enabling dynamic resource scheduling. However, in practical applications, the authentication scheme for emergency vehicles as a special node in the vehicle network receives insufficient attention. This article proposes a multi-factor lightweight emergency vehicle authentication protocol for cloud environments. Our protocol enables mutual authentication among the vehicle, the RSU, and the cloud server. An essential feature of our scheme is that during the initial authentication process, the cloud server generates random temporary secrets for the emergency vehicle and subsequent RSUs on the planned route. During the re-authentication phase, the vehicles and RSUs are authenticated using temporary secrets, improving the efficiency. In addition, our protocol verifies the driver's identity and prevents the system from impersonation attacks and vehicle theft attacks. Extensive simulation comparisons and security analyses demonstrate that our protocol is more effective.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Jiongen Xiao,Yi Liu,Yi Zou,Dacheng Li,Tao Leng

DOI: https://doi.org/10.1155/2024/5808088

IF: 2.249

2024-06-08

Journal of Advanced Transportation

Abstract:Internet of Vehicles can improve driving and riding experience, provide information needs, reduce environmental pollution, and improve transportation efficiency, thereby promoting the rapid development and application of intelligent transportation. Especially through the advantages of the rapidity of information exchange and the flexibility of real‐time data processing, an autonomous vehicle can provide barrier‐free, safe, and sustainable transportation. At present, the rapid progress of the Internet of Things has promoted the continuous development of a fully autonomous vehicle. However, the autonomous vehicle network uses wireless communication technology, and the openness of its communication channel makes the communication process vulnerable to various security attacks. Therefore, this paper proposes a practical and efficient secure communication in the autonomous vehicle. This scheme utilizes elliptic curve cryptography, which can protect the security of multiparty communication between vehicle, cloud server, and user with lower computation and communication overhead. This paper provides security verification for the scheme by using Scyther. An informal security analysis shows that this scheme can resist multiple attacks. Through a comparative analysis and performance evaluation of the schemes, we found that the scheme improves security while maintaining efficiency.

transportation science & technology,engineering, civil

Tao Wang,Li Kang,Jiang Duan

DOI: https://doi.org/10.1016/j.comnet.2021.107872

IF: 5.493

2021-04-01

Computer Networks

Abstract:<p>Secure communication in vehicular ad hoc networks (VANETs) has been extensively researched; however, access control in VANETs has not been studied adequately. Access control ensures that only authorized vehicles receive quality services over the VANETs to enhance the driving experience. Attribute-based encryption (ABE) with revocation is a promising access control technique that keeps data confidential and is suitable for application in VANETs. However, most existing revocable ABE schemes require the private keys of all non-revoked users to be updated if the private key of any user is revoked, which makes the implementation of such schemes extremely inefficient. In this paper, a dynamic fine-grained access control scheme based on ABE is proposed to ensure vehicle network security. It enables the message sender to determine which vehicles receive the message according to their attributes and can also freely revoke the decryption authorization of certain vehicles without needing to update all non-revoked keys. To the best of our knowledge, this is the first time that secure and efficient dynamic access control in VANETs has been achieved. Performance analysis and simulation evaluations have shown that the algorithm is more efficient in terms of computational delay and communication overhead, as compared with existing schemes.</p>

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Yuanshuai Li,Li Cao,Guoli Zheng,Honglei Men,Liang Chen

DOI: https://doi.org/10.1016/j.compeleceng.2024.109261

IF: 4.152

2024-05-02

Computers & Electrical Engineering

Abstract:The Internet of Vehicles (IoV) provides various services to vehicles through information sharing to ensure road safety and improve traffic efficiency. However, malicious attackers can challenge the privacy and security systems of the IoV by conducting security attacks. Currently, many schemes use bilinear pairing or elliptic curves to construct authentication systems, ensuring anonymity of vehicle identities and message security. However, these schemes suffer drawbacks such as low computational efficiency and high communication overhead in highly dynamic IoV. Therefore, we propose a new efficient certificateless message authentication scheme. The proposed scheme constructs a lightweight security authentication protocol by improving the RSA dynamic accumulator and combining it with non-interactive discrete logarithm zero-knowledge proofs. In addition, our scheme eliminates the need for bilinear pairing operations, thereby reducing computational overhead. Simultaneously, it enables real-time tracking and revocation of malicious vehicle identities. Security analysis shows that our scheme can be reduced to a secure S-RSA assumption under the random oracle model, meeting various security requirements of the IoV. Performance analysis shows that our scheme diminishes not only the computational overhead but also the communication overhead.

engineering, electrical & electronic,computer science, interdisciplinary applications, hardware & architecture

Ke Zhang,Jiahuan Long,Xiaofen Wang,Hong-Ning Dai,Kaitai Liang,Muhammad Imran

DOI: https://doi.org/10.1109/tii.2020.3014168

IF: 12.3

2021-06-01

IEEE Transactions on Industrial Informatics

Abstract:Industrial Internet of Things (IoT) has suffered from insufficient identity authentication and dynamic network topology, thereby resulting in vulnerabilities to data confidentiality. Recently, the attribute-based encryption (ABE) schemes have been regarded as a solution to ensure data transmission security and the fine-grained sharing of encrypted IoT data. However, most of existing ABE schemes that bring tremendous computational cost are not suitable for resource-constrained IoT devices. Therefore, lightweight and efficient data sharing and searching schemes suitable for IoT applications are of great importance. To this end, In this article, we propose a light searchable ABE scheme (namely LSABE). Our scheme can significantly reduce the computing cost of IoT devices with the provision of multiple-keyword searching for data users. Meanwhile, we extend the LSABE scheme to multiauthority scenarios so as to effectively generate and manage the public/secret keys in the distributed IoT environment. Finally, the experimental results demonstrate that our schemes can significantly maintain computational efficiency and save the computational cost at IoT devices, compared to other existing schemes.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Qing Yang,Xiaoqian Zhu,Xiaoliang Wang,Junjie Fu,Jing Zheng,Yuzhen Liu

DOI: https://doi.org/10.1016/j.future.2023.03.037

IF: 7.307

2023-04-02

Future Generation Computer Systems

Abstract:With the proposal of the intelligent transportation system, vehicular ad-hoc networks have been widely concerned and well-developed. Vehicular ad-hoc network is recognized as a major innovation of the Internet of Things technology. It can collect and analyze traffic data uploaded by vehicles through the network, monitor vehicle state in real-time, provide better driving routes and real-time traffic decisions for vehicles, and improve vehicles' overall level of intelligent driving. To make vehicles quickly join the vehicular ad-hoc networks through the authentication of identity legitimacy, take into account security and efficiency, and further reduce the calculation and communication consumption in authentication, this paper designs a mutual anonymous authentication and key agreement scheme based on an elliptic curve for the vehicular ad-hoc networks. To complete vehicle authentication and session key establishment, we work with lightweight operations like hash, XOR, and connection in conjunction with the elliptic curve discrete logarithm problem to guarantee the confidentiality of communication data. In the scheme, identity authentication is divided into two types: initial authentication and subsequent authentication. When the vehicle is just on the road, it will use the first roadside unit it encounters for initial authentication. All roadside units that cars on the road come across are then authenticated after the accomplishment of the initial authentication with the first roadside unit. Subsequent authentication is lighter and less computationally complex than initial authentication. Of course, subsequent authentication is based on initial authentication. This paper also analyzes the scheme's security and uses BAN logic analysis and Proverif simulation to verify the scheme's security. Additionally, performance analysis is used to demonstrate the scheme's superiority.

computer science, theory & methods