Lianhai Liu,Yujue Wang,Jingwei Zhang,Qing Yang

DOI: https://doi.org/10.3390/s19030482

IF: 3.9

2019-01-01

Sensors

Abstract:A vehicular ad hoc network (VANET) is a special mobile ad hoc network that provides vehicle collaborative security applications using intervehicle communication technology. The method enables vehicles to exchange information (e.g., emergency brake). In VANET, there are many vehicle platoon driving scenes, where vehicles with identical attributes (location, organization, etc.) are organized as a group. However, this organization causes the issue of security threats (message confidentiality, identity privacy, etc.) because of an unsafe wireless communication channel. To protect the security and privacy of group communication, it is necessary to design an effective group key agreement scheme. By negotiating a dynamic session secret key using a fixed roadside unit (RSU), which has stronger computational ability than the on-board unit (OBU) equipped on the vehicle, the designed scheme can help to provide more stable communication performance and speed up the encryption and decryption processes. To effectively implement the anonymous authentication mechanism and authentication efficiency, we use a batch authentication scheme and a shared secret key mechanism among the vehicles, RSUs and trusted authority (TA). We design an efficient group secret key agreement scheme, which satisfies the above communication and security requirements, protects the privacy of vehicles, and traces the real identity of the vehicle at a time when it is necessary. Computational analysis shows that the proposed scheme is secure and more efficient than existing schemes.

Asad Iqbal,Muhammad Zubair,Muhammad Asghar Khan,Insaf Ullah,Ghani Ur-Rehman,Alexey V. Shvetsov,Fazal Noor

DOI: https://doi.org/10.3390/fi15080266

2023-08-11

Future Internet

Abstract:Vehicular ad hoc networks (VANETs) have become an essential part of the intelligent transportation system because they provide secure communication among vehicles, enhance vehicle safety, and improve the driving experience. However, due to the openness and vulnerability of wireless networks, the participating vehicles in a VANET system are prone to a variety of cyberattacks. To secure the privacy of vehicles and assure the authenticity, integrity, and nonrepudiation of messages, numerous signature schemes have been employed in the literature on VANETs. The majority of these solutions, however, are either not fully secured or entail high computational costs. To address the above issues and to enable secure communication between the vehicle and the roadside unit (RSU), we propose a certificateless aggregate signature (CLAS) scheme based on hyperelliptic curve cryptography (HECC). This scheme enables participating vehicles to share their identities with trusted authorities via an open wireless channel without revealing their identities to unauthorized participants. Another advantage of this approach is its capacity to release the partial private key to participating devices via an open wireless channel while keeping its identity secret from any other third parties. A provable security analysis through the random oracle model (ROM), which relies on the hyperelliptic curve discrete logarithm problem, is performed, and we have proven that the proposed scheme is unforgeable against Type 1 () and Type 2 () forgers. The proposed scheme is compared with relevant schemes in terms of computational cost and communication overhead, and the results demonstrate that the proposed scheme is more efficient than the existing schemes in maintaining high-security levels.

Yulei Chen,Jianhua Chen

DOI: https://doi.org/10.1109/jiot.2021.3121552

IF: 10.6

2021-01-01

IEEE Internet of Things Journal

Abstract:With the popularity of vehicular ad-hoc networks (VANETs), the secure communications between the vehicle and vehicle as well as between the vehicle and infrastructure have attracted people’s great attention. Vehicle privacy protection (including vehicle identity privacy and location privacy), high mobility, density, and limited bandwidth are also a problem that cannot be negligible. In VANETs, it is necessary to design a message authentication protocol to ensure data transmission security, vehicle anonymity, and unlinkability. Considering the resource-constrained environments, the certificateless aggregate signature (CLAS) scheme can compress $n$ signatures of $n$ messages from $n$ vehicles into a single signature, which reduces the signature verification time and storage overhead at the roadside unit. Based on the aforementioned analysis, we design a fully aggregated conditional privacy-preserving CLAS scheme (CPP-CLAS) for VANETs. Instead of using the expensive bilinear pairings and map-to-point hash function operations, the proposed CPP-CLAS scheme uses the elliptic curve cryptosystem (ECC) and general hash functions. Also, with the use of CLAS technology, the computation and communication cost of the scheme are significantly reduced. In addition, based on the elliptic-curve discrete logarithm problem (ECDLP), we prove that the CPP-CLAS scheme is existential unforgeability under adaptively chosen message attacks (EUF-CMAs). Performance and security analyses show that the CPP-CLAS scheme is more efficient and secure than other existing related schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Xiaodong Yang,Songyu Li,Lan Yang,Xiaoni Du,Caifen Wang

DOI: https://doi.org/10.1109/tits.2024.3367925

IF: 8.5

2024-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Vehicular ad-hoc networks (VANETs) are integral to the evolution of intelligent transportation systems, offering substantial benefits in managing traffic flow, issuing warnings for potential accidents, and delivering information services to drivers. To ensure the authenticity and integrity of data exchanged within VANETs, numerous authentication schemes based on certificateless aggregate signature (CLAS) have been developed. However, state-of-the-art solutions often fail to be applicable in real-world VANETs due to security weaknesses and operational inefficiencies. Recently, Zhu et al. proposed an efficient CLAS-based authentication scheme with conditional privacy preservation (CPP) for VANETs (IEEE Transactions on Intelligent Transportation Systems, DOI: 10.1109/TITS.2023.3275077). Unfortunately, our analysis reveals that Zhu et al.’s scheme is incapable of withstanding coalition attacks from malicious RSUs and vehicles as well as public-key replacement attacks from dishonest vehicles. To facilitate secure communication in VANETs, we present a security-enhanced, pairing-free and energy-efficient CLAS-based authentication scheme with CPP for VANETs. This scheme has been rigorously proven to be secure against Type I, Type II and Type III attackers. Distinguished from other comparable schemes, our construction significantly reduces communication overhead and energy consumption while simultaneously fortifying security.

engineering, electrical & electronic,transportation science & technology, civil

Rui Guo,Ruihan Dong,Xiong Li,Yinghui Zhang,Dong Zheng

DOI: https://doi.org/10.1016/j.vehcom.2024.100763

IF: 6.7

2024-03-16

Vehicular Communications

Abstract:The emergence of the Vehicular Ad-hoc Networks (VANETs) has greatly enhanced the efficiency and safety of transportation systems. However, due to the dynamicness and openness of vehicular networks, it is vulnerable for VANETs to confront various security threats. The dissemination of disinformation and the occurrence of attacks within these networks can result in severe damage and compromise the overall security of transportation systems. To mitigate such challenges, this paper presents an efficient certificateless aggregate signature scheme with dynamic revocation in VANETs. Taking use of the early-stopping factorial bitwise divisions (EFBD) algorithm, it achieves the invalid signatures tracking, and revokes the malicious vehicles dynamically. In addition, by combining the fingerprint counting bloom filter (FP-CBF), the trust assessment mechanism and the cloud server, it enables the vehicle to remedy its incorrect signatures. At last, through the comprehensive security and performance analysis, it demonstrates that this protocol enjoys improved communication security and computational efficiency.

telecommunications,transportation science & technology

Y. Rajkumar,S. V. N. Santhosh Kumar

DOI: https://doi.org/10.1007/s12083-024-01636-8

IF: 3.488

2024-02-23

Peer-to-Peer Networking and Applications

Abstract:Traffic data generated by the vehicles are often transported in a wide open wireless communication channel which poses several security and privacy vulnerabilities. In case of any malicious or illicit behavior exhibited by the vehicles, it is difficult to trace back the original identity. Hence message authentication and traceability plays a major role in achieving the stability of the network. To address the objectives of message authentication and traceability, a lightweight privacy preserving distributed certificate-less aggregate signature authentication technique has been proposed. The proposed work utilized pseudo-identity and partial private keys which are distributed to perform mutual authentication and key revocation in case of legal proceedings that incurs computations which are lightweight. Formal and informal security analysis has been provided to demonstrate the strength of the authentication scheme using random-oracle model. In this work, the experiment has been carried by utilizing MIRACL C + + cryptographic library and by OMNET + + Simulator. The proposed scheme performs mutual authentication using certificate-less scheme thereby reducing the computational cost of 2.0284 ms with a reduction in the verification delay around 90% when compared with the other existing authentication schemes.

computer science, information systems,telecommunications

Kang Li,Man Ho Au,Wang Hei Ho,Yi Lei Wang

DOI: https://doi.org/10.1007/978-3-030-31919-9_4

2019-01-01

Abstract:Vehicular ad hoc networks (VANETs) are fundamental components of building a safe and intelligent transportation system. However, due to its wireless nature, VANETs have serious security and privacy issues that need to be addressed. The conditional privacy-preserving authentication protocol is one important tool to satisfy the security and privacy requirements. Many such schemes employ the certificateless signature, which not only avoids the key management issue of the PKI-based scheme but also solves the key escrow problem of the ID-based signature scheme. However, many schemes have the drawback that the computational expensive bilinear pairing operation or map-to-point hash function are used. In order to enhance the efficiency, certificateless signature schemes for VANETs are usually constructed to support signature aggregation or online/offline computation. In this paper, we propose an efficient conditional privacy-preserving authentication scheme using an online/offline certificateless aggregate signature, which does not require bilinear pairing or map-to-point hash function, to address the security and privacy issues of VANETs. Our proposed scheme is proven to be secure with a rigorous security proof, and it satisfies all the security and privacy requirements with a better performance compared with other related schemes.

Ikram Ali,Yong Chen,Niamat Ullah,Rajesh Kumar,Wen He

DOI: https://doi.org/10.1109/tvt.2021.3050399

IF: 6.8

2021-02-01

IEEE Transactions on Vehicular Technology

Abstract:In vehicular ad-hoc networks (VANETs), safety messages are exchanged among vehicles and between vehicles and infrastructure to ensure passengers' safety and efficiency in traffic. The source authentication as well as integrity checking of these messages are very necessary for a receiver. Based on certificateless cryptography (CLC), some state-of-the-art signature schemes have been proposed to address these. Although they fulfill the requirements of authentication and privacy, they are not efficient with respect to performance. Bilinear pairings and map-to-point hash functions are used in these schemes. These require a huge amount of time to process. The computational power and storing capacity of an on-board unit (OBU) in each vehicle are limited. Therefore, computational overhead is induced on vehicles that need to authenticate messages in areas of high traffic density. In this paper, a provably secure and efficient certificateless short signature-based conditional privacy-preserving authentication (CLSS-CPPA) scheme for V2V communication is designed. This scheme does not use bilinear parings and is based on the elliptic curve cryptosystem (ECC). In addition, instead of map-to-point hash functions, general hash functions are used. Furthermore, the CLSS-CPPA scheme supports the batch signature verification method which allows multiple signatures to be verified simultaneously and efficiently. The CLSS-CPPA scheme ensures security against type-I and type-II attackers with respect to existential unforgeability against adaptively chosen message attacks (EUF-CMA) under a hardness assumption of the elliptic curve discrete logarithm problem (ECDLP) in the random oracle model (ROM). The proposed scheme significantly improves performance in terms of computational and communication costs in comparison with state-of-the-art schemes.

telecommunications,engineering, electrical & electronic,transportation science & technology

Congcong Li,Xi Zhang,Haiping Wang,Dongfeng Li

DOI: https://doi.org/10.3390/s18010194

2018-01-11

Abstract:Vehicular sensor networks have been widely applied in intelligent traffic systems in recent years. Because of the specificity of vehicular sensor networks, they require an enhanced, secure and efficient authentication scheme. Existing authentication protocols are vulnerable to some problems, such as a high computational overhead with certificate distribution and revocation, strong reliance on tamper-proof devices, limited scalability when building many secure channels, and an inability to detect hardware tampering attacks. In this paper, an improved authentication scheme using certificateless public key cryptography is proposed to address these problems. A security analysis of our scheme shows that our protocol provides an enhanced secure anonymous authentication, which is resilient against major security threats. Furthermore, the proposed scheme reduces the incidence of node compromise and replication attacks. The scheme also provides a malicious-node detection and warning mechanism, which can quickly identify compromised static nodes and immediately alert the administrative department. With performance evaluations, the scheme can obtain better trade-offs between security and efficiency than the well-known available schemes.

Sixian Yu,Qiang Cao,Chenyu Wang,Guoai Xu,Huanhuan Ma,Yucheng Zhu,Yihang Peng,Yan Jia

DOI: https://doi.org/10.1109/tvt.2023.3287989

IF: 6.8

2023-01-01

IEEE Transactions on Vehicular Technology

Abstract:Vehicular ad-hoc network system provides network communication technology and plays an important role in road safety and traffic control. Conditional privacy-preserving can safeguard privacy as well as trace malicious vehicles, which is critical in the system. However, in the restricted computing and communication resource situation, how to ensure the conditional privacy security remains a challenge. To address this issue, this research work proposes an efficient conditional privacy-preserving scheme. In this scheme, firstly, a certificateless aggregation signature has been performed on board to avoid channel conflicts, and to our best knowledge, this scheme is the first one to propose aggregation on board. Also an elliptic curve point multiplicative operation has been utilized to decrease the cost consumed in computation. Secondly, this paper gives the security proof of the proposed scheme against the existence of unforgeability under adaptively chosen message attack for Type-I and Type-II adversaries in the random oracle model. Lastly, comprehensive performance comparisons covering the computation, communication and storage costs have been done to state that the proposed scheme is more efficient than the existing solutions. Significantly, this scheme saves at least 86% in communication overhead than compared schemes.

telecommunications,engineering, electrical & electronic,transportation science & technology

Changyuan Luo,Duan Li,Muhammad Saad Khan

DOI: https://doi.org/10.1038/s41598-024-77992-5

IF: 4.6

2024-11-09

Scientific Reports

Abstract:Certificateless public key infrastructure (PKI) avoids the key escrow problem associated with identity-based PKI and has recently been widely employed in anonymous communication schemes for vehicular adhoc networks (VANETs). In existing certificateless anonymous signcryption schemes for VANETs, vulnerabilities such as potential attacks involving the substitution of pseudonyms and the forging of pseudonymous public-private key pairs exist due to the lack of "identity-key binding" and "non-linearity processing of public-private key pairs." To address this issue, we propose an improved certificateless anonymous signcryption scheme based on elliptic curve cryptography. The scheme incorporates bilinear pairing as one of the authentication mechanisms, designs pseudonym generation algorithms and public-private key pair structures, and introduces a pseudonym verification mechanism. The correctness of the scheme is proven under the random oracle model, and its security is extensively demonstrated through detailed discussions on its confidentiality, authentication, unforgeability, anonymity, and traceability. Furthermore, the time and space complexity of the scheme are calculated. By comparing with recently published certificateless signcryption schemes, it is shown that the proposed scheme offers higher security with smaller computational and communication overheads. This certificateless vehicular network signcryption algorithm provides an efficient encryption solution for anonymous communication in vehicular networks, thereby ensuring the rapid development of secure technology for intelligent connected vehicle super terminals.

multidisciplinary sciences

Wang Shibin,Mao Kele,Zhan Furui,Liu Dong

DOI: https://doi.org/10.1007/s12083-020-00916-3

IF: 3.488

2020-01-01

Peer-to-Peer Networking and Applications

Abstract:In existing authentication schemes for vehicular ad hoc networks (VANETs), the public key infrastructure (PKI)-based pseudonym certificate, identity-based encryption and group signature technology are usually used to preserve the security and privacy. However, these schemes face some challenges, e.g., the time-consuming certificate revocation list (CRL) checking, identity revocation issue and the computation overhead of group signature, respectively. To cope with these challenges, we propose a hybrid conditional privacy-preserving authentication protocol based on the PKI certificate and identity-based signature. In our scheme, the trust authority (TA) assigns the unique long-term certificate for every registered node. Only the vehicle with valid certificate can apply the anonymous short term identity from the current RSU to sign safety-related message. The identity-based signature avoids the CRL checking and the complex bilinear paring operation. When vehicle is compromised, TA can easily revoke its identity by the only long-term certificate. To further enhance efficiency, vehicle can verify the received messages by the single or batch authentication manner. In addition, we optimize the authentication process to avoid vehicle verifying the repeated and unnecessary signatures. Compared with the current schemes, the simulation result shows that our authentication protocol can effectively reduce verified messages in the case of meeting the requirement of security and privacy.

Lu Wei,Jie Cui,Yan Xu,Jiujun Cheng,Hong Zhong

DOI: https://doi.org/10.1109/tifs.2020.3040876

IF: 7.231

2021-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Owing to the development of wireless communication technology and the increasing number of automobiles, vehicular ad hoc networks (VANETs) have become essential tools to secure traffic safety and enhance driving convenience. It is necessary to design a conditional privacy-preserving authentication (CPPA) scheme for VANETs because of their vulnerability and security requirements. Traditional CPPA schemes have two deficiencies. One is that the communication or storage overhead is not sufficiently low, but the traffic emergency message requires an ultra-low transmission delay. The other is that traditional CPPA schemes do not consider updating the system secret key (SSK), which is stored in an unhackable Tamper Proof Device (TPD), whereas side-channel attack methods and the wide usage of the SSK increase the probability of breaking the SSK. To solve the first issue, we propose a CPPA signature scheme based on elliptic curve cryptography, which can achieve message recovery and be reduced to elliptic curve discrete logarithm assumption, so that traffic emergency messages are secured with ultra-low communication overhead. To solve the second issue, we design an SSK updating algorithm, which is constructed on Shamir's secret sharing algorithm and secure pseudo random function, so that the TPDs of unrevoked vehicles can update SSK securely. Formal security proof and analysis show that our proposed scheme satisfies the security and privacy requirements of VANETs. Performance analysis demonstrates that our proposed scheme requires less storage size and has a lower transmission delay compared with related schemes.

computer science, theory & methods,engineering, electrical & electronic

Zhan Xie,Yong Chen,Ikram Ali,Chengwei Pan,Fagen Li,Wen He

DOI: https://doi.org/10.1109/tvt.2022.3230442

IF: 6.8

2022-01-01

IEEE Transactions on Vehicular Technology

Abstract:The emergence of the vehicular ad-hoc network (VANETs) could meet the need for an efficient and safe transportation. Vehicles wirelessly interact with nearby road-side units (RSUs) and send the data to the cloud servers (CS), but this approach has limitations (i.e., network congestion and privacy leakage). Edge computing can effectively solve problems of network congestion, feedback delay and privacy leakage during transmission caused by CS. Thus, this paper proposes a certificateless aggregate signcryption with onlineoffline encryption (CLOASC) based on edge computing (EDC). Correspondingly, certificateless signcryption (CLSC), onlineoffline encryption (OOE) and aggregate signcryption technology solve the key escrow problem, shorten the encryption time and realize the quick verification of multiple users, respectively. Furthermore, it is worth mentioning that the scheme we propose does not have any bilinear pairings or scalar multiplications in the online encryption stage, which greatly reduces the computational cost in the online stage. In the random oracle model, our scheme was proved to be existential unforgeability under adaptive chosen message attacks (EUF-ACM) and adaptive indistinguishability under chosen-ciphertext attack (IND-CCA2) security. Simulation results show that our scheme is computationally and communication based lightweight as compared to the related.

telecommunications,engineering, electrical & electronic,transportation science & technology

Yafang Yang,Lei Zhang,Yunlei Zhao,Kim-Kwang Raymond Choo,Yan Zhang

DOI: https://doi.org/10.1109/tifs.2022.3140657

IF: 7.231

2022-01-01

IEEE Transactions on Information Forensics and Security

Abstract:As cities become smarter, the importance of vehicular ad hoc networks (VANETs) will be increasingly pronounced. To support latency- and time-sensitive applications, there have been attempts to utilize fog-cloud computing in VANETs. There are, however, a number of limitations in existing fog-cloud based VANET deployments, ranging from computation and communication bottlenecks to privacy leakage to costly certificate/ pseudonym management to key escrow, and so on. Therefore, in this paper we propose a privacy-preserving aggregation authentication scheme (PPAAS). The scheme is designed for deployment in a safety warning system for fog-cloud based VANETs. Specifically, the PPAAS scheme is realized using a novel efficient anonymous certificateless aggregation signcryption scheme (CASS) proposed in this paper, and allows a fog node to aggregate signcrypted traffic-related messages from surrounding vehicles into an aggregated ciphertext and unsigncrypt them in a batch. We then evaluate the security of PPAAS and demonstrate that it supports confidentiality, authentication, and (efficient) conditional privacy, and key escrow freeness. In particular, our scheme is the first in the literature to achieve efficient conditional privacy, which avoids the need for costly pseudonym management. We also demonstrate that the scheme is practical, based on our simulation results.

computer science, theory & methods,engineering, electrical & electronic

Yanli Ren,Xiangyu Li,Shi-Feng Sun,Xingliang Yuan,Xinpeng Zhang

DOI: https://doi.org/10.1016/j.jisa.2020.102698

IF: 4.96

2021-01-01

Journal of Information Security and Applications

Abstract:Along with the development of Internet of Things (IoT) technology and Vehicular Ad-Hoc Networks (VANETs), security and effectiveness of road utilization have also been greatly improved. Currently, many certificateless signature schemes have been proposed to improve the communication speed while protecting the communication contents and real identities of the vehicles. Among others, some schemes realize batch verification or aggregation of multiple signatures. However, they either incur high calculation costs or cannot execute the operation of batch verification successfully. In this paper, we propose an efficient and privacy-preserving certificateless public key signature scheme based on the blockchain. Firstly, our scheme provides support for batch verification and aggregation of the signatures, and has lower calculation cost compared with the previous ones. Secondly, our scheme adds two blockchains to the structure in order to protect the identity privacy of the vehicles. Utilizing the immutability and openness of the blockchain, all nodes in VANETs can verify whether the identity of the vehicle is legal. Therefore, the scheme can greatly reduce the risk of privacy disclosure, and the pseudo-identities can be generated by the vehicles themselves. Thirdly, our scheme can realize traceability of the vehicles, which means the real identities of the vehicles can be revealed if they commit an illegal behavior. The experimental results show that our scheme can greatly reduce the computational cost of the vehicles and provide the functions of batch verification and aggregation. Therefore, the proposed scheme can simultaneously improve security and efficiency of the signature schemes for VANETs.

S. Jayashree,S. V. N. Santhosh Kumar

DOI: https://doi.org/10.1007/s12083-024-01726-7

IF: 3.488

2024-06-14

Peer-to-Peer Networking and Applications

Abstract:In the emerging world the Vehicular Ad-hoc Network (VANET) plays a vital role in the Intelligent Transportation Sector (ITS). Basically VANET are exposed rapid topology changes, dynamic network environment, intermittent connectivity and fluctuating communication range which leads to security and privacy concerns. To address these issues, in this work, an enhanced pairing free certificate less aggregate authentication scheme is proposed. The proposed method employs Elliptic Curve Cryptography (ECC) instead of bilinear pairing algorithm to reduce the overhead and to provide efficient security in the network. Further, during the communication and authentication phases the message transmission takes place in an aggregate manner which in turn reduces the time and storage in the network. The novelty of the proposed work is that the use of aggregation scheme which reduces the delay during the communication in the network. The formal security analysis is provided to the proposed protocol by using the Random Oracle Model (ROM) to prove the level of security and privacy in the proposed system. The proposed system is compared with various existing system and has improved its performance metrics in terms of computational, communication cost, signing delay, verification delay and message end to end delay. The implementation of the proposed protocol is carried out in NS3 simulator. The simulator results also proves that the proposed protocol improves the transmission overhead by 42.28%, computational cost by 39.45%, communication cost by 49.75%, signing delay by 45.23% and verification delay by 44.35% when it is compared with other existing systems.

computer science, information systems,telecommunications

Qing Yang,Xiaoqian Zhu,Xiaoliang Wang,Junjie Fu,Jing Zheng,Yuzhen Liu

DOI: https://doi.org/10.1016/j.future.2023.03.037

IF: 7.307

2023-04-02

Future Generation Computer Systems

Abstract:With the proposal of the intelligent transportation system, vehicular ad-hoc networks have been widely concerned and well-developed. Vehicular ad-hoc network is recognized as a major innovation of the Internet of Things technology. It can collect and analyze traffic data uploaded by vehicles through the network, monitor vehicle state in real-time, provide better driving routes and real-time traffic decisions for vehicles, and improve vehicles' overall level of intelligent driving. To make vehicles quickly join the vehicular ad-hoc networks through the authentication of identity legitimacy, take into account security and efficiency, and further reduce the calculation and communication consumption in authentication, this paper designs a mutual anonymous authentication and key agreement scheme based on an elliptic curve for the vehicular ad-hoc networks. To complete vehicle authentication and session key establishment, we work with lightweight operations like hash, XOR, and connection in conjunction with the elliptic curve discrete logarithm problem to guarantee the confidentiality of communication data. In the scheme, identity authentication is divided into two types: initial authentication and subsequent authentication. When the vehicle is just on the road, it will use the first roadside unit it encounters for initial authentication. All roadside units that cars on the road come across are then authenticated after the accomplishment of the initial authentication with the first roadside unit. Subsequent authentication is lighter and less computationally complex than initial authentication. Of course, subsequent authentication is based on initial authentication. This paper also analyzes the scheme's security and uses BAN logic analysis and Proverif simulation to verify the scheme's security. Additionally, performance analysis is used to demonstrate the scheme's superiority.

computer science, theory & methods

Lang Pu,Chao Lin,Jingjing Gu,Xinyi Huang,Debiao He

DOI: https://doi.org/10.1109/tifs.2024.3402992

IF: 7.231

2024-05-25

IEEE Transactions on Information Forensics and Security

Abstract:Vehicular Ad-hoc Networks (VANETs) constitute crucial elements within intelligent transportation systems. However, the rapid development of VANETs has brought forth an increasing number of security concerns. Conditional Privacy-Preserving Certificateless Signature (CPP-CLS) has emerged as a promising solution to ensure data security, preserve vehicle anonymity, and establish unlinkability in VANETs. In contrast to traditional public key infrastructure systems that involve cumbersome certificate management, and identity-based frameworks fraught with key escrow issues, CPP-CLS presents a more apt approach for VANETs. Unfortunately, the researches on CPP-CLS present a strange phenomenon in that a scheme proposed is always pointed out to have various security problems, especially public key replacement attacks. Moreover, there is a scarcity of published researches on the generic construction of CPP-CLS. To tackle these challenges, this paper proposes the first generic construction for CPP-CLS based on Type-T (Three-move type) signature, in which the public key reconstruction technique enables any receiver who owns a part of the sender's public key and the KGC's public key to reconstruct the complete sender's public key, which can alleviate the public key replacement attacks. A formal security analysis proves that our scheme effectively guards against existential forgery under adaptively chosen message attacks in the random oracle model, contingent upon the security of the underlying Type-T signature. Furthermore, We provide two specific instantiations of the generic construction to verify feasibility. Among them, the instantiation based on module learning with errors is effective against quantum attacks. Based on extensive experimental results and theoretical analysis, our implementations surpass the majority of existing similar schemes in either performance or security. This substantiates the feasibility of our generic scheme, making it applicable for constructing CPP-CLS schemes.

computer science, theory & methods,engineering, electrical & electronic

Shunrong Jiang,Xiaoyan Zhu,Liangmin Wang

DOI: https://doi.org/10.1109/tits.2016.2517603

IF: 8.5

2016-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:In vehicular ad hoc networks (VANETs), when a vehicle receives a message, the certificate revocation list (CRL) checking process will operate before certificate and signature verification. However, large communication sources, storage space, and checking time are needed for CRLs that cause the privacy disclosure issue as well. To address these issues, in this paper, we propose an efficient anonymous batch authentication scheme (ABAH) to replace the CRL checking process by calculating the hash message authentication code (HMAC). In our scheme, we first divide the precinct into several domains, in which road-side units (RSUs) manage vehicles in a localized manner. Then, we adopt pseudonyms to achieve privacy-preserving and realize batch authentication by using an identity-based signature (IBS). Finally, we use HMAC to avoid the time-consuming CRL checking and to ensure the integrity of messages that may get loss in previous batch authentication. The security and performance analysis are carried out to demonstrate that ABAH is more efficient in terms of verification delay than the conventional authentication methods employing CRLs. Meanwhile, our solution can keep conditional privacy in VANETs.