Xiaoliang Wang,Xinhui She,Liang Bai,Yang Qing,Frank Jiang

DOI: https://doi.org/10.32604/cmc.2021.012454

2021-01-01

Abstract:The vehicular cloud computing is an emerging technology that changes vehicle communication and underlying traffic management applications. However, cloud computing has disadvantages such as high delay, low privacy and high communication cost, which can not meet the needs of realtime interactive information of Internet of vehicles. Ensuring security and privacy in Internet of Vehicles is also regarded as one of its most important challenges. Therefore, in order to ensure the user information security and improve the real-time of vehicle information interaction, this paper proposes an anonymous authentication scheme based on edge computing. In this scheme, the concept of edge computing is introduced into the Internet of vehicles, which makes full use of the redundant computing power and storage capacity of idle edge equipment. The edge vehicle nodes are determined by simple algorithm of defining distance and resources, and the improved RSA encryption algorithm is used to encrypt the user information. The improved RSA algorithm encrypts the user information by reencrypting the encryption parameters . Compared with the traditional RSA algorithm, it can resist more attacks, so it is used to ensure the security of user information. It can not only protect the privacy of vehicles, but also avoid anonymous abuse. Simulation results show that the proposed scheme has lower computational complexity and communication overhead than the traditional anonymous scheme.

Miao Xu,Wenyuan Xu,Jesse Walker,Benjamin Moore

DOI: https://doi.org/10.1145/2517968.2517973

2013-01-01

Abstract:Wireless sensor networks are increasingly being integrated into the modern automobile with the intention of improving safety and reducing costs. However, it has been shown that the first widely-deployed and mandatory in-car sensor networks --Tire Pressure Monitoring Systems (TPMSs) -- employ no cryptographic algorithms for protecting their wireless communication, incurring serious security and privacy risks for consumers. In this paper, we design and evaluate cost-effective secure communication protocols that can resolve the privacy and security vulnerabilities of existing TPMSs as well as other forthcoming in-car wireless sensor networks. Our implementation on Arduino platforms shows that the proposed protocol incurs modest overhead and is applicable to resource-constrained embedded systems.

Jiawei Zhang,Teng Li,Mohammad S. Obaidat,Chi Lin,Jianfeng Ma

DOI: https://doi.org/10.1109/jsyst.2020.3044309

IF: 4.802

2022-03-01

IEEE Systems Journal

Abstract:The rapid development of cloud computing and Internet of Things enables widely use of Internet of Vehicles (IoV) and drives a revolutionary change for intelligent transport system. The advent of 5G and fog computing architectures also facilitates applications of IoV and makes the enormous IoV data outsourcing and sharing in cloud and fog more convenient. However, the data outsourcing and sharing will incur many security concerns to IoV including data leakage and breach as the users cannot direct control their data. To guarantee IoV data security, a novel scheme is proposed for IoV data sharing with high efficiency. In our scheme, we utilize ciphertext-policy attribute-based encryption (CP-ABE) to achieve confidentiality and fine-grained access control for IoV data shared in cloud and fog. Nevertheless, as another intrinsic feature in IoV environment, the dynamicity in a group of connected vehicles brings some challenges to our scheme. To deal with this situation, we bring forward a concept of auditable user revocation for CP-ABE to adapt to the dynamic vehicle groups. Moreover, online/offline and verifiable outsourcing techniques are leveraged to improve the efficiency and guarantee the correctness of decryption. At the end, we demonstrate the security and efficiency for our scheme by giving detailed security analysis and performance evaluation with extensive experiments.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Yingjie Xia,Wenzhi Chen,Xuejiao Liu,Luming Zhang,Xuelong Li,Yang Xiang

DOI: https://doi.org/10.1109/tits.2017.2653103

IF: 8.5

2017-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Vehicular ad-hoc networks (VANETs) have drawn much attention of researchers. The vehicles in VANETs frequently join and leave the networks, and therefore restructure the network dynamically and automatically. Forwarded messages in vehicular ad-hoc networks are primarily multimedia data, including structured data, plain text, sound, and video, which require access control with efficient privacy preservation. Ciphertext-policy attribute-based encryption (CP-ABE) is adopted to meet the requirements. However, solutions based on traditional CP-ABE suffer from challenges of the limited computational resources on-board units equipped in the vehicles, especially for the complex policies of encryption and decryption. In this paper, we propose a CP-ABE delegation scheme, which allows road side units (RSUs) to perform most of the computation, for the purpose of improving the decryption efficiency of the vehicles. By using decision tree to jointly optimize multiple factors, such as the distance from RSU, the communication and computational cost, the CP-ABE delegation scheme is adaptively activated based on the estimation of various vehicles decryption overhead. Experimental results thoroughly demonstrate that our scheme is effective and efficient for multimedia data forwarding in vehicular ad-hoc networks with privacy preservation.

Jie Cui,Xuelian Chen,Jing Zhang,Qingyang Zhang,Hong Zhong

DOI: https://doi.org/10.1109/jiot.2020.3041860

IF: 10.6

2021-05-15

IEEE Internet of Things Journal

Abstract:A connected and autonomous vehicle (CAV) is often fitted with a large number of onboard sensors and applications to support autonomous driving functions. Based on the current research, little work on applications' access to in-vehicle data has been done. Furthermore, most existing autonomous driving operating systems lack authentication and encryption units. As such, applications can excessively obtain confidential information, such as vehicle location and owner preferences and even upload it to the cloud, threatening the security of the vehicle and the privacy of the owner. In this study, we propose a fine-grained access control scheme to restrict applications' access to data in CAVs (FGAC-inCAVs). First, we present a system model composed of the following elements: a trusted third party (TTP), which is a fully trusted authority; perception components like sensors, which can capture the road information (pictures, videos, etc.); and multiple applications. Then, a fast attribute-based encryption (ABE) is presented, and security analysis also shows it is secure against selective and chosen-plaintext attacks. Furthermore, we propose a key update scheme based on the Chinese remainder theorem (CRT). Finally, the theoretical analysis and simulation experiments demonstrate its feasibility and efficiency.

computer science, information systems,telecommunications,engineering, electrical & electronic

Xuanmei Qin,Yongfeng Huang,Xing Li

DOI: https://doi.org/10.1007/s00500-020-05117-x

IF: 3.732

2020-06-30

Soft Computing

Abstract:Nowadays, more and more data are stored on cloud for sharing in vehicular networks, but the increasing number of cloud data security incidents makes how to guarantee confidentiality of sharing data one of the main concerns. Attribute-based encryption is considered as a suitable method to solve this issue. However, the requirements of lightweight and privacy make it difficult to apply the existing attribute-based encryption schemes directly in vehicular networks. In this paper, we put forward an access control scheme with lightweight decryption and conditional authentication for secure data sharing in vehicular networks. In this scheme, we extend elliptic-curve cryptography-based key-policy attribute-based encryption scheme with token-based decryption for lightweight access control. Moreover, we integrate Elliptic Curve Qu-Vanstone implicit certificate with ELGamal encryption algorithm to achieve both mutual authentication and conditional privacy protection. The performance analysis shows that the proposed scheme requires less time for both encryption and decryption on the user side. The security analysis shows that the proposed scheme can provide conditional anonymity.

computer science, artificial intelligence, interdisciplinary applications

Wael Khalafalla,Wen-Xing Zhu,Ahmed Elkhalil,Issameldeen Elfadul

DOI: https://doi.org/10.1007/s10586-024-04479-3

2024-05-02

Cluster Computing

Abstract:Access control refers to the mechanisms and policies determining which vehicles or entities can access certain network resources, services, or information. Nevertheless, the dynamic nature of a VANET, the necessity to support a wide range of services, and the importance of protecting users' personal information make access control a challenging issue in vehicle contexts. This study presents an efficient access control scheme based on a blockchain to enhance efficiency and security in heterogeneous signcryption (AC-HSC). Additionally, the AC-HSC protocol incorporates blockchain technology for revocation transparency, allowing roadside units to efficiently verify revoked pseudo-identities without relying on a central unit. The AC-HSC effectively fulfills various security criteria, including integrity, privacy preservation, authentication, traceability, unlinkability, non-repudiation, and resistance against replay attacks. Moreover, the formal analysis carried out in a random oracle model (ROM) proves that the proposed protocol is secure against indistinguishability under chosen-ciphertext attack (IND-CCA2) under the Computational Diffie-Hellman (CDH) assumption and existential unforgeability under chosen message attack (EUF-CMA) under the Discret-Logarithm (DL) assumption. In addition, the proposed protocol effectively addresses the issue of key escrow and successfully eliminates the challenges associated with certification management. Finally, the AC-HSC protocol implemented with a free pairing demonstrates reduced computational costs by 3.57%, 50%, 53.53%, 72.22%, 32.66%, 50.90%, 3.57%, and 57.14%, respectively, and the total energy consumption of the VANET nodes in our protocol reduced by about 4.16%, 45.03%, 50.04%, 68.37%, 31.52%, 49.67%, 4.16%, and 53.68%, respectively, as compared with the existing signcryption schemes.

computer science, information systems, theory & methods

Yan Cui,Siqi Li,Yue Wang,Bolin Gao

DOI: https://doi.org/10.1109/cvci51460.2020.9338620

2020-01-01

Abstract:With the development of Intelligent Connected Vehicles (ICVs), Cloud Control Platform is becoming an important part to compute driving strategies. However, when strategies are put to cloud, some of vehicle manufacturers' private data must be sent to the cloud, like Engine Map, which are core data for vehicle manufactures. How to protect these data has been the largest obstacle for the ICVs. Thus, this paper proposes a new framework in which Fully Homomorphic Encryption (FHE) and Blockchain technology are combined to compute encryption data on the cloud and record trails of cloud request. In this framework, private data can be protected, the scope of data usage will be limited, and at the same time, the execution of specific type of computations with encryption data on the cloud are fulfilled. In the end, with the help of Simple Encrypted Arithmetic Library (SEAL) developed by Microsoft Research, and IBM blockchain framework Hyperledger Fabric, this framework is verified to be feasible to build a trustworthy ICVs cloud computing system.

Kai Fan,Ye Bi,Yintang Yang,Kuan Zhang,Hui Li

DOI: https://doi.org/10.1109/mnet.002.2300009

IF: 10.294

2023-12-01

IEEE Network

Abstract:With the increased number of vehicles, infrastructure, and demand for various road services, the traditional Internet of Vehicles (IoV) architecture fails to provide quality services to users. New frameworks combining the vehicular network with cloud computing to extend storage capacity and processing power are highly sought. The vehicles communicate with the roadside units (RSUs) and upload the road condition information to the cloud server, enabling dynamic resource scheduling. However, in practical applications, the authentication scheme for emergency vehicles as a special node in the vehicle network receives insufficient attention. This article proposes a multi-factor lightweight emergency vehicle authentication protocol for cloud environments. Our protocol enables mutual authentication among the vehicle, the RSU, and the cloud server. An essential feature of our scheme is that during the initial authentication process, the cloud server generates random temporary secrets for the emergency vehicle and subsequent RSUs on the planned route. During the re-authentication phase, the vehicles and RSUs are authenticated using temporary secrets, improving the efficiency. In addition, our protocol verifies the driver's identity and prevents the system from impersonation attacks and vehicle theft attacks. Extensive simulation comparisons and security analyses demonstrate that our protocol is more effective.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Huiying Hou,Jianting Ning,Yunlei Zhao,Robert H. Deng

DOI: https://doi.org/10.1109/tsc.2021.3071156

IF: 11.019

2022-01-01

IEEE Transactions on Services Computing

Abstract:Cloud-based VANETs are designed to enable communication between high-speed vehicles. In such a highly dynamic environment, how to provide secure and anonymous communication service is a challenge. In this article, we affirmatively address the challenge by proposing a traitor-resistant and dynamic anonymous communication framework (TD-ACF) for cloud-based VANETs, which supports several advantageous features. In TD-ACF, each vehicle is represented by a set of attributes instead of its real identity, and the driving data is transmitted in encrypted form. Therefore, the anonymous authentication and the confidentiality of driving data are achieved in this way. Meanwhile, TD-ACF supports two practical requirements in cloud-based VANETs: the revocation and the traceability of traitor. For the former, TD-ACF can force a vehicle to exit the communication network at any moment. We employ an efficient binary tree algorithm to reduce the size of key updates for revocation from the traditional linear to the logarithmic level. For the latter, we overcome the barrier of the one-to-many relationship between a vehicle and the shared set of attributes to support traitor tracing. In TD-ACF, unlike most existing schemes, the Semi-Trusted Cloud (STC) can directly capture and punish a traitor instead of querying all the records in the list of unrevoked vehicles. In addition, we solve the key escrow problem that plagues most existing attribute-based schemes. The theoretical analysis and experimental simulation show that the proposed scheme is feasible and effective.

Jiongen Xiao,Yi Liu,Yi Zou,Dacheng Li,Tao Leng

DOI: https://doi.org/10.1155/2024/5808088

IF: 2.249

2024-06-08

Journal of Advanced Transportation

Abstract:Internet of Vehicles can improve driving and riding experience, provide information needs, reduce environmental pollution, and improve transportation efficiency, thereby promoting the rapid development and application of intelligent transportation. Especially through the advantages of the rapidity of information exchange and the flexibility of real‐time data processing, an autonomous vehicle can provide barrier‐free, safe, and sustainable transportation. At present, the rapid progress of the Internet of Things has promoted the continuous development of a fully autonomous vehicle. However, the autonomous vehicle network uses wireless communication technology, and the openness of its communication channel makes the communication process vulnerable to various security attacks. Therefore, this paper proposes a practical and efficient secure communication in the autonomous vehicle. This scheme utilizes elliptic curve cryptography, which can protect the security of multiparty communication between vehicle, cloud server, and user with lower computation and communication overhead. This paper provides security verification for the scheme by using Scyther. An informal security analysis shows that this scheme can resist multiple attacks. Through a comparative analysis and performance evaluation of the schemes, we found that the scheme improves security while maintaining efficiency.

transportation science & technology,engineering, civil

Yuanshuai Li,Li Cao,Guoli Zheng,Honglei Men,Liang Chen

DOI: https://doi.org/10.1016/j.compeleceng.2024.109261

IF: 4.152

2024-05-02

Computers & Electrical Engineering

Abstract:The Internet of Vehicles (IoV) provides various services to vehicles through information sharing to ensure road safety and improve traffic efficiency. However, malicious attackers can challenge the privacy and security systems of the IoV by conducting security attacks. Currently, many schemes use bilinear pairing or elliptic curves to construct authentication systems, ensuring anonymity of vehicle identities and message security. However, these schemes suffer drawbacks such as low computational efficiency and high communication overhead in highly dynamic IoV. Therefore, we propose a new efficient certificateless message authentication scheme. The proposed scheme constructs a lightweight security authentication protocol by improving the RSA dynamic accumulator and combining it with non-interactive discrete logarithm zero-knowledge proofs. In addition, our scheme eliminates the need for bilinear pairing operations, thereby reducing computational overhead. Simultaneously, it enables real-time tracking and revocation of malicious vehicle identities. Security analysis shows that our scheme can be reduced to a secure S-RSA assumption under the random oracle model, meeting various security requirements of the IoV. Performance analysis shows that our scheme diminishes not only the computational overhead but also the communication overhead.

engineering, electrical & electronic,computer science, interdisciplinary applications, hardware & architecture

Yangyang Bao,Weidong Qiu,Xiaochun Cheng,Jianfei Sun

DOI: https://doi.org/10.1109/tits.2022.3187980

IF: 8.5

2023-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:The Internet of Vehicles (IoV) is expected to play a revolutionary role in improving users' driving experience and urban traffic governance. By widely absorbing emerging technologies including cloud computing, the future IoV evolution is leading towards providing more flexible and diversified data services. However, the publicly accessible IoV environment arouses the user's concerns about the leakage of data and personal privacy. Despite some cryptographic solutions have been proposed, they still raise challenges on privacy, efficiency and usability. To cope with these challenges, this paper first presents an efficient scheme PH-ABE-DS, which attains the full policy hiding by implementing the access control with the inner product. Besides, we design an efficient indirect revocation mechanism, to enable the cloud and users to update the ciphertext and user secret key with slight storage and computational overheads. On this basis, we then present the EA-PH-ABE-DS scheme, by resorting to edge computing, it further reduces the overheads of resource-constrained devices. We design a deployment model for EA-PH-ABE-DS in IoV to discuss its usability. Rigorous security proof and security properties analysis show that our proposal is secure and reliable. Finally, through detailed comparisons on theoretical and experimental, both our two schemes show their superiority over the latest related works in terms of functionality and performance. The simulation evaluates and demonstrates the practicality of our solutions in practical IoT scenarios.

Hui Tian,Xiang Li,Hanyu Quan,Chin-Chen Chang,Thar Baker

DOI: https://doi.org/10.1109/jsen.2020.3030688

IF: 4.3

2021-07-15

IEEE Sensors Journal

Abstract:The Intelligent Transportation System (ITS) provides more possibilities for the realization of smart cities by integrating the Internet of Things (IoT) and cloud computing. However, how to ensure security of IoT data stored in the cloud has become one of the biggest challenges at present. As a promising solution for realizing fine-grained access control, Ciphertext-Policy Attribute-Based Encryption (CP-ABE) can be used to ensure data security. However, the traditional CP-ABE schemes may leak privacy of ITS users. Moreover, due to their high computational overheads, the current privacy-preserving techniques are not suitable for IoT lightweight devices. To fill this gap, this article presents ABE-FPP, a lightweight attribute-based access control scheme with full privacy protection (FPP), which can achieve full privacy protection in the three key stages (i.e., key generation, access control, and partial decryption), while reducing consumption overhead on the user side. Specifically, to protect privacy during key generation, a lightweight two-party secure computing protocol between the user and the authority is designed to generate secret keys; to protect privacy during the access control policy setting, we present an efficient policy hidden strategy, which only reveals attribute names and efficiently hides attribute values; to protect privacy during partial decryption, we propose a hybrid authentication method that does not need to submit attribute values to the cloud. Moreover, to achieve lightweight computation for IoT devices, online/offline encryption and outsourced decryption are employed in ABE-FPP. Finally, formal security proofs show that our scheme is secure in the standard model. The asymptotic complexity analyses and experimental results demonstrate that the presented scheme achieves higher computation efficiency than the state-of-the-art ones.

engineering, electrical & electronic,instruments & instrumentation,physics, applied

Nabeil Eltayieb,Rashad Elhabob,Yongjian Liao,Fagen Li,Shijie Zhou

DOI: https://doi.org/10.1016/j.jisa.2024.103763

IF: 4.96

2024-01-01

Journal of Information Security and Applications

Abstract:The Snowden leaks exposed the truth that skilled attackers can access users’ devices and steal their private information. Although public key encryption is widely used and theoretically secure, it has hidden vulnerabilities when implemented in practice. This is especially problematic when employing communication channels among heterogeneous protocols within the Internet of Things (IoT), it becomes apparent that these channels lack adequate protection to address the diverse nature of IoT systems. This work proposes a novel Heterogeneous Online/Offline Signcryption with Cryptographic Reverse Firewalls (HOOS-CRF). The scheme enables a secure communication channel between the sender in an Identity-based cryptosystem (IBC) and the receiver in the Public Key Infrastructure (PKI) cryptosystem with CRF deployed. To reduce computational costs, we split the signcryption algorithm into two stages: online and offline. Most resource-intensive operations are performed during the offline stage, which operates without any knowledge of the message being processed. The HOOS-CRF scheme provides confidentiality, authentication, and defense against insider security attacks. Meanwhile, we prove the security of the HOOS-CRF using the random oracle model and demonstrate its high efficiency and practicality through experiments. Lastly, the scheme’s relevance to IoT-driven healthcare applications is demonstrated.

Shimaa Bergies,Tawfiq M. Aljohani,Shun-Feng Su,Mahmoud Elsisi

DOI: https://doi.org/10.1109/tsmc.2024.3409314

2024-08-21

IEEE Transactions on Systems Man and Cybernetics Systems

Abstract:In the realm of modern transportation, automated electric vehicles (AEVs) assume a seminal role in realizing the vision of intelligent and electrified mobility. The advancement of AEVs hinges on the utilization of smart Internet of Things (IoT) devices as indispensable components to propel their evolution. These devices not only amplify the operational capabilities of AEVs but also underpin their security in the face of escalating cyber threats. In this regard, this study proposes a novel IoT architectural paradigm, encompassing integration of model predictive control (MPC) and deep neural network (DNN) frameworks. The proposed architecture aims to enhance AEV performance, empowering them to counteract the disruptive impact of erroneous data intrusions that result from cyber breaches. To ensure the timely identification of potential threats without compromising privacy considerations, this study augments the framework to encompass trajectory prediction. This extension is achieved through dynamic programming (DP) to craft effective control strategies governing AEV motions, conjoined with DNNs adept in discerning deviations from projected behavioral norms within AEVs' control signals. This cohesive symbiosis propels the expeditious detection of anomalies indicative of potential security breaches. As data privacy remains a paramount consideration, this work employs Homomorphic Encryption, enabling anomaly score computation on encrypted data, thereby upholding privacy standards. Various test scenarios are conducted to emphasize the effectiveness of the proposed IoT architecture with MPC, DP, and DNN to improve the performance of the AEV. The results attest that the proposed approach can tackle cyberattacks and data loss effectively which enhances the production process and decision making.

automation & control systems,computer science, cybernetics

Chaeeon Kim,DeokKyu Kwon,Seunghwan Son,Sungjin Yu,Youngho Park

DOI: https://doi.org/10.3390/math12233756

IF: 2.4

2024-11-29

Mathematics

Abstract:The Internet of Vehicles (IoV) is an emerging technology that enables vehicles to communicate with their surroundings, provide convenient services, and enhance transportation systems. However, IoV networks can be vulnerable to security attacks because vehicles communicate with other IoV components through an open wireless channel. The recent related work suggested a two-factor-based lightweight authentication scheme for IoV networks. Unfortunately, we prove that the related work cannot prevent various security attacks, such as insider and ephemeral secret leakage (ESL) attacks, and fails to ensure perfect forward secrecy. To address these security weaknesses, we propose an anonymous and efficient authentication scheme with conditional privacy-preserving capabilities in IoV networks. The proposed scheme can ensure robustness against various security attacks and provide essential security features. The proposed scheme ensures conditional privacy to revoke malicious behavior in IoV networks. Moreover, our scheme uses only one-way hash functions and XOR operations, which are low-cost cryptographic operations suitable for IoV. We also prove the security of our scheme using the "Burrows–Abadi–Needham (BAN) logic", "Real-or-Random (ROR) model", and "Automated Validation of Internet Security Protocols and Applications (AVISPA) simulation tool". We evaluate and compare the performance and security features of the proposed scheme with existing methods. Consequently, our scheme provides improved security and efficiency and is suitable for practical IoV networks.

mathematics

Chien-Ming Chen,Zhen Li,Saru Kumari,Gautam Srivastava,Kuruva Lakshmanna,Thippa Reddy Gadekallu

DOI: https://doi.org/10.1016/j.vehcom.2022.100567

IF: 6.7

2022-12-30

Vehicular Communications

Abstract:In recent years, the Social Internet of Vehicles ( SIoV ) has been widely used in transportation and people's daily lives, dramatically enhancing people's lifestyles. SIoV can collect and process traffic information in real-time, alleviate traffic congestion, and realize smart transportation and smart cities. However, the data generated by vehicles moving with servers are transmitted on a public channel, so the sensitive information of drivers can be easily intercepted and tampered with by attackers. In addition, the massive amount of real-time data generated by these vehicles, devices, drivers, passengers, and other social relationships impose tremendous load pressure on the servers. Therefore, we propose a secure authentication protocol using confidential computing environments. Besides, we also innovatively offer a key transfer phase better to reduce the computing pressure on the cloud server. We use the real-oracle random model to demonstrate the proposed protocol is provably secure. Experimental evaluation shows that the proposed protocol has excellent computational and communication performance.

telecommunications,transportation science & technology

Wei Luo,Wenping Ma

DOI: https://doi.org/10.1109/access.2018.2858233

IF: 3.9

2018-01-01

IEEE Access

Abstract:Vehicular networking involves the storage, compute, and analysis of massive vehicular data. Vehicular cloud computing, as a special cloud computing platform, seamlessly combines vehicular ad hoc networks and conventional cloud computing. However, in the vehicular cloud computing, there is still the problem of unauthorized users accessing and stealing data. In the traditional ciphertext-policy attribute-based encryption (CP-ABE) scheme, a trusted central authority is employed to manage attributes and distribute keys. Based on multi-authority (MA) CP-ABE, we propose a secure and revocable access control scheme for vehicular cloud computing in this paper, in which the requester can decrypt the ciphertext with only a small amount of computation. We show that our MA-CP-ABE scheme can prevent static corruption of authorities in the standard model under the decisional q-parallel bilinear Diffie–Hellman exponent assumption. Theoretical analysis and experimental simulation results show that our scheme has lower communication cost and lower computational complexity than other schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Shengwei Xu,Runsheng Liu

DOI: https://doi.org/10.3390/e26070590

2024-07-10

Abstract:With the rapid development of artificial intelligence and Internet of Things (IoT) technologies, automotive companies are integrating federated learning into connected vehicles to provide users with smarter services. Federated learning enables vehicles to collaboratively train a global model without sharing sensitive local data, thereby mitigating privacy risks. However, the dynamic and open nature of the Internet of Vehicles (IoV) makes it vulnerable to potential attacks, where attackers may intercept or tamper with transmitted local model parameters, compromising their integrity and exposing user privacy. Although existing solutions like differential privacy and encryption can address these issues, they may reduce data usability or increase computational complexity. To tackle these challenges, we propose a conditional privacy-preserving identity-authentication scheme, CPPA-SM2, to provide privacy protection for federated learning. Unlike existing methods, CPPA-SM2 allows vehicles to participate in training anonymously, thereby achieving efficient privacy protection. Performance evaluations and experimental results demonstrate that, compared to state-of-the-art schemes, CPPA-SM2 significantly reduces the overhead of signing, verification and communication while achieving more security features.