Lianhai Liu,Yujue Wang,Jingwei Zhang,Qing Yang

DOI: https://doi.org/10.3390/s19030482

IF: 3.9

2019-01-01

Sensors

Abstract:A vehicular ad hoc network (VANET) is a special mobile ad hoc network that provides vehicle collaborative security applications using intervehicle communication technology. The method enables vehicles to exchange information (e.g., emergency brake). In VANET, there are many vehicle platoon driving scenes, where vehicles with identical attributes (location, organization, etc.) are organized as a group. However, this organization causes the issue of security threats (message confidentiality, identity privacy, etc.) because of an unsafe wireless communication channel. To protect the security and privacy of group communication, it is necessary to design an effective group key agreement scheme. By negotiating a dynamic session secret key using a fixed roadside unit (RSU), which has stronger computational ability than the on-board unit (OBU) equipped on the vehicle, the designed scheme can help to provide more stable communication performance and speed up the encryption and decryption processes. To effectively implement the anonymous authentication mechanism and authentication efficiency, we use a batch authentication scheme and a shared secret key mechanism among the vehicles, RSUs and trusted authority (TA). We design an efficient group secret key agreement scheme, which satisfies the above communication and security requirements, protects the privacy of vehicles, and traces the real identity of the vehicle at a time when it is necessary. Computational analysis shows that the proposed scheme is secure and more efficient than existing schemes.

Chunhua Jin,Penghui Zhou,Zhiwei Chen,Wenyu Qin,Guanhua Chen,Hao Zhang,Jian Weng

DOI: https://doi.org/10.1016/j.vehcom.2024.100847

IF: 6.7

2024-10-27

Vehicular Communications

Abstract:Vehicular ad hoc network (VANET) has been a promising technology in smart transportation system, which can enable information exchange between vehicles and roadside units (RSUs). However, the privacy of vehicles and RSUs is a critical challenge in VANET, as they may expose sensitive information to malicious attackers or unauthorized parties. Many existing authenticated key agreement (AKA) schemes aim to protect the privacy of vehicles and RSUs, but they often neglect the physical security of the devices involved in the communication. Therefore, we propose an efficient and privacy-preserving AKA scheme in VANET, which embeds physical unclonable function (PUF) and fuzzy extraction (FE) technology. PUF is a physical device that generates random strings based on their intrinsic characteristics and external inputs, which can protect the secrets in the devices from being stolen by attackers. FE can compensate for the drawbacks of PUF affected by environmental factors. Our scheme preserves the identity privacy of legitimate RSUs and vehicles, as well as intercepts and traces the identity of malicious attackers. In addition, we eliminate the involvement of the third party (TP) in the AKA phase to better meet the high-speed driving of vehicles. Finally, we conduct formal and informal security analyses in random oracle model (ROM), which prove that our scheme can resist various attacks. We also show in the performance analysis that our scheme has the lowest computational cost, communication overhead, and total energy consumption.

telecommunications,transportation science & technology

Yonghua Zhan,Weipeng Xie,Rui Shi,Yunhu Huang,Xianghan Zheng

DOI: https://doi.org/10.3390/s24061773

2024-03-09

Abstract:Secure group communication in Vehicle Ad hoc Networks (VANETs) over open channels remains a challenging task. To enable secure group communications with conditional privacy, it is necessary to establish a secure session using Authenticated Key Agreement (AKA). However, existing AKAs suffer from problems such as cross-domain dynamic group session key negotiation and heavy computational burdens on the Trusted Authority (TA) and vehicles. To address these challenges, we propose a dynamic privacy-preserving anonymous authentication scheme for condition matching in fog-cloud-based VANETs. The scheme employs general Elliptic Curve Cryptosystem (ECC) technology and fog-cloud computing methods to decrease computational overhead for On-Board Units (OBUs) and supports multiple TAs for improved service quality and robustness. Furthermore, certificateless technology alleviates TAs of key management burdens. The security analysis indicates that our solution satisfies the communication security and privacy requirements. Experimental simulations verify that our method achieves optimal overall performance with lower computational costs and smaller communication overhead compared to state-of-the-art solutions.

Rongxing Lu,Xiaodong Lin,Zhiguo Shi,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/mis.2013.56

IF: 6.744

2013-01-01

IEEE Intelligent Systems

Abstract:Vehicular traffic monitoring (VTM) is a promising cyber-physical system, but it faces many security and privacy challenges. Here, a new lightweight conditional privacy preservation (LCPP) protocol utilizes simple hash-chain techniques to secure VTM systems. The protocol not only supports the requirement of conditional privacy preservation, but also achieves efficient local revocation verification on the road.

Huadong Su,Shi Dong,Ning Wang,Ting Zhang

DOI: https://doi.org/10.1016/j.vehcom.2024.100727

IF: 6.7

2024-01-21

Vehicular Communications

Abstract:With the constant development of wireless communication technologies, the Vehicular Ad-hoc Networks (VANETs) will become an inevitable paradigm for intelligent transportation systems. Privacy-preserving and authentication security has been a core concern in VANETs, and pseudonym-based and group signature-based privacy-preserving authentication schemes have been widely proposed. However, most research schemes rely excessively on the Trusted Authority, and vehicle request and authentication information is almost transparent in front of TAs, while they cannot guarantee the security of vehicle request information after it is intercepted. To address these issues, this paper proposes a lightweight privacy-preserving authentication scheme that mitigates TA dependency, aiming to achieve mutual privacy protection and authentication between vehicles and TAs in VANETs by improving the oblivious transfer algorithm. The security analysis proves that this scheme has good privacy protection and attack resistance, and in addition, the performance simulation and evaluation show that this scheme spends lower computation and communication overheads while ensuring lower authentication delay and packet loss rate, which is a better overall performance compared with other schemes.

telecommunications,transportation science & technology

Md. Ismail,Santanu Chatterjee,Jamuna Kanta Sing,Saru Kumari,Joel J. P. C. Rodrigues

DOI: https://doi.org/10.1109/tits.2024.3373253

IF: 8.5

2024-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Presently, the Vehicular Ad-hoc Network (VANET) is very important for the entire traffic management system. The 5th Generation (5G) enables VANET and Intelligent Transportation Systems (ITS) to connect devices in the million/sqkm range with improved performance, incredible transmission speed (terabit), and less cost to serve a vast, transformative, and diverse automobile sector. To ensure security and avoid the free flow of information in highly scalable, dynamic 5G, there are many challenges to restrict unauthenticated users access and proper key agreements with fine-grained access control. Here, a lightweight biometrics-based dynamic Anonymous Key Agreement Scheme (AKAS) with a fine-grained authentication feature is proposed to address challenges related to the restriction of unauthenticated users access and proper key agreement with fine-grained access control specifically for Vehicle-to-Vehicle (V2V) communication in VANET. In the proposed scheme, registered and authorized users can access services or information as per access privilege only. We have simulated our scheme using Automated Validation of Internet Security Protocols (AVISPA), Simulation of Urban MObility (SUMO), OMNET $++$ (Objective Modular Network Testbed in C $++$ ), and performed formal security analysis using the Real-or-Random (ROR) oracle model. Analysis and simulation results show that our scheme is secured against various well-known attacks. Further, we have compared the security and efficiency of our scheme with the existing schemes and found that our proposed protocol is more secure, lighter, 5G-friendly, scalable, and even faster than the other related schemes.

engineering, electrical & electronic,transportation science & technology, civil

Mei Sun,Yuyan Guo,Dongbing Zhang,MingMing Jiang

DOI: https://doi.org/10.1155/2021/5526412

IF: 2.3

2021-05-04

Complexity

Abstract:Vehicular ad hoc network (VANET) is a multihop mobile wireless communication network that can realize many vehicle-related applications through multitop communication. In the open wireless communication environment, security and privacy protection are important contents of VANET research. The most basic method of VANET privacy protection is anonymous authentication. Even through, there are many existing schemes to provide anonymous authentication for VANETs. Many existing schemes suffer from high computational cost by using bilinear pairing operation or need the assistance of the trust authorities (TAs) during the authentication process or rely on an ideal tamper-proof device (TPD), which requires very strong security assumption. In this study, an anonymous authentication and key negotiation scheme by using private key and group key is proposed, which is based on pseudonym using the nonsingular elliptic curve. In this scheme, there is no third party trust center to participate in the authentication, there is no need to query the database, and there is no need of the local database to save the identity information of many vehicles, which reduce the storage space and the authentication time compared with other schemes. The proposed scheme only needs realistic TPDs. In the proposed scheme, TPDs do not need to preinstall the system key as many other schemes do; hence, the failure of a single TPD does not affect the security of the entire system. The security of the scheme is proved under the random oracle model. Compared with the related schemes using bilinear pairings, the computational cost and communication cost of the proposed scheme are reduced by 82% and 50%, respectively.

mathematics, interdisciplinary applications,multidisciplinary sciences

Kang Li,Man Ho Au,Wang Hei Ho,Yi Lei Wang

DOI: https://doi.org/10.1007/978-3-030-31919-9_4

2019-01-01

Abstract:Vehicular ad hoc networks (VANETs) are fundamental components of building a safe and intelligent transportation system. However, due to its wireless nature, VANETs have serious security and privacy issues that need to be addressed. The conditional privacy-preserving authentication protocol is one important tool to satisfy the security and privacy requirements. Many such schemes employ the certificateless signature, which not only avoids the key management issue of the PKI-based scheme but also solves the key escrow problem of the ID-based signature scheme. However, many schemes have the drawback that the computational expensive bilinear pairing operation or map-to-point hash function are used. In order to enhance the efficiency, certificateless signature schemes for VANETs are usually constructed to support signature aggregation or online/offline computation. In this paper, we propose an efficient conditional privacy-preserving authentication scheme using an online/offline certificateless aggregate signature, which does not require bilinear pairing or map-to-point hash function, to address the security and privacy issues of VANETs. Our proposed scheme is proven to be secure with a rigorous security proof, and it satisfies all the security and privacy requirements with a better performance compared with other related schemes.

Lu Wei,Jie Cui,Yan Xu,Jiujun Cheng,Hong Zhong

DOI: https://doi.org/10.1109/tifs.2020.3040876

IF: 7.231

2021-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Owing to the development of wireless communication technology and the increasing number of automobiles, vehicular ad hoc networks (VANETs) have become essential tools to secure traffic safety and enhance driving convenience. It is necessary to design a conditional privacy-preserving authentication (CPPA) scheme for VANETs because of their vulnerability and security requirements. Traditional CPPA schemes have two deficiencies. One is that the communication or storage overhead is not sufficiently low, but the traffic emergency message requires an ultra-low transmission delay. The other is that traditional CPPA schemes do not consider updating the system secret key (SSK), which is stored in an unhackable Tamper Proof Device (TPD), whereas side-channel attack methods and the wide usage of the SSK increase the probability of breaking the SSK. To solve the first issue, we propose a CPPA signature scheme based on elliptic curve cryptography, which can achieve message recovery and be reduced to elliptic curve discrete logarithm assumption, so that traffic emergency messages are secured with ultra-low communication overhead. To solve the second issue, we design an SSK updating algorithm, which is constructed on Shamir's secret sharing algorithm and secure pseudo random function, so that the TPDs of unrevoked vehicles can update SSK securely. Formal security proof and analysis show that our proposed scheme satisfies the security and privacy requirements of VANETs. Performance analysis demonstrates that our proposed scheme requires less storage size and has a lower transmission delay compared with related schemes.

computer science, theory & methods,engineering, electrical & electronic

Chuchu Zhao,Leyou Zhang,Qing Wu,Fatemeh Rezaeibagha

DOI: https://doi.org/10.1109/tvt.2024.3360698

IF: 6.8

2024-01-01

IEEE Transactions on Vehicular Technology

Abstract:Vehicle ad hoc networks (VANETs) provide a convenient mobile communication environment for vehicles, pedestrians, and infrastructure. However, data confidentiality, access permission leakage, and privacy disclosure, are major issues of concern in such systems. Therefore, we present a publicly accountable data-sharing scheme for VANETs based on an expressive ciphertext policy attribute-based encryption (CP-ABE) algorithm. In this paper, we use white-box traceability and auditing technology to enforce accountability of both traitors and the key authority, and we employ two authorities to generate user keys collaboratively to weaken the power of one component and prevent the authority from tampering with users' identities. Considering the flexible change of vehicle attributes, we implement the revocation of malicious users or vehicles by updating partial keys and ciphertexts related to revoked user's attributes. Our method also supports attribute revocation and attribute update to deal with the complex and changeable environments of VANETs and achieves privacy preservation by adopting partial policy hiding technology. Multiple fog nodes are deployed at the edge of the cloud server to assist users who are short on resources in completing the encryption and decryption calculations. Comprehensive experimental results indicate that the proposed scheme has many advantages over others in terms of key storage consumption and the computational time consumption of encryption and decryption operations.

telecommunications,engineering, electrical & electronic,transportation science & technology

Wang Shibin,Mao Kele,Zhan Furui,Liu Dong

DOI: https://doi.org/10.1007/s12083-020-00916-3

IF: 3.488

2020-01-01

Peer-to-Peer Networking and Applications

Abstract:In existing authentication schemes for vehicular ad hoc networks (VANETs), the public key infrastructure (PKI)-based pseudonym certificate, identity-based encryption and group signature technology are usually used to preserve the security and privacy. However, these schemes face some challenges, e.g., the time-consuming certificate revocation list (CRL) checking, identity revocation issue and the computation overhead of group signature, respectively. To cope with these challenges, we propose a hybrid conditional privacy-preserving authentication protocol based on the PKI certificate and identity-based signature. In our scheme, the trust authority (TA) assigns the unique long-term certificate for every registered node. Only the vehicle with valid certificate can apply the anonymous short term identity from the current RSU to sign safety-related message. The identity-based signature avoids the CRL checking and the complex bilinear paring operation. When vehicle is compromised, TA can easily revoke its identity by the only long-term certificate. To further enhance efficiency, vehicle can verify the received messages by the single or batch authentication manner. In addition, we optimize the authentication process to avoid vehicle verifying the repeated and unnecessary signatures. Compared with the current schemes, the simulation result shows that our authentication protocol can effectively reduce verified messages in the case of meeting the requirement of security and privacy.

Long Li,Chingfang Hsu,Man Ho Au,Jianqun Cui,Lein Harn,Zhuo Zhao

DOI: https://doi.org/10.1109/tifs.2024.3477305

IF: 7.231

2024-10-22

IEEE Transactions on Information Forensics and Security

Abstract:The vehicular ad hoc network (VANET) is a basic component of intelligent transportation systems. Due to the growing security and privacy-preserving requirements of the VANET, a lot of conditional privacy-preserving authentication (CPPA) protocols have been proposed in recent years. Unfortunately, the traditional CPPA protocols, which are based on a trusted authority (TA) and rely solely on classical mathematical problems, cannot resist quantum attacks. Moreover, these protocols do not take into account the increasingly complex traffic flow in the VANET and cannot utilize fog nodes (FNs) to assist in the TA's authentication work. In this paper, we design a lattice-based and fog-assisted conditional privacy-preserving authentication (LFCPPA) protocol to solve the above challenges. Compared to existing solutions, we have made the following improvements. First, our protocol is resistant to quantum attacks. Second, the solution supports batch processing of signature verification and mutual authentication of identity between the TA / FNs and vehicles. Third, in our design, FNs reduce the computing pressure of the TA to improve the efficiency of the system. In addition, we demonstrate the security of the protocol under the random oracle model with provable security. Finally, the efficiency and security of this scheme are better than similar solutions. Specifically, compared with the latest scheme, in terms of computational cost, our scheme is reduced by 74.47%, 85.58%, 19.69%, and 85.90% in the four stages of the protocol. Meanwhile, in terms of communication cost, our protocol reduces it by 89.98%.

computer science, theory & methods,engineering, electrical & electronic

Yafang Yang,Lei Zhang,Yunlei Zhao,Kim-Kwang Raymond Choo,Yan Zhang

DOI: https://doi.org/10.1109/tifs.2022.3140657

IF: 7.231

2022-01-01

IEEE Transactions on Information Forensics and Security

Abstract:As cities become smarter, the importance of vehicular ad hoc networks (VANETs) will be increasingly pronounced. To support latency- and time-sensitive applications, there have been attempts to utilize fog-cloud computing in VANETs. There are, however, a number of limitations in existing fog-cloud based VANET deployments, ranging from computation and communication bottlenecks to privacy leakage to costly certificate/ pseudonym management to key escrow, and so on. Therefore, in this paper we propose a privacy-preserving aggregation authentication scheme (PPAAS). The scheme is designed for deployment in a safety warning system for fog-cloud based VANETs. Specifically, the PPAAS scheme is realized using a novel efficient anonymous certificateless aggregation signcryption scheme (CASS) proposed in this paper, and allows a fog node to aggregate signcrypted traffic-related messages from surrounding vehicles into an aggregated ciphertext and unsigncrypt them in a batch. We then evaluate the security of PPAAS and demonstrate that it supports confidentiality, authentication, and (efficient) conditional privacy, and key escrow freeness. In particular, our scheme is the first in the literature to achieve efficient conditional privacy, which avoids the need for costly pseudonym management. We also demonstrate that the scheme is practical, based on our simulation results.

computer science, theory & methods,engineering, electrical & electronic

Wenhui Kong,Pengfei Wen,Xinran Zheng,Shuo Yang,Ning Hu,Xingjun Wang

DOI: https://doi.org/10.1109/wcnc57260.2024.10570881

2024-01-01

Abstract:Vehicular Ad Hoc Network(VANET) is a hot topic, how to design an efficient authentication scheme is the core problem in this field. With the considerable progress in computing capability and side-channel attack capability, some seemingly safe third parties have also become less safe. Our paper focuses on weakening the use of trusted authority(TA) and improving the fault tolerance of authentication schemes. At first, all private keys are generated by users. Next, the ephemeral Diffie-Hellman key exchange scheme is used to construct a PID authentication. Moreover, we build a partial key delivery method without a secure channel. In the batch message authentication part, we use the Shamir secret share method to build a (t, n) threshold signature scheme that guarantees batch signatures cannot be tampered with fewer than t people involved. Finally, we make a comparison of time cost and communication cost with the other four schemes. Our scheme has a remarkable advantage over other schemes by comparing experimental data.

Xuefei Cao,Lanjun Dang,Kai Fan,Xingwen Zhao,Yulong Fu,Yingzi Luan

DOI: https://doi.org/10.1109/jiot.2024.3406757

IF: 10.6

2024-08-25

IEEE Internet of Things Journal

Abstract:Authenticated group key agreement (AGKA) protocols protect the security of communications among a group of users. Dutta and Barua proposed a dynamic AGKA protocol, but it fails to the leaving user attacks and the attacks by two malicious users. In this article, we propose a dynamic AGKA protocol based on the computational Diffie-Hellman problem. The proposed AGKA protocol achieves sound dynamicity and efficiency. With 10 users in a group, the improvements in computation and communication overheads achieve 82.5% and 72.6%, respectively. Then the proposed AGKA protocol is applied to vehicular ad hoc network (VANET). SC-AGKA, a self-certified authentication and key agreement protocol for VANET is presented. Pseudonyms are employed with care in SC-AGKA to provide conditional privacy. It is suitable for SC-AGKA to protect the vehicular group communications in VANET considering its security strength and efficiency.

computer science, information systems,telecommunications,engineering, electrical & electronic

Mingming Cui,Dezhi Han,Jun Wang,Kuan-Ching Li,Chin-Chen Chang

DOI: https://doi.org/10.1109/tvt.2020.3036631

IF: 6.8

2020-12-01

IEEE Transactions on Vehicular Technology

Abstract:With the technology of data storage and shared services in the cloud, users can easily share data or revoke from their groups. To ensure the accuracy of the shared data, the key is used for group users to calculate the authenticators of the shared data and audit the data's integrity remotely. However, high-speed mobile terminals have posed challenges to key management in Vehicle Ad-hoc networks (VANETs). Besides, to maintain the integrity of the shared data, the computation and communication overheads must be increased in the revocation process when a vehicle user is removed from a group. For such, a new shared data auditing scheme is proposed in this paper, which supports user revocation by combining the existing certificateless signcryption method with a fog architecture. This scheme improves the efficiency of auditing and user revocation since it reduces many time-consuming operations, as well as features such as public auditing, mutual authentication, efficient and secure revocation are presented. Security analysis and experimental results demonstrate that the proposed scheme is both correct and safe, has more comprehensive functions and better efficiency than other existing ones.

telecommunications,engineering, electrical & electronic,transportation science & technology

Sujash Naskar,Carlo Brunetta,Gerhard Hancke,Tingting Zhang,Mikael Gidlund

DOI: https://doi.org/10.1109/access.2024.3400530

IF: 3.9

2024-05-22

IEEE Access

Abstract:Vehicular Ad-Hoc Networks (VANETs) offer enhanced road safety, efficient traffic management, and improved vehicle connectivity while dealing with privacy and security challenges in public communication. In these networks, authentication mechanisms are mandatory to establish trust among communicating entities, such as vehicle-to-vehicle (V2V) and vehicle-to-infrastructure (V2I), without losing identity and location-based privacy. The prevailing conventional authentication mechanisms frequently depend on a centralized trust authority (CA) to ensure the mutual verifiability of transmitted messages. Nevertheless, in scenarios where the density of vehicles within the network is notably high, an overwhelming influx of authentication requests may result in a communication bottleneck at the CA, leading to a single point of failure. This paper proposes a novel distributed authentication scheme in a decentralized VANET with multiple independent CAs connected to multiple local inspectors to eliminate a single point of failure. Furthermore, prior solutions lack the capability to immediately revoke a disputed vehicle that is transmitting malicious messages in the network. In this regard, the proposed scheme also facilitates an immediate revocation of a disputed sender to prevent other vehicles from further receiving malicious messages. As vehicles share time-sensitive data for driving assistance, our scheme minimizes the computation and communication costs for V2I key sharing and direct V2V authenticated message sharing significantly compared to previously proposed schemes. Using comparatively lightweight elliptic curve cryptography and eliminating the direct involvement of CAs in the authentication process, we have reduced the overall delays and achieved a maximum of times faster V2I authenticated key sharing, and a maximum of times faster V2V message sharing compared to state-of-the-art bilinear pairing-based protocols. A comprehensive efficiency analysis validates our scheme's ability to outperform time-sensitive responses, such as sending and receiving an alert within nearly 4 milliseconds.

computer science, information systems,telecommunications,engineering, electrical & electronic

Yingjie Xia,Wenzhi Chen,Xuejiao Liu,Luming Zhang,Xuelong Li,Yang Xiang

DOI: https://doi.org/10.1109/tits.2017.2653103

IF: 8.5

2017-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Vehicular ad-hoc networks (VANETs) have drawn much attention of researchers. The vehicles in VANETs frequently join and leave the networks, and therefore restructure the network dynamically and automatically. Forwarded messages in vehicular ad-hoc networks are primarily multimedia data, including structured data, plain text, sound, and video, which require access control with efficient privacy preservation. Ciphertext-policy attribute-based encryption (CP-ABE) is adopted to meet the requirements. However, solutions based on traditional CP-ABE suffer from challenges of the limited computational resources on-board units equipped in the vehicles, especially for the complex policies of encryption and decryption. In this paper, we propose a CP-ABE delegation scheme, which allows road side units (RSUs) to perform most of the computation, for the purpose of improving the decryption efficiency of the vehicles. By using decision tree to jointly optimize multiple factors, such as the distance from RSU, the communication and computational cost, the CP-ABE delegation scheme is adaptively activated based on the estimation of various vehicles decryption overhead. Experimental results thoroughly demonstrate that our scheme is effective and efficient for multimedia data forwarding in vehicular ad-hoc networks with privacy preservation.

Shunrong Jiang,Xiaoyan Zhu,Liangmin Wang

DOI: https://doi.org/10.1109/tits.2016.2517603

IF: 8.5

2016-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:In vehicular ad hoc networks (VANETs), when a vehicle receives a message, the certificate revocation list (CRL) checking process will operate before certificate and signature verification. However, large communication sources, storage space, and checking time are needed for CRLs that cause the privacy disclosure issue as well. To address these issues, in this paper, we propose an efficient anonymous batch authentication scheme (ABAH) to replace the CRL checking process by calculating the hash message authentication code (HMAC). In our scheme, we first divide the precinct into several domains, in which road-side units (RSUs) manage vehicles in a localized manner. Then, we adopt pseudonyms to achieve privacy-preserving and realize batch authentication by using an identity-based signature (IBS). Finally, we use HMAC to avoid the time-consuming CRL checking and to ensure the integrity of messages that may get loss in previous batch authentication. The security and performance analysis are carried out to demonstrate that ABAH is more efficient in terms of verification delay than the conventional authentication methods employing CRLs. Meanwhile, our solution can keep conditional privacy in VANETs.

Xiaodong Yang,Songyu Li,Lan Yang,Xiaoni Du,Caifen Wang

DOI: https://doi.org/10.1109/tits.2024.3367925

IF: 8.5

2024-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Vehicular ad-hoc networks (VANETs) are integral to the evolution of intelligent transportation systems, offering substantial benefits in managing traffic flow, issuing warnings for potential accidents, and delivering information services to drivers. To ensure the authenticity and integrity of data exchanged within VANETs, numerous authentication schemes based on certificateless aggregate signature (CLAS) have been developed. However, state-of-the-art solutions often fail to be applicable in real-world VANETs due to security weaknesses and operational inefficiencies. Recently, Zhu et al. proposed an efficient CLAS-based authentication scheme with conditional privacy preservation (CPP) for VANETs (IEEE Transactions on Intelligent Transportation Systems, DOI: 10.1109/TITS.2023.3275077). Unfortunately, our analysis reveals that Zhu et al.’s scheme is incapable of withstanding coalition attacks from malicious RSUs and vehicles as well as public-key replacement attacks from dishonest vehicles. To facilitate secure communication in VANETs, we present a security-enhanced, pairing-free and energy-efficient CLAS-based authentication scheme with CPP for VANETs. This scheme has been rigorously proven to be secure against Type I, Type II and Type III attackers. Distinguished from other comparable schemes, our construction significantly reduces communication overhead and energy consumption while simultaneously fortifying security.

engineering, electrical & electronic,transportation science & technology, civil