Jie Wang,Shengbao Wang,Kang Wen,Bosen Weng,Xin Zhou,Kefei Chen

DOI: https://doi.org/10.3390/electronics13061109

IF: 2.9

2024-03-19

Electronics

Abstract:Dynamic wireless charging emerges as a promising technology, effectively alleviating range anxiety for electric vehicles in transit. However, the communication between the system's various components, conducted over public channels, raises concerns about vulnerability to network attacks and message manipulation. Addressing data security and privacy protection in dynamic charging systems thus becomes a critical challenge. In this article, we present an authentication protocol tailored for dynamic charging systems. This protocol ensures secure and efficient authentication between vehicles and roadside devices without the help of a trusted center. We utilize a physical unclonable function (PUF) to resist physical capture attacks and employ the elliptic curve discrete logarithm problem (ECDLP) to provide forward security protection for session keys. We validated the security of our proposed scheme through comprehensive informal analyses, and formal security analysis using the ROR model and formal analysis tool ProVerif. Furthermore, comparative assessments reveal that our scheme outperforms other relevant protocols in terms of efficiency and security.

engineering, electrical & electronic,computer science, information systems,physics, applied

Tommaso Bianchi,Surudhi Asokraj,Alessandro Brighente,Mauro Conti,Radha Poovendran

DOI: https://doi.org/10.1109/VTC2023-Spring57618.2023.10199651

2023-08-28

Abstract:Dynamic Wireless Power Transfer (DWPT) can be used for on-demand recharging of Electric Vehicles (EV) while driving. However, DWPT raises numerous security and privacy concerns. Recently, researchers demonstrated that DWPT systems are vulnerable to adversarial attacks. In an EV charging scenario, an attacker can prevent the authorized customer from charging, obtain a free charge by billing a victim user and track a target vehicle. State-of-the-art authentication schemes relying on centralized solutions are either vulnerable to various attacks or have high computational complexity, making them unsuitable for a dynamic scenario. In this paper, we propose Quick Electric Vehicle SEcure Charging (QEVSEC), a novel, secure, and efficient authentication protocol for the dynamic charging of EVs. Our idea for QEVSEC originates from multiple vulnerabilities we found in the state-of-the-art protocol that allows tracking of user activity and is susceptible to replay attacks. Based on these observations, the proposed protocol solves these issues and achieves lower computational complexity by using only primitive cryptographic operations in a very short message exchange. QEVSEC provides scalability and a reduced cost in each iteration, thus lowering the impact on the power needed from the grid.

Cryptography and Security

Surudhi Asokraj,Tommaso Bianchi,Alessandro Brighente,Mauro Conti,Radha Poovendran

DOI: https://doi.org/10.48550/arXiv.2208.02857

2022-08-05

Abstract:Dynamic wireless power transfer provides means for charging Electric Vehicles (EVs) while driving, avoiding stopping for charging and hence fostering their widespread adoption. Researchers devoted much effort over the last decade to provide a reliable infrastructure for potential users to improve comfort and time management. Due to the severe security and performance system requirements, the different scheme proposed in last years lack of a unified protocol involving the modern architecture model with merged authentication and billing processes. Furthermore, they require the continuous interaction of the trusted entity during the process, increasing the delay for the communication and reducing security due to the large number of message exchanges. In this paper, we propose a secure, computationally lightweight, unified protocol for fast authentication and billing that provides on-demand dynamic charging to comprehensively deal with all the computational and security constraints. The protocol employs an ID-based public encryption scheme to manage mutual authentication and pseudonyms to preserve the user's identity across multiple charging processes. Compared to state-of-the-art authentication protocols, our proposal overcomes the problem of overwhelming interactions and provides public scheme security against the use of simple operations in wide open communications without impacting on performance.

Cryptography and Security

Abdullah M. Almuhaideb,Sammar S. Algothami

DOI: https://doi.org/10.3390/bdcc6040102

2022-09-27

Big Data and Cognitive Computing

Abstract:In the near future, using electric vehicles will almost certainly be required for the sustainability of nature and our planet. The most significant challenge that users are concerned about is the availability of electric vehicle charging stations. Therefore, to maximize the availability of electric vehicle charging stations, we suggest taking benefit from individual sellers who produce renewable energy from their homes or electric vehicle owners who have charging piles installed in their homes. However, energy services that are rapidly being offered by these businesses do not have a trust connection developed with the consumers and stakeholders in these new systems. Exchange of data related to electric vehicles and energy aggregators can be used to identify users’ behavior and compromise their privacy. Consequently, it is necessary to set up a charging system that will guarantee privacy and security. Several electric vehicle charging systems have been proposed to provide security and privacy preservation. However, ensuring anonymity alone is not enough to guarantee protection from reconstructing the victim vehicle’s route by the tracking adversary, even if the exchanged messages are completely anonymous. Furthermore, anonymity should not be absolute in order to protect the system and function as necessary by all entities. In this research, we propose an effective, secure, and privacy-preserving authentication method based on the Elliptic Curve Qu–Vanstone for an electric vehicle charging system. The proposed scheme provides all the necessary requirements and a reauthentication protocol to minimize the overhead of subsequent authentication processes. To create credentials and validate electric vehicles and energy aggregators, the scheme makes use of the Elliptic Curve Qu–Vanstone implicit certificate mechanism. The new protocols give EVs security and privacy while cutting computational time by 95% thanks to reauthentication, as demonstrated by the performance comparison with earlier works.

Rohini Poolat Parameswarath,Prosanta Gope,Biplab Sikdar

DOI: https://doi.org/10.48550/arXiv.2206.13055

2022-06-27

Abstract:The popularity of Electric Vehicles (EVs) has been rising across the globe in recent years. Smart grids will be the backbone for EV charging and enable efficient consumption of electricity by the EVs. With the demand for EVs, associated cyber threats are also increasing. Users expose their personal information while charging their EVs, leading to privacy threats. This paper proposes a user-empowered, privacy-aware authenticated key exchange protocol for EV charging in smart grid. The proposed protocol is based on the concept of Decentralized Identifier (DID) and Verifiable Credentials (VCs). The use of DIDs empowers users by helping them to have complete control over their identities. The charging station and the user verify that the other party is legitimate before proceeding with the charging services using VC. Key recovery is another issue we address in this paper. A method to recover lost keys is incorporated into the proposed protocol. We present formal security proof and informal analysis to show that protocol's robustness against several attacks. We also provide a detailed performance analysis to show that the proposed protocol is efficient.

Cryptography and Security

Yuntao Wang,Zhou Su,Ning Zhang,Abderrahim Benslimane

DOI: https://doi.org/10.1109/cns48642.2020.9162306

2020-01-01

Abstract:Wireless power transfer (WPT) has offered a revolutionized solution to overcome the driving range anxieties for electric vehicles (EVs) on remote highways by wirelessly delivering energy to EVs while driving. By deploying energy nodes with WPT facilities, vehicular energy networks (VENs) have been constructed upon highways to facilitate EVs' charging and discharging operations. However, owing to the security and privacy vulnerabilities arising from the untrusted environment, it becomes very challenging to securely and optimally schedule the charging and discharging behaviors of EVs in VENs in a cooperative manner. In this paper, we propose Sweet, a secure wireless energy transfer scheme for EVs in VENs. Firstly, we present a collaborative framework of EV charging and discharging management in VENs through cooperative wireless energy transfer. Secondly, based on local differential privacy mechanism, a personalized privacy-preserving reputation model is developed to deliver secure WPT services in VENs while offering rigorous privacy guarantees for EV users. Furthermore, based on joint matching-auction game, a distributed energy scheduling mechanism is devised to derive the optimal strategies of cooperative EVs and energy nodes. Finally, simulation results validate the effectiveness of the proposed scheme in terms of improved user utility and privacy protection, compared with existing approaches.

Di Zhai,Jiqiang Liu,Tao Zhang,Jian Wang,Hongyang Du,Tianhao Liu,Tianxi Wang,Chuan Zhang,Jiawen Kang,Dusit Niyato

DOI: https://doi.org/10.1109/jiot.2024.3426536

2024-01-01

Abstract:In recent years, electric vehicles (EVs) have emerged as a promising mode of transportation. With the development of Internet of Robotic Things (IoRT) technology, charging stations are employing interconnected robots to charge EVs, automating the collection and transmission of user charging information. However, charging processes pose risks of privacy leakage to users, as malicious attackers could potentially exploit the collected charging information to infer the real identities and behavioral habits of EV users. Existing studies leverage the decentralization and anonymity of blockchain to achieve privacy-preserving charging management. Due to the increasing number of users and limited battery capacity, there is a large volume of charging requests demand to be processed. However, the consensus mechanism of blockchain limits the system throughput. Therefore, it is a challenge to preserve the privacy of EV users and simultaneously improve the system processing efficiency. To address these concerns, we propose an efficient and privacy-preserving EV charging scheme (EPDB), which leverages decentralized identifier (DID) and Pedersen commitment scheme to achieve reliable charging reservations while hiding EV User's charging information. Additionally, we propose an efficient blockchain consensus protocol, which serves as the underlying storage for DID, thus significantly improving the system throughput. Furthermore, our proposed consensus protocol maintains high throughput even when encountering Byzantine attacks. Our theoretical analysis indicates that EPDB scheme effectively mitigate Byzantine attacks, preserve privacy and prevents deception of charging services, and our experimental results demonstrate the high efficiency of EPDB scheme.

Yuntao Wang,H. Tom Luan,Zhou Su,Ning Zhang,Abderrahim Benslimane

DOI: https://doi.org/10.1109/TVT.2021.3131776

IF: 6.8

2022-01-01

IEEE Transactions on Vehicular Technology

Abstract:To address the limited driving range of electric vehicles (EVs) and promote EVs’ penetration, vehicular energy networks (VENs) have emerged and opened possibility to charge EVs in motion via dynamic wireless power transfer (DWPT) technology. However, security and efficiency concerns arise due to the untrusted operating environment and EVs’ selfish charging/discharging behaviors. Existing trust models rely on the personal recommendations from neighboring EVs to identify malicious entities in VENs, which may cause potential privacy breaches and data misuse for recommenders. Besides, it is challenging to optimally schedule EVs’ energy behaviors by considering complex interactions among three energy entities (i.e., energy nodes, charging EVs, and discharging EVs). To this end, by leveraging blockchain technology and game theory, this paper proposes a secure and efficient wireless charging scheme to address these issues in VENs. Firstly, a blockchain-based fine-grained access control mechanism with traceability and auditability is presented to enable EV users to fully control and audit their personal rating data usage during trust management by logging data activities and issuing access tokens into decentralized ledgers. In this manner, the privacy of recommenders can be preserved by fully controlling the access and usage of personal rating data. Furthermore, by introducing cooperative wireless energy transfer mode, a hierarchical game-based energy scheduling algorithm is developed to optimize the strategies of three energy parties tier by tier, while considering their cooperation and competition. Finally, extensive simulations are conducted, which demonstrate that the proposed scheme can effectively improve users’ utility and security of energy transmission for EVs, compared with existing representative approaches.

Tommaso Bianchi,Alessandro Brighente,Mauro Conti

2023-12-20

Abstract:Dynamic Wireless Power Transfer (DWPT) is a novel technology that allows charging an electric vehicle while driving thanks to a dedicated road infrastructure. DWPT's capabilities in automatically establishing charging sessions and billing without users' intervention make it prone to cybersecurity attacks. Hence, security is essential in preventing fraud, impersonation, and user tracking. To this aim, researchers proposed different solutions for authenticating users. However, recent advancements in quantum computing jeopardize classical public key cryptography, making currently existing solutions in DWPT authentication nonviable. To avoid the resource burden imposed by technology upgrades, it is essential to develop post-quantum-resistant solutions. In this paper, we propose DynamiQS, the first post-quantum secure authentication protocol for dynamic wireless charging. DynamiQS is privacy-preserving and secure against attacks on the DWPT. We leverage an Identity-Based Encryption with Lattices in the Ring Learning With Error framework. Furthermore, we show the possibility of using DynamiQS in a real environment, leveraging the results of cryptographic computation on real constrained devices and simulations. DynamiQS reaches a total time cost of around 281 ms, which is practicable in dynamic charging settings (car and charging infrastructure).

Cryptography and Security

Xuejiao Liu,Yingjie Xia,Wenzhi Chen,Yang Xiang,Mohammad Mehedi Hassan,Abdulhameed Alelaiwi

DOI: https://doi.org/10.1016/j.jcss.2016.05.006

IF: 1.043

2016-01-01

Journal of Computer and System Sciences

Abstract:Vehicular ad hoc network (VANET) is an increasing important paradigm, which not only provides safety enhancement but also improves roadway system efficiency. However, the security issues of data confidentiality, and access control over transmitted messages in VANET have remained to be solved. In this paper, we propose a secure and efficient message dissemination scheme (SEMD) with policy enforcement in VANET, and construct an outsourcing decryption of ciphertext-policy attribute-based encryption (CP-ABE) to provide differentiated access control services, which makes the vehicles delegate most of the decryption computation to nearest roadside unit (RSU). Performance evaluation demonstrates its efficiency in terms of computational complexity, space complexity, and decryption time. Security proof shows that it is secure against replayable choosen-ciphertext attacks (RCCA) in the standard model.

Yunwang Chen,Yanmin Zhao,Siuming Yiu

2024-10-24

Abstract:The rapid adoption of electric vehicles (EVs) globally has catalyzed the need for robust cybersecurity measures within vehicle-to-grid (V2G) networks. As these networks are increasingly being integrated into smart charging infrastructures, they also introduce new vulnerabilities that threaten grid stability and user privacy This paper proposes a cyber-physical authentication protocol and trading smart contract tailored to plug and charge (PnC) operations within blockchain-based V2G systems. The protocol leverages advanced cryptographic techniques and blockchain to ensure secure, transparent, and tamper-proof energy transactions between EVs and charging stations. Key contributions include the development of a cyber-physical authentication method, the implementation of a smart contract framework for secure energy trading, and a detailed security and privacy analysis. The proposed protocol effectively mitigates risks such as man-in-the-middle (MitM) attacks and replay attacks while preserving user anonymity and data integrity.

Cryptography and Security

Pol Van Aubel,Erik Poll

DOI: https://doi.org/10.48550/arXiv.2202.04631

2022-02-10

Abstract:The field of electric vehicle charging involves a complex combination of actors, devices, networks, and protocols. These protocols are being developed without a clear focus on security. In this paper, we give an overview of the main roles and protocols in use in the Netherlands. We describe a clear attacker model and security requirements, show that in light of this many of the protocols have security issues, and provide suggestions on how to address these issues. The most important conclusion is the need for end-to-end security for data in transit and long-term authenticity for data at rest. In addition, we highlight the need for improved authentication of the EV driver, e.g. by using banking cards. For the communication links we advise mandatory use of TLS, standardization of TLS options and configurations, and improved authentication using TLS client certificates.

Cryptography and Security

Ce Zhou,Qiben Yan,Zhiyuan Yu,Eshan Dixit,Ning Zhang,Huacheng Zeng,Alireza Safdari Ghanhdari

DOI: https://doi.org/10.48550/arXiv.2305.08037

2023-05-14

Cryptography and Security

Abstract:Electric Vehicle (EV) has become one of the promising solutions to the ever-evolving environmental and energy crisis. The key to the wide adoption of EVs is a pervasive charging infrastructure, composed of both private/home chargers and public/commercial charging stations. The security of EV charging, however, has not been thoroughly investigated. This paper investigates the communication mechanisms between the chargers and EVs, and exposes the lack of protection on the authenticity in the SAE J1772 charging control protocol. To showcase our discoveries, we propose a new class of attacks, ChargeX, which aims to manipulate the charging states or charging rates of EV chargers with the goal of disrupting the charging schedules, causing a denial of service (DoS), or degrading the battery performance. ChargeX inserts a hardware attack circuit to strategically modify the charging control signals. We design and implement multiple attack systems, and evaluate the attacks on a public charging station and two home chargers using a simulated vehicle load in the lab environment. Extensive experiments on different types of chargers demonstrate the effectiveness and generalization of ChargeX. Specifically, we demonstrate that ChargeX can force the switching of an EV's charging state from ``stand by" to ``charging", even when the vehicle is not in the charging state. We further validate the attacks on a Tesla Model 3 vehicle to demonstrate the disruptive impacts of ChargeX. If deployed, ChargeX may significantly demolish people's trust in the EV charging infrastructure.

Guanjie Li,Tom H. Luan,Jinkai Zheng,Dihao Hu,Chengzhe Lai,Zhou Su,Haixia Peng

DOI: https://doi.org/10.1109/ICCC57788.2023.10233485

2023-01-01

Abstract:Nowadays, electric vehicles (EVs) are increasingly being embraced as a primary mode of transportation. However, the issue of efficient and secure charging remains a major barrier to the widespread adoption of EVs. Drivers may have to spend a lot of time and effort finding suitable charging stations. As a virtual agent for EVs in cyberspace, a digital twin can monitor and analyze the EV’s operation and battery status from physical raw data, contact the charging management center to reserve charging stations in advance, and guide the EV there using decision feedback. While the digital twin can improve the charging experience and convenience for drivers, adversaries can launch attacks on the vulnerable channel resulting in receiving incorrect decisions for EV from the digital twin. In this paper, we will utilize an extended Chebyshev chaotic map to design a digital twin-assisted secure charging reservation scheme for EV that ensures secure data transmission and defends against potential attacks. Furthermore, we also provide informal security analysis and performance evaluation to demonstrate the security and efficiency of our proposed scheme.

Xiang Ma,Yuan Zhou,Hanwen Zhang,Qun Wang,Haijian Sun,Hongjie Wang,Rose Qingyang Hu

2024-03-25

Abstract:As public awareness of environmental protection continues to grow, the trend of integrating more electric vehicles (EVs) into the transportation sector is rising. Unlike conventional internal combustion engine (ICE) vehicles, EVs can minimize carbon emissions and potentially achieve autonomous driving. However, several obstacles hinder the widespread adoption of EVs, such as their constrained driving range and the extended time required for charging. One alternative solution to address these challenges is implementing dynamic wireless power transfer (DWPT), charging EVs in motion on the road. Moreover, charging stations with static wireless power transfer (SWPT) infrastructure can replace existing gas stations, enabling users to charge EVs in parking lots or at home. This paper surveys the communication infrastructure for static and dynamic wireless charging in electric vehicles. It encompasses all communication aspects involved in the wireless charging process. The architecture and communication requirements for static and dynamic wireless charging are presented separately. Additionally, a comprehensive comparison of existing communication standards is provided. The communication with the grid is also explored in detail. The survey gives attention to security and privacy issues arising during communications. In summary, the paper addresses the challenges and outlines upcoming trends in communication for EV wireless charging.

Networking and Internet Architecture,Signal Processing

Yiliang Liu,Zhou Su,Yuntao Wang

DOI: https://doi.org/10.1109/vtc2021-fall52928.2021.9625185

2021-01-01

Abstract:In this article, we propose a physical layer security (PLS) scheme to secure vehicle-to-vehicle (V2V) communications, where vehicles share spectrum resources with cellular users via underlaying device-to-device (D2D) technologies. Existing PLS-assisted V2V communication schemes neglect the issue of the unknown eavesdropper's instantaneous channel state information (CSI), and the management of spectrum resource reuse-incurred interference should be enhanced. Here, we design an artificial noise (AN)-assisted beamforming scheme to protect the V2V communications that does not require the eavesdropper's instantaneous CSI. Especially, the spectrum resource reuse-incurred interference can be eliminated by detection methods. Also, we deduce the expression of secrecy outage probability as the security metric, and minimize the secrecy outage probability via power allocation. The simulations demonstrate that the proposed scheme can reduce the secrecy outage probability compared to conventional methods.

Yuntao Wang,Zhou Su,Kuan Zhang

DOI: https://doi.org/10.1109/trustcom/bigdatase.2019.00092

2019-01-01

Abstract:With the rapid advance of electric vehicles (EVs) and the sparse public charging infrastructure, the private charging pile sharing networks (PCPSNs) hold the potential to improve the quality of experience (QoE) of using EVs by leveraging private charging piles (PCPs) as shared charging points to charge a group of distributed EVs. However, due to the potential security and privacy issues for EVs and PCPs caused by untrusted participants in decentralized energy market, it becomes a crucial challenge to optimally schedule the charging and sharing strategies of EVs and PCPs in PCPSNs. In this paper, we propose a secure and permissioned blockchain-based PCP sharing scheme for EVs in PCPSNs. Firstly, we present an energy blockchain-based PCPSN framework to enhance the security of distributed energy trading. Secondly, we develop a reputation-based secure PCP sharing protocol to efficiently reach consensus in the blockchain with the implement of BLS multi-signature. Thirdly, we investigate a distributed reputation model to evaluate the trustworthiness of participants and identify malicious users. In addition, based on the many-to-one matching game, the optimal strategies of EVs and PCPs are analyzed by searching the stable matching pairs. Finally, simulation results show that the proposed scheme can not only improve the QoE of users, but also protect the network from adversaries.

Xiao Lu,Nguyen Cong Luong,Dinh Thai Hoang,Dusit Niyato,Yong Xiao,Ping Wang

DOI: https://doi.org/10.1109/jproc.2021.3126616

IF: 20.6

2022-01-01

Proceedings of the IEEE

Abstract:Harvesting wireless power to energize miniature devices has been envisioned as a promising solution to sustain future-generation energy-sensitive networks, e.g., Internet-of-Things systems. However, due to the limited computing and communication capabilities, wirelessly powered networks (WPNs) may be incapable of employing complex security practices, e.g., encryption, which may incur considerable computation and communication overheads. This challenge makes securing energy harvesting communications an arduous task and, thus, limits the use of WPNs in many high-security applications. In this context, security at the physical layer (PHY) that exploits the intrinsic properties of the wireless medium to achieve secure communication has emerged as an alternative paradigm. This article first introduces the fundamental principles of primary PHY attacks, covering jamming, eavesdropping, and detection of covert, and then presents an overview of the prevalent countermeasures to secure both active and passive communications in WPNs. Furthermore, a number of open research issues are identified to inspire possible future research.

engineering, electrical & electronic

Changyuan Luo,Duan Li,Muhammad Saad Khan

DOI: https://doi.org/10.1038/s41598-024-77992-5

IF: 4.6

2024-11-09

Scientific Reports

Abstract:Certificateless public key infrastructure (PKI) avoids the key escrow problem associated with identity-based PKI and has recently been widely employed in anonymous communication schemes for vehicular adhoc networks (VANETs). In existing certificateless anonymous signcryption schemes for VANETs, vulnerabilities such as potential attacks involving the substitution of pseudonyms and the forging of pseudonymous public-private key pairs exist due to the lack of "identity-key binding" and "non-linearity processing of public-private key pairs." To address this issue, we propose an improved certificateless anonymous signcryption scheme based on elliptic curve cryptography. The scheme incorporates bilinear pairing as one of the authentication mechanisms, designs pseudonym generation algorithms and public-private key pair structures, and introduces a pseudonym verification mechanism. The correctness of the scheme is proven under the random oracle model, and its security is extensively demonstrated through detailed discussions on its confidentiality, authentication, unforgeability, anonymity, and traceability. Furthermore, the time and space complexity of the scheme are calculated. By comparing with recently published certificateless signcryption schemes, it is shown that the proposed scheme offers higher security with smaller computational and communication overheads. This certificateless vehicular network signcryption algorithm provides an efficient encryption solution for anonymous communication in vehicular networks, thereby ensuring the rapid development of secure technology for intelligent connected vehicle super terminals.

multidisciplinary sciences