Aymen Boudguiga scite author profile

Abstract-Public Key Infrastructure (PKI) is the most widely used security mechanism for securing communications over the network. However, there are known performance issues, making it unsuitable for use in the Vehicular Networks (VNs). In this paper, we propose a Secure and Authenticated Key Management Protocol (SA-KMP) to overcome the shortcomings of the PKI. The SA-KMP scheme distributes repository containing the bindings of the entity's identity and its corresponding public key to each vehicle and Road Side Unit (RSU). By doing so, certificate exchanges and Certificate Revocation Lists (CRLs) are eliminated. Furthermore, SA-KMP scheme uses symmetric keys derived based on a 3D matrix based key agreement scheme to reduce the high computational costs of using asymmetric cryptography. We demonstrate the efficiency of the SA-KMP through performance evaluations in terms of transmission and storage overhead, network latency and key generation time. Analytical results show that the SA-KMP is more scalable and outperforms the certificate based PKI. Simulation results indicate that the key generation time of the SA-KMP scheme is less than that of the existing Elliptic Curve Diffie-Hellman (ECDH) and Diffie-Hellman (DH) protocols. In addition, we use Proverif to prove that the SA-KMP scheme is secure against an active attacker under the Dolev and Yao model and further show that the SA-KMP scheme is secure against Denial of Service (DoS), collusion attacks and a wide range of other malicious attacks.

show abstract

A simple intrusion detection method for controller area network

Boudguiga

Klaudel

Boulanger

et al. 2016

View full text Add to dashboard Cite

Significantly improved performances of the cryptographically generated addresses thanks to ECC and GPGPU

Cheneau¹,

Boudguiga²,

Laurent³

2010

Computers & Security

View full text Add to dashboard Cite

International audienceCryptographically Generated Addresses (CGA) are today mainly used with the Secure Neighbor Discovery Protocol (SEND). Despite CGA generalization, current standards only show how to construct CGA with the RSA algorithm and SHA-1 hash function. This limitation may prevent new usages of CGA and SEND in mobile environments where nodes are energy and storage limited. In this paper, we present the results of a performance and security study of the CGA and SEND. To significantly improve the performances of the CGA, we investigate first replacing RSA with ECC (Elliptic Curve Cryptography) and ECDSA (Elliptic Curve DSA), and second using the General-Purpose computing on Graphical Processing Units (GPGPU). Finally, a performance comparison between di erent hash algorithms (SHA-256, WHIRLPOOL,...) allows to prepare a better transition for the CGA when SHA-1 will be deprecated

show abstract

An ID-based authentication scheme for the IEEE 802.11s Mesh Network

Boudguiga

Laurent

2010

View full text Add to dashboard Cite

Nowadays authentication in WirelessMesh Networks (WMN) refers to the 802.1X authentication methods or a Preshared key authentication, and makes use of certificates or shared secrets. In wireless environments, management of certificates is disadvantageous. Certificates require deploying a Public Key Infrastructure (PKI) and Certification Authorities (CA) and they require defining a certificate management policy to control the generation, transmission and revocation of certificates. Management of certificates is a cumbersome task and does not match the limited (power and memory) resources available at wireless nodes. Moreover it does not match the non permanent connectivity to CA. In this paper, we propose an ID-based method, as an alternative to the PKI, to provide nodes with private and public keys, and we present an authentication scheme that uses the ID-based cryptographic concepts. As illustrated in the paper, the authentication scheme is shown as suitable to the WMN networks.

show abstract

ID Based Cryptography for Cloud Data Storage

Kaaniche

Boudguiga

Laurent

2013

View full text Add to dashboard Cite

This paper addresses the security issues of storing sensitive data in a cloud storage service and the need for users to trust the commercial cloud providers. It proposes a cryptographic scheme for cloud storage, based on an original usage of ID-Based Cryptography. Our solution has several advantages. First, it provides secrecy for encrypted data which are stored in public servers. Second, it offers controlled data access and sharing among users, so that unauthorized users or untrusted servers cannot access or search over data without client's authorization.

show abstract

A generic cyber defense scheme based on stackelberg game for vehicular network

Sedjelmaci¹,

Brahmi²,

Boudguiga³

et al. 2018

View full text Add to dashboard Cite

Light Blind: Why Encrypt If You Can Share?

Cincilla

Boudguiga

Hadji

et al. 2015

View full text Add to dashboard Cite

12 3 4 5

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Aymen Boudguiga

Towards Better Availability and Accountability for IoT Updates by Means of a Blockchain

A Secure and Authenticated Key Management Protocol (SA-KMP) for Vehicular Networks

A simple intrusion detection method for controller area network

Significantly improved performances of the cryptographically generated addresses thanks to ECC and GPGPU

An ID-based authentication scheme for the IEEE 802.11s Mesh Network

ID Based Cryptography for Cloud Data Storage

A generic cyber defense scheme based on stackelberg game for vehicular network

Light Blind: Why Encrypt If You Can Share?

Contact Info

Product

Resources

About