Vehicle authentication via monolithically certified public key and attributes

Krzywiecki, Łukasz; Panwar, Nisha; Segal, Michael

doi:10.1007/s11276-015-1005-1

Cited by 26 publications

(18 citation statements)

References 87 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition, the DAPPA protocol is efficient than the ECDSA protocol in [184] and more efficient than the IBA scheme in [55] on average, but lack non-repudiation compared to the PBA scheme in [67]. Based on monolithically certified public key and attributes, Dolev et al [69] proposed an idea to ensuring the countermeasures against the Man-in-the-Middle attack under the vehicle authentication. The work in [69] is efficient in terms of iteration cost compared to other existing Authenticated Key Exchange (AKE) protocols such as ISO-KE [241] and SIGMA [228].…”

Section: Authentication Protocols For Iovmentioning

confidence: 99%

Authentication Protocols for Internet of Things: A Comprehensive Survey

Ferrag

Μαγλαράς

Janicke

et al. 2017

Security and Communication Networks

218

131

View full text Add to dashboard Cite

In this paper, a comprehensive survey of authentication protocols for Internet of Things (IoT) is presented. Specifically more than forty authentication protocols developed for or applied in the context of the IoT are selected and examined in detail. These protocols are categorized based on the target environment: (1) Machine to Machine Communications (M2M), (2) Internet of Vehicles (IoV), (3) Internet of Energy (IoE), and (4) Internet of Sensors (IoS). Threat models, countermeasures, and formal security verification techniques used in authentication protocols for the IoT are presented. In addition a taxonomy and comparison of authentication protocols that are developed for the IoT in terms of network model, specific security goals, main processes, computation complexity, and communication overhead are provided. Based on the current survey, open issues are identified and future research directions are proposed.

show abstract

Section: Authentication Protocols For Iovmentioning

confidence: 99%

Authentication Protocols for Internet of Things: A Comprehensive Survey

Ferrag

Μαγλαράς

Janicke

et al. 2017

Security and Communication Networks

218

131

View full text Add to dashboard Cite

show abstract

“…Literature [27] presented an authenticated key exchange protocol for Wireless Body Area Network. Literature [28] presented an authentication and key exchange protocol for Vehicular Networks. Although we mainly focus on privacy preserving profile matching in this paper, using our scheme, the shared key can be exchanged between the matched pair securely and authentically.…”

Section: Related Work and Comparisonmentioning

confidence: 99%

CP-ABE Based Privacy-Preserving User Profile Matching in Mobile Social Networks

Weirong

Chen

2016

PLoS ONE

View full text Add to dashboard Cite

Privacy-preserving profile matching, a challenging task in mobile social networks, is getting more attention in recent years. In this paper, we propose a novel scheme that is based on ciphertext-policy attribute-based encryption to tackle this problem. In our scheme, a user can submit a preference-profile and search for users with matching-profile in decentralized mobile social networks. In this process, no participant’s profile and the submitted preference-profile is exposed. Meanwhile, a secure communication channel can be established between the pair of successfully matched users. In contrast to existing related schemes which are mainly based on the secure multi-party computation, our scheme can provide verifiability (both the initiator and any unmatched user cannot cheat each other to pretend to be matched), and requires few interactions among users. We provide thorough security analysis and performance evaluation on our scheme, and show its advantages in terms of security, efficiency and usability over state-of-the-art schemes.

show abstract

“…According to our previous work [37], we proposed a modified certificate structure for existing IEEE 1609.2 [1, 2, 4] security standard. The IEEE 1609.2 based security infrastructure provides certificate based authentication.…”

Section: Introductionmentioning

confidence: 99%

“…However, we have shown that the naive certificate structure is insufficient to avoid impersonation attacks. In our preliminary work [37], vehicle public key is certified by a Certificate Authority (CA) along with the vehicle static attributes. A certificate recipient must first verify the digital signature over the certificate contents.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Dynamic attribute based vehicle authentication

2016

Self Cite

View full text Add to dashboard Cite

Modern vehicles are proficient in establishing a spontaneous connection over a wireless radio channel, synchronizing actions and information. Security infrastructure is most important in such a sensitive scope of vehicle communication for coordinating actions and avoiding accidents on the road. One of the first security issues that need to be established is authentication via IEEE 1609.2 security infrastructure. According to our preliminary work, vehicle owners are bound to preprocess a certificate from the certificate authority. The certificate carries vehicle static attributes (e.g., licence number, brand and color) certified together with the vehicle public key in a monolithic manner. Nevertheless, a malicious vehicle might clone the static attributes to impersonate a specific vehicle. Therefore, in this paper we consider a resource expensive attack scenario involving multiple malicious vehicles with identical visual static attributes. Apparently, dynamic attributes (e.g., location and direction) can uniquely define a vehicle and can be utilized to resolve the true identity of the vehicle. However, unlike static attributes, dynamic attributes cannot be signed by a trusted authority beforehand. We propose an approach to verify the coupling between non-certified dynamic attributes and certified static attributes on an auxiliary communication channel, for example, a modulated laser beam. Furthermore, we illustrate that the proposed approach can be used to facilitate the usage of existing authentication protocols such as NAXOS, in the new scope of ad-hoc vehicle networks. We use BAN logic to verify the security claims of the protocol against the passive and active interception.

show abstract

Vehicle authentication via monolithically certified public key and attributes

Cited by 26 publications

References 87 publications

Authentication Protocols for Internet of Things: A Comprehensive Survey

Authentication Protocols for Internet of Things: A Comprehensive Survey

CP-ABE Based Privacy-Preserving User Profile Matching in Mobile Social Networks

Dynamic attribute based vehicle authentication

Contact Info

Product

Resources

About