Towards deploying a scalable &amp;amp; robust vehicular identity and credential management infrastructure

Khodaei, Mohammad; Jin, Hongyu; Papadimitratos, Panos

doi:10.1109/vnc.2014.7013306

Cited by 32 publications

(78 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moreover, we assume that there is a misbehavior detection system, e.g., [51], that triggers the revocation. The Resolution Authority (RA) can initiate a process to resolve and revoke all pseudonyms of a misbehaving vehicle: it interacts with the corresponding PCAs and LTCA (a detailed protocol description in [27], [43], [52]) to resolve and revoke all credentials issued for a misbehaving vehicle. Consequently, the misbehaving vehicle can no longer obtain credentials from the VPKI.…”

Section: System Model and Assumptionsmentioning

confidence: 99%

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distribution in Vehicular Communication Systems

Khodaei

Papadimitratos

2021

IEEE Trans. on Mobile Comput.

Self Cite

View full text Add to dashboard Cite

In spite of progress in securing Vehicular Communication (VC) systems, there is no consensus on how to distribute Certificate Revocation Lists (CRLs). The main challenges lie exactly in (i) crafting an efficient and timely distribution of CRLs for numerous anonymous credentials, pseudonyms, (ii) maintaining strong privacy for vehicles prior to revocation events, even with honest-but-curious system entities, (iii) and catering to computation and communication constraints of on-board units with intermittent connectivity to the infrastructure. Relying on peers to distribute the CRLs is a double-edged sword: abusive peers could "pollute" the process, thus degrading the timely CRLs distribution. In this paper, we propose a vehicle-centric solution that addresses all these challenges and thus closes a gap in the literature. Our scheme radically reduces CRL distribution overhead: each vehicle receives CRLs corresponding only to its region of operation and its actual trip duration. Moreover, a "fingerprint" of CRL 'pieces' is attached to a subset of (verifiable) pseudonyms for fast CRL 'piece' validation (while mitigating resource depletion attacks abusing the CRL distribution). Our experimental evaluation shows that our scheme is efficient, scalable, dependable, and practical: with no more than 25 KB/s of traffic load, the latest CRL can be delivered to 95% of the vehicles in a region (15×15 KM) within 15s, i.e., more than 40 times faster than the state-of-the-art. Overall, our scheme is a comprehensive solution that complements standards and can catalyze the deployment of secure and privacy-protecting VC systems.

show abstract

Section: System Model and Assumptionsmentioning

confidence: 99%

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distribution in Vehicular Communication Systems

Khodaei

Papadimitratos

2021

IEEE Trans. on Mobile Comput.

Self Cite

View full text Add to dashboard Cite

show abstract

“…However, this would not work if there exist multiple pseudonym providers (so that a vehicle can request pseudonyms from the closest one) and a vehicle can request pseudonyms from different pseudonym providers. This is due to the separation of duties among authorities is enforced in VC domain so that the pseudonym providers are not allowed to share their records (otherwise the authorities could collude and infer extra information) [33], [24]. [33] proposes a ticket-based scheme: an anonymized ticket is obtained from identity provider, then the ticket is used to obtain pseudonyms from a pseudonym provider.…”

Section: Sybil Resiliencementioning

confidence: 99%

“…This is due to the separation of duties among authorities is enforced in VC domain so that the pseudonym providers are not allowed to share their records (otherwise the authorities could collude and infer extra information) [33], [24]. [33] proposes a ticket-based scheme: an anonymized ticket is obtained from identity provider, then the ticket is used to obtain pseudonyms from a pseudonym provider. Each ticket is bound to a specific pseudonym provider without disclosing the targeted pseudonym provider to the identity provider, so that each ticket can be used only once while not revealing location of the vehicle to the identity provider.…”

Section: Sybil Resiliencementioning

confidence: 99%

“…While privacy is important in VC systems, strong identification of drivers and vehicles is needed considering the high stakes in traffic systems (notably, driver and passenger safety): the messages in VC systems need to be properly protected by proving that the messages are originated from legitimate users in the system, in order to guarantee the secure and privacy preserving operations in the system. Both of the requirements can be achieved leveraging pseudonymous authentication [45], [35], [10], [30], [44], [26], [33]. In fact, security and privacy in VC systems have been extensively studied and significant effort has already been made towards the deployment of secure VC systems, which are the basis for secure ITSs.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Security and Privacy in Vehicular Social Networks

Jin¹,

Khodaei²,

Papadimitratos³

2017

Vehicular Social Networks

Self Cite

View full text Add to dashboard Cite

“…EVITA [22] and PRESERVE [40] are designated projects on the design and specification of the secure architecture of on-board units. Driven by the PRESERVE instantiation, Raya et al [42] described the need for a Vehicular Public-Key Infrastructure (VPKI), and Khodaei et al [34] proposed a generic pseudonymization approach to preserve the unlinkability of messages exchanged between vehicles and VPKI servers. None of these solutions provides a full-fledged keyless car sharing system.…”

Section: Introductionmentioning

confidence: 99%

SePCAR: A Secure and Privacy-Enhancing Protocol for Car Access Provision

Symeonidis

Aly

Mustafa

et al. 2017

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. We present an efficient secure and privacy-enhancing protocol for car access provision, named SePCAR. The protocol is fully decentralised and allows users to share their cars conveniently without sacrifising their security and privacy. It provides generation, update, revocation, and distribution mechanisms for access tokens to shared cars, as well as procedures to solve disputes and to deal with law enforcement requests, for instance in the case of car incidents. We prove that SeP-CAR meets its appropriate security and privacy requirements and that it is efficient: our practical efficiency analysis through a proof-of-concept implementation shows that SePCAR takes only 1.55 seconds for a car access provision.

show abstract

Towards deploying a scalable & robust vehicular identity and credential management infrastructure

Cited by 32 publications

References 22 publications

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distribution in Vehicular Communication Systems

Scalable & Resilient Vehicle-Centric Certificate Revocation List Distribution in Vehicular Communication Systems

Security and Privacy in Vehicular Social Networks

SePCAR: A Secure and Privacy-Enhancing Protocol for Car Access Provision

Contact Info

Product

Resources

About