Change search
ReferencesLink to record
Permanent link

Direct link
Towards deploying a scalable & robust vehicular identity and credential management infrastructure
KTH, School of Electrical Engineering (EES), Communication Networks. (Networked Systems Security)ORCID iD: 0000-0003-1778-1416
KTH, School of Electrical Engineering (EES), Communication Networks. (Networked Systems Security)
KTH, School of Electrical Engineering (EES), Communication Networks.
2014 (English)In: Vehicular Networking Conference (VNC), 2014 IEEE, IEEE conference proceedings, 2014, Vol. -, no -, 33-40 p.Conference paper (Refereed)
Abstract [en]

- Several years of academic and industrial research efforts have converged to a common understanding on fundamental security building blocks for the upcoming Vehicular Communication (VC) systems. There is a growing consensus towards deploying a Vehicular Public-Key Infrastructure (VPKI) enables pseudonymous authentication, with standardization efforts in that direction. However, there are still significant technical issues that remain unresolved. Existing proposals for instantiating the VPKI either need additional detailed specifications or enhanced security and privacy features. Equally important, there is limited experimental work that establishes the VPKI efficiency and scalability. In this paper, we are concerned with exactly these issues. We leverage the common VPKI approach and contribute an enhanced system with precisely defined, novel features that improve its resilience and the user privacy protection. In particular, we depart from the common assumption that the VPKI entities are fully trusted and we improve user privacy in the face of an honest-but-curious security infrastructure. Moreover, we fully implement our VPKI, in a standard-compliant manner, and we perform an extensive evaluation. Along with stronger protection and richer functionality, our system achieves very significant performance improvement over prior systems - contributing the most advanced VPKI towards deployment.

Place, publisher, year, edition, pages
IEEE conference proceedings, 2014. Vol. -, no -, 33-40 p.
National Category
Communication Systems
URN: urn:nbn:se:kth:diva-161908DOI: 10.1109/VNC.2014.7013306OAI: diva2:796358
IEEE Vehicular Networking Conference (VNC),3-5 Dec. 2014 , Paderborn

QC 20150319

Available from: 2015-03-18 Created: 2015-03-18 Last updated: 2016-09-26Bibliographically approved
In thesis
1. Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management Infrastructure
Open this publication in new window or tab >>Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management Infrastructure
2016 (English)Licentiate thesis, comprehensive summary (Other academic)
Abstract [en]

Vehicular Communication (VC) systems can greatly enhance road safety and transportation efficiency. Vehicles are equipped with sensors to sense their surroundings and the internal Controller Area Network (CAN) bus. Hence, vehicles are becoming part of a large-scale network, the so-called Internet of Vehicles (IoV). Deploying such a large-scale VC system cannot materialize unless the VC systems are secure and do not expose their users’ privacy. Vehicles could be compromised or their sensors become faulty, thus disseminating erroneous information across the network. Therefore, participating vehicles should be accountable for their actions. Moreover, user privacy is at stake: vehicles should disseminate spatio-temporal information frequently. Due to openness of the wireless communication, an observer can eavesdrop the communication to infer users’ sensitive information, thus profiling users. The objective is to secure the communication, i.e., prevent malicious or compromised entities from affecting the system operation, and ensure user privacy, i.e., keep users anonymous to any external observer but also for security infrastructure entities and service providers.In this thesis, we focus on the identity and credential management infrastructure for VC systems, taking security, privacy, and efficiency into account. We begin with a detailed investigation and critical survey of the standardization and harmonization efforts. We point out the remaining challenges to be addressed in order to build a Vehicular Public-Key Infrastructure (VPKI). We provide a VPKI design that improves upon existing proposals in terms of security and privacy protection and efficiency. More precisely, our scheme facilitates multi-domain operations in VC systems and enhances user privacy, notably preventing linking of pseudonyms based on timing information and offering increased protection in the presence of honest-but-curious VPKI entities. We further extensively evaluate the performance of the full-blown implementation of our VPKI for a large-scale VC deployment. Our results confirm the efficiency, scalability and robustness of our VPKI.

Place, publisher, year, edition, pages
Stockholm: KTH Royal Institute of Technology, 2016. 40 p.
TRITA-EE, ISSN 1653-5146 ; 2016:159
Vehicular Communications, Security, Privacy, Access Control, Identity and Credential Management, Vehicular PKI
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Electrical Engineering
urn:nbn:se:kth:diva-193030 (URN)978-91-7729-134-3 (ISBN)
2016-11-01, Q2, Osquldas Väg 10, Stockholm, 15:30 (English)

QC 20160927

Available from: 2016-09-27 Created: 2016-09-26 Last updated: 2016-09-28Bibliographically approved

Open Access in DiVA

ieee-vnc-published-khodaei(441 kB)58 downloads
File information
File name FULLTEXT01.pdfFile size 441 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Other links

Publisher's full textIEEEXplore

Search in DiVA

By author/editor
Khodaei, MohammadJin, HongyuPapadimitratos, Panos
By organisation
Communication Networks
Communication Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 58 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Altmetric score

Total: 83 hits
ReferencesLink to record
Permanent link

Direct link