Title :
An Improved Cross-Layer Privacy-Preserving Authentication in WAVE-Enabled VANETs
Author_Institution :
Dept. of Inf. Manage., Nat. Taiwan of Sci. & Technol., Taipei, Taiwan
Abstract :
In 2013, Biswas and Misic proposed a new privacy-preserving authentication scheme for WAVE-based vehicular ad hoc networks (VANETs), claiming that they used a variant of the Elliptic Curve Digital Signature Algorithm (ECDSA). However, our study has discovered that the authentication scheme proposed by them is vulnerable to a private key reveal attack. Any malicious receiving vehicle who receives a valid signature from a legal signing vehicle can gain access to the signing vehicle private key from the learned valid signature. Hence, the authentication scheme proposed by Biswas and Misic is insecure. We thus propose an improved version to overcome this weakness. The proposed improved scheme also supports identity revocation and trace. Based on this security property, the CA and a receiving entity (RSU or OBU) can check whether a received signature has been generated by a revoked vehicle. Security analysis is also conducted to evaluate the security strength of the proposed authentication scheme.
Keywords :
data privacy; digital signatures; private key cryptography; public key cryptography; telecommunication security; vehicular ad hoc networks; ECDSA; WAVE-based vehicular ad hoc networks; WAVE-enabled VANET; elliptic curve digital signature algorithm; identity revocation; identity trace; improved cross-layer privacy-preserving authentication scheme; legal signing vehicle; malicious receiving vehicle; private key reveal attack; receiving entity; security analysis; security strength evaluation; valid signature; Authentication; Digital signatures; Elliptic curves; Law; Public key; Vehicles; Privacy-preserving; VANETs; authentication scheme; elliptic curve digital signature algorithm (ECDSA);
Journal_Title :
Communications Letters, IEEE
DOI :
10.1109/LCOMM.2014.2323291
