Short paper: Formal verification of an authorization protocol for remote vehicle diagnostics

Author

Kleberger, Pierre ; Moulin, Guilhem

Author_Institution

Dept. of Comput. Sci. & Eng., Chalmers Univ. of Technol., Gothenburg, Sweden

fYear

2013

fDate

16-18 Dec. 2013

Firstpage

202

Lastpage

205

Abstract

Remote diagnostics protocols have generally only considered correct authentication to be enough to grant access to vehicles. However, as diagnostics equipment or their keys can be stolen or copied, these devices can not be trusted. Thus, authentication alone is not enough to prevent unauthorized access to vehicles. In previous work, we proposed an authorization protocol to prevent unauthorized access to vehicles. In this paper, we formally prove that the proposed authorization protocol provides mutual authentication between the diagnostics equipment and the vehicle, and that it guarantees both secrecy of the distributed session key and freshness of the distributed authorization information. Our formal analysis is conducted using both the Burrows-Abadi-Needham (BAN) Logic and the PROVERIF automated verification tool.

Keywords

cryptographic protocols; formal verification; message authentication; Burrows-Abadi-Needham logic; PROVERIF automated verification tool; authorization protocol; correct authentication; distributed authorization information; distributed session key; formal verification; remote diagnostics protocols; unauthorized access; Authentication; Authorization; Conferences; Cryptography; Protocols; Vehicles; authorization protocol; connected car; formal verification; remote diagnostics;

fLanguage

English

Publisher

ieee

Conference_Titel

Vehicular Networking Conference (VNC), 2013 IEEE

Conference_Location

Boston, MA

Type

conf

DOI

10.1109/VNC.2013.6737613

Filename

6737613