Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Evaluating On-demand Pseudonym Acquisition Policies in Vehicular Communication Systems
KTH, School of Electrical Engineering (EES), Communication Networks. (Networked Systems Security Group)ORCID iD: 0000-0003-1778-1416
KTH, School of Electrical Engineering (EES), Communication Networks. (Networked Systems Security Group)ORCID iD: 0000-0002-3267-5374
2016 (English)Conference paper, Published paper (Refereed)
Abstract [en]

Standardization and harmonization efforts have reached a consensus towards using a special-purpose Vehicular Public-Key Infrastructure (VPKI) in upcoming Vehicular Communication (VC) systems. However, there are still several technical challenges with no conclusive answers; one such an important yet open challenge is the acquisition of shortterm credentials, pseudonym: how should each vehicle interact with the VPKI, e.g., how frequently and for how long? Should each vehicle itself determine the pseudonym lifetime? Answering these questions is far from trivial. Each choice can affect both the user privacy and the system performance and possibly, as a result, its security. In this paper, we make a novel systematic effort to address this multifaceted question. We craft three generally applicable policies and experimentally evaluate the VPKI system performance, leveraging two large-scale mobility datasets. We consider the most promising, in terms of efficiency, pseudonym acquisition policies; we find that within this class of policies, the most promising policy in terms of privacy protection can be supported with moderate overhead. Moreover, in all cases, this work is the first to provide tangible evidence that the state-of-the-art VPKI can serve sizable areas or domain with modest computing resources.

Place, publisher, year, edition, pages
ACM Digital Library, 2016. 7-12 p.
Keyword [en]
Vehicular Communications, Security, Privacy, Access Control, Identity and Credential Management, Vehicular PKI
National Category
Communication Systems
Research subject
Information and Communication Technology
Identifiers
URN: urn:nbn:se:kth:diva-189863DOI: 10.1145/2938681.2938684Scopus ID: 2-s2.0-84979743642ISBN: 978-1-4503-4345-9 (print)OAI: oai:DiVA.org:kth-189863DiVA: diva2:949504
Conference
Workshop on Internet of Vehicles and Vehicles of Internet (IoV-VoI 2016)
Note

QC 20160722

Available from: 2016-07-20 Created: 2016-07-20 Last updated: 2016-09-26Bibliographically approved
In thesis
1. Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management Infrastructure
Open this publication in new window or tab >>Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management Infrastructure
2016 (English)Licentiate thesis, comprehensive summary (Other academic)
Abstract [en]

Vehicular Communication (VC) systems can greatly enhance road safety and transportation efficiency. Vehicles are equipped with sensors to sense their surroundings and the internal Controller Area Network (CAN) bus. Hence, vehicles are becoming part of a large-scale network, the so-called Internet of Vehicles (IoV). Deploying such a large-scale VC system cannot materialize unless the VC systems are secure and do not expose their users’ privacy. Vehicles could be compromised or their sensors become faulty, thus disseminating erroneous information across the network. Therefore, participating vehicles should be accountable for their actions. Moreover, user privacy is at stake: vehicles should disseminate spatio-temporal information frequently. Due to openness of the wireless communication, an observer can eavesdrop the communication to infer users’ sensitive information, thus profiling users. The objective is to secure the communication, i.e., prevent malicious or compromised entities from affecting the system operation, and ensure user privacy, i.e., keep users anonymous to any external observer but also for security infrastructure entities and service providers.In this thesis, we focus on the identity and credential management infrastructure for VC systems, taking security, privacy, and efficiency into account. We begin with a detailed investigation and critical survey of the standardization and harmonization efforts. We point out the remaining challenges to be addressed in order to build a Vehicular Public-Key Infrastructure (VPKI). We provide a VPKI design that improves upon existing proposals in terms of security and privacy protection and efficiency. More precisely, our scheme facilitates multi-domain operations in VC systems and enhances user privacy, notably preventing linking of pseudonyms based on timing information and offering increased protection in the presence of honest-but-curious VPKI entities. We further extensively evaluate the performance of the full-blown implementation of our VPKI for a large-scale VC deployment. Our results confirm the efficiency, scalability and robustness of our VPKI.

Place, publisher, year, edition, pages
Stockholm: KTH Royal Institute of Technology, 2016. 40 p.
Series
TRITA-EE, ISSN 1653-5146 ; 2016:159
Keyword
Vehicular Communications, Security, Privacy, Access Control, Identity and Credential Management, Vehicular PKI
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Electrical Engineering
Identifiers
urn:nbn:se:kth:diva-193030 (URN)978-91-7729-134-3 (ISBN)
Presentation
2016-11-01, Q2, Osquldas Väg 10, Stockholm, 15:30 (English)
Opponent
Supervisors
Note

QC 20160927

Available from: 2016-09-27 Created: 2016-09-26 Last updated: 2016-10-28Bibliographically approved

Open Access in DiVA

acm-mobihoc-iov-voi-2016(1381 kB)83 downloads
File information
File name FULLTEXT01.pdfFile size 1381 kBChecksum SHA-512
8612c8ef634250ca84f6a3873fa0a995e641006ce61571694a1371bb59b764e05804aec231a28677bfd74a9936da016a7ba2185c270f92b81f95acbdcc132bff
Type fulltextMimetype application/pdf

Other links

Publisher's full textScopushttp://dl.acm.org/citation.cfm?id=2938684

Search in DiVA

By author/editor
Khodaei, MohammadPapadimitratos, Panos
By organisation
Communication Networks
Communication Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 83 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 128 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf