Presentation is loading. Please wait.

Presentation is loading. Please wait.

2015-6-1 1 Secure Vehicular Communications Speaker: Xiaodong Lin University of Waterloo

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "2015-6-1 1 Secure Vehicular Communications Speaker: Xiaodong Lin University of Waterloo"— Presentation transcript:

1 2015-6-1 1 Secure Vehicular Communications Speaker: Xiaodong Lin University of Waterloo http://bbcr.uwaterloo.ca/~xdlin/

2 2015-6-1 2 Outline Introduction Related work TSV C TESLA-based Security protocol for Vehicular Communication (TSVC) Conclusion and future work

3 2015-6-1 3 Introduction Curve speed warning, work zone warning etc position, current time, direction, velocity, acceleration/ deceleration, etc Traffic Message Emergency Message

4 2015-6-1 4 Introduction (cont’d) Vehicular Communications Network Vehicles are equipped with communication, positioning and computation devices. They form a huge self-organized ad hoc network (VANET) to communicate with each other as well as roadside units. VANET is a promising approach to road safety, such as avoid collision. increase road safety, such as avoid collision. traffic management facilitate traffic management Tremendous benefits Traffic jam ahead

5 2015-6-1 5 Vehicular Communication Networks are Emerging Many applications Vehicle safety applications Intersection Collision Warning However : securityprivacy There are many security and privacy concerns with respect to the messages exchanged and transmitted in VANETs.  Need secure and privacy-preserving communication protocols [VSCP2006] Vehicle Safety Communications Project. http://www-nrd.nhtsa.dot.gov/pdf/nrd- 12/060419-0843/PDFTOC.htm

6 2015-6-1 6 Traffic jam ahead Introduction (cont’d) An Example of attack : Bogus traffic information [RH07] M. Raya and J. P. Hubaux, Securing vehicular ad hoc networks, Journal of Computer Security, Vol. 15, No. 1, pp. 39-68, 2007.

7 2015-6-1 7 At 3:00 - Vehicle A spotted at position P1 At 3:15 - Vehicle A spotted at position P2 Note: Privacy is a very important issue in vehicular networks Vehicle A belongs to John! Introduction (cont’d) An Example of user privacy attack: Movement tracking John was somewhere at when!

8 2015-6-1 8 An Example of Traceability Note: Traceability is another very crucial issue in vehicular networks We need to find someone who may be able to provide valuable information about the accident.

9 2015-6-1 9 Security and Privacy Concerns: Sending bogus traffic information Message integrity attack Message replay attack Impersonation attack Denial of Service Movement tracking – Anonymity One desirable requirement Identity traceability in exceptional cases Conditional Anonymity Messages should be transmitted unaltered from a trusted party Introduction (cont’d)

10 2015-6-1 10 Related Work Previous PKI based approach [RH2005] M. Raya, J.P. Hubaux. The security of vehicular ad hoc networks. In Proceedings of the 3rd ACM workshop on Security of ad hoc and sensor networks SASN '05. November, 2005. ELP(ID a ) ELP(ID b ) ELP(ID a ) ELP(ID b ) … ELP(ID j ) Anonymous certificate list M

11 2015-6-1 11 Related Work (cont’d) Group signature based approach [LSHS2007] X. Lin, X. Sun, P.-H. Ho and X. Shen. GSIS: A Secure and Privacy-Preserving Protocol for Vehicular Communications. IEEE Transactions on Vehicular Technology. Vol. 56, No. 6, November, 2007. group manager Vehicle private key, group public key Group signature: 1. A Group signature scheme is a method for allowing a member of a group to anonymously sign a message on behalf of the group. 2. Essential to a group signature scheme is a group manager, who is in charge of adding group members and has the ability to reveal the original signer in the event of disputes.

12 2015-6-1 12 Facts: Message are sent 100ms~300ms. 666~2000 cars within the communication range. 666~2000 messages to verify per second. Achieving the goals of verifying all the messages in a timely manner and lower cryptographic overhead is a challenging work for all existed public key schemes. 666 messages to be verified for each vechile! Challenges facing nowadays in VANETs

13 2015-6-1 13 Motivation Design an efficient and secure scheme, which can allow each vehicle to verify all the received messages in a timely manner with lower message loss ratio and lower cryptographic overhead.

14 2015-6-1 14 Broadcast Authentication Broadcast is basic communication mechanism; Vehicular communication is broadcast in nature. Sender broadcasts data; Each receiver verifies data origin and integrity. Sender Bob M Carol M JohnAlice MM

15 2015-6-1 15 TESLA (Time Efficient Stream Loss-Tolerant Authentication) Uses purely symmetric primitives In TESLA, each message is attached with a MAC tag only. Self-authenticating keys The sender makes use of a hash chain as cryptographic keys in the MAC operations. Delayed authentication technique Message receivers are loosely synchronized. Provides fast source authentication (1 MAC operation) with lower cryptographic overhead (20 bytes). [PCTS2002] Adrian Perrig, Ran Canetti, J. D. Tygar, Dawn Song. The TESLA Broadcast Authentication Protocol. In CryptoBytes, vol. 5, No. 2, Summer/Fall 2002, pp. 2-13.

16 2015-6-1 16 Proposed TESLA-based security protocol  Fact: each vehicle will receive a serial of messages from the same source.  Vehicle Group Formation [LZSHS2007] X. Lin, C. Zhang, X. Sun, P.-H. Ho and X. Shen. Performance Enhancement for Secure Vehicular Communications. IEEE Global Communications Conference (GLOBECOM'07), Washington, DC, USA, Nov. 26-30, 2007.

17 2015-6-1 17 Each vehicle generates a hash chain initiated from a random seed S, where,, (i<j), according to each anonymous key pair and Cert i. Verify Signature Verify MAC sender receiver Interval 1 Interval 2 Interval i Delayed authentication Proposed TESLA-based security protocol

18 2015-6-1 18 Some other discussions (1/4) The choice of key release delay Keys are released after all nodes have received the previous data packet. (We set as 100ms) Before verifying the message, the receiver should first check if the corresponding key has been released or not. M h source MAC h (M’)|M’

19 2015-6-1 19 Some other discussions (2/4) The capability to deal with message loss. If data packet is lost, ignore it. If key release packet is lost, suppose h i is the last received value: Check if ? If so, go on to verify the message. hihi h i+1 h i+2 hjhj lost received

20 2015-6-1 20 Some other discussions (3/4) Group member fluctuation The neighborhood of each car does not change seriously, but it is subject to fluctuation occasionally. The new comer will catch up with the new messages by repeatedly applying the hash function. Stores its information for a while Send the signed tip of the hash chain 1

21 2015-6-1 21 Communication overhead (4/4) The comparison of the communication overhead Lifetime of the certificate10mins Message generating frequency300ms Group member fluctuation frequency10sec The length of ECDSA certificate125bytes Total information needs to be transmitted for ECDSA-2048 scheme576,000bytes Total information needs to be transmitted for TSVC scheme333,020bytes

22 2015-6-1 22 Performance evaluation Impact of the traffic load on the MLR in highway scenario Impact of the traffic load on the MD in highway scenario Impact of the traffic load on the MLR in city scenario Impact of traffic load on the MD in city scenario

23 2015-6-1 23 Conclusions Proposes a TSVC protocol to reduce the computation overhead. Retains the security properties. Allow each vehicle to verify all the received messages in a timely manner with lower message loss ratio and lower cryptographic overhead.

24 2015-6-1 24 Future work How to improve the efficiency of the CRL check up procedure? Migrating the CRL check-up operations to the RSU side, which will instead perform the process and broadcast the check-up result to the vehicles in its communication range will be an interesting solution.

25 2015-6-1 25 Questions & Comments ? 25 Thanks!

Download ppt "2015-6-1 1 Secure Vehicular Communications Speaker: Xiaodong Lin University of Waterloo"

Similar presentations

Wenmao Liu Harbin Institute of Technology China. Outline ITS & VANETs Security Issues and Solutions An autonomous architecture Conclusion.

Wenmao Liu Harbin Institute of Technology China. Outline ITS & VANETs Security Issues and Solutions An autonomous architecture Conclusion.
Efficient Secure Aggregation in VANETs Maxim Raya, Adel Aziz, and Jean-Pierre Hubaux Laboratory for computer Communications and Applications (LCA) EPFL.

Efficient Secure Aggregation in VANETs Maxim Raya, Adel Aziz, and Jean-Pierre Hubaux Laboratory for computer Communications and Applications (LCA) EPFL.
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
 Introduction  Benefits of VANET  Different types of attacks and threats  Requirements and challenges  Security Architecture  Vehicular PKI.

 Introduction  Benefits of VANET  Different types of attacks and threats  Requirements and challenges  Security Architecture  Vehicular PKI.
Securing Vehicular Communications Author : Maxim Raya, Panos Papadimitratos, and Jean-Pierre Hubaux From : IEEE Wireless Communications Magazine, Special.

Securing Vehicular Communications Author : Maxim Raya, Panos Papadimitratos, and Jean-Pierre Hubaux From : IEEE Wireless Communications Magazine, Special.
A Survey of Secure Wireless Ad Hoc Routing

A Survey of Secure Wireless Ad Hoc Routing
EPIDEMIC DENSITY ADAPTIVE DATA DISSEMINATION EXPLOITING OPPOSITE LANE IN VANETS Irem Nizamoglu Computer Science & Engineering.

EPIDEMIC DENSITY ADAPTIVE DATA DISSEMINATION EXPLOITING OPPOSITE LANE IN VANETS Irem Nizamoglu Computer Science & Engineering.
Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
CSLI 5350G - Pervasive and Mobile Computing Week 3 - Paper Presentation “RPB-MD: Providing robust message dissemination for vehicular ad hoc networks”

CSLI 5350G - Pervasive and Mobile Computing Week 3 - Paper Presentation “RPB-MD: Providing robust message dissemination for vehicular ad hoc networks”
LOGO Multi-user Broadcast Authentication in Wireless Sensor Networks ICU 20082065 Myunghan Yoo.

LOGO Multi-user Broadcast Authentication in Wireless Sensor Networks ICU Myunghan Yoo.
1 Key Management for Vehicular Networks Maxim Raya and Jean-Pierre Hubaux Secure Vehicular Communications Workshop EPFL - 19/05/2015.

1 Key Management for Vehicular Networks Maxim Raya and Jean-Pierre Hubaux Secure Vehicular Communications Workshop EPFL - 19/05/2015.
overview Motivation Ongoing research on VANETs Introduction Objectives Applications Possible attacks Conclusion.

overview Motivation Ongoing research on VANETs Introduction Objectives Applications Possible attacks Conclusion.
Securing Vehicular Commuinications – Assumptions, Requirements, and Principles P. Papadimitratos, EPFL, Lausanne, Switzerland V. Gligor, University of.

Securing Vehicular Commuinications – Assumptions, Requirements, and Principles P. Papadimitratos, EPFL, Lausanne, Switzerland V. Gligor, University of.
Security Issues In Sensor Networks By Priya Palanivelu.

Security Issues In Sensor Networks By Priya Palanivelu.
Mini-Project 2006 Secure positioning in vehicular networks based on map sharing with radars Mini-Project IC-29 Self-Organized Wireless and Sensor Networks.

Mini-Project 2006 Secure positioning in vehicular networks based on map sharing with radars Mini-Project IC-29 Self-Organized Wireless and Sensor Networks.
An Efficient and Spontaneous Privacy-Preserving Protocol for Secure Vehicular Communications Hu Xiong, Konstantin Beznosov, Zhiguang Qin, Matei Ripeanu.

An Efficient and Spontaneous Privacy-Preserving Protocol for Secure Vehicular Communications Hu Xiong, Konstantin Beznosov, Zhiguang Qin, Matei Ripeanu.
A Secure Network Access Protocol (SNAP) A. F. Al Shahri, D. G. Smith and J. M. Irvine Proceedings of the Eighth IEEE International Symposium on Computers.

A Secure Network Access Protocol (SNAP) A. F. Al Shahri, D. G. Smith and J. M. Irvine Proceedings of the Eighth IEEE International Symposium on Computers.
Timed Efficient Stream Loss-Tolerant Authentication. (RFC 4082) Habib Moukalled 1/29/08.

Timed Efficient Stream Loss-Tolerant Authentication. (RFC 4082) Habib Moukalled 1/29/08.
SPINS: Security Protocols for Sensor Networks Adrian Perrig, Robert Szewczyk, Victor Wen, David Culler, J.D. Tygar Research Topics in Security in the context.

SPINS: Security Protocols for Sensor Networks Adrian Perrig, Robert Szewczyk, Victor Wen, David Culler, J.D. Tygar Research Topics in Security in the context.

Similar presentations

Ads by Google