Journal of the Korea Institute of Information Security & Cryptology (정보보호학회논문지)

Korea Institute of Information Security and Cryptology (한국정보보호학회)
권호 표지
DOI QR코드

DOI QR Code

A Design of Traceable and Privacy-Preserving Authentication in Vehicular Networks

VANET 환경에서 프라이버시를 보호하면서 사고 발생 시 추적 가능한 인증 프로토콜

  • Kim, Sung-Hoon (Graduate School of Information Management and Security) ;
  • Kim, Bum-Han (Graduate School of Information Management and Security) ;
  • Lee, Dong-Hoon (Graduate School of Information Management and Security)
  • 김성훈 (고려대학교 정보경영공학전문대학원) ;
  • 김범한 (고려대학교 정보경영공학전문대학원) ;
  • 이동훈 (고려대학교 정보경영공학전문대학원)
  • Published : 2008.10.30
Download PDF
⟨ Previous Next ⟩

Abstract

In vehicular networks, vehicles should be able to authenticate each other to securely communicate with network-based infrastructure, and their locations and identifiers should not be exposed from the communication messages. however, when an accident occurs, the investigating authorities have to trace down its origin. As vehicles communicate not only with RSUs(Road Side Units) but also with other vehicles, it is important to minimize the number of communication flows among the vehicles while the communication satisfies the several security properties such as anonymity, authenticity, and traceability. In our paper, when the mutual authentication protocol is working between vehicles and RSUs, the protocol offers the traceability with privacy protection using pseudonym and MAC (Message Authentication Code) chain. And also by using MAC-chain as one-time pseudonyms, our protocol does not need a separate way to manage pseudonyms.

차량 네트워크(Vehicular Networks)환경에서 차량이 주행할 때 네트워크 기반 구조와 안전하게 통신을 하기 위해서는 상호간의 신원을 확인할 수 있어야 하며, 차량과 네트워크 기반 구조와의 통신 메시지로부터 차량의 위치와 아이디가 노출되지 않아야 한다. 반면 사고가 발생했을 경우 수사기관에서는 사고의 근원을 추적할 수 있어야 한다. 또한 차량 운행 시 차량은 하나의 RSU(Road Side Unit)와 통신하는 것이 아니라 여러 개의 RSU와 통신해야 하므로 위의 성질을 만족시키면서 차량과 RSU 사이의 통신 횟수와 연산량을 줄이는 것 또한 중요한 문제이다. 본 논문에서는 차량 네트워크 환경에서 차량과 RSU 간 상호인증 프로토콜을 수행할 때 익명아이디(pseudonym)와 MAC 체인(Massage Authentication Code chain)을 이용하여 차량의 프라이버시를 보호하면서 추적성을 제공할 수 있는 효율적인 상호 인증 프로토콜을 제안한다. 또한 제안하는 프로토콜에서는 익명아이디를 MAC 체인을 이용하여 일회성으로 구성하기 때문에, 익명아이디를 별도로 관리할 필요성이 없다.

Keywords

References

  1. R. Bishop, "Survey of Intelligent Vehicle Applications Worldwide", in Proc. of IEEE Intelligent Vehicles Symposium, pp. 25-30, Oct. 2000
  2. J. Choi, M. Jakobsson, S. Wetzel, "Balancing Auditability and Privacy in Vehicular Networks", In Proc. of the 1st ACM International Workshop on QoSS in Wireless and Mobile Networks, pp. 79-87, Oct. 2005
  3. F. Dötzer, "Privacy Issues in Vehicular Ad Hoc Networks", in Proc. of the 2nd ACM International Workshop on Vehicular Ad Hoc Networks, Sept. 2005
  4. T. Mak, K. Laberteaux, R. Sengupta, "A Multichannel VANET Providing Concurrent Safety and Commercial Services", in Proc. of the 2nd ACM International Workshop on Vehicular Ad Hoc Networks, Sept. 2005
  5. M. Mauve, J. Widmer, H. Hartenstein, "A Survey on Position-Based Routing in Mobile Ad Hoc Networks", IEEE Network, 2001
  6. P. Papadimitratos, V. Gligor, J-P. Hubaux, "Securing Vehicular Communications-Assumptions, Requirements, and Principles", in Proc. of Workshop on Embedded Security in Cars (ESCAR), Nov. 2006
  7. M. Raya, A. Aziz, J-P. Hubaux, "Efficient Secure Aggregation in VANETs", in Proc. of 3rd International Workshop on Vehicular Ad Hoc Networks (VANET), pp. 67-75, Sep. 2006
  8. M. Raya, J-P. Hubaux, "Securing Vehicular Ad Hoc Networks", in Journal of Computer Security, Special Issue on Security of Ad Hoc and Sensor Netwroks, pp. 39-68, vol. 15, 2007
  9. M. Raya, P. Papadimitratos, J-P. Hubaux, "Securing Vehicular Communications", in IEEE Wireless Communications Mag., vol. 13(5), pp. 8-15, Oct. 2006
  10. K. Sha, Y. Xi, W. Shi, L. Schwiebert, T. Zhang, "Adaptive Privacy-Preserving Authentication in Vehicular Networks", in Proc. of the International Workshop on Vehicle Communication and Applications, Oct. 2006
  11. Y. Xi, K. Sha, W. Shi, L. Schwiebert, "Enforcing Privacy Using Symmetric Random Key-Set in Vehicular Networks", in Autonomous Decentralized Systems, ISADS'07, Mar. 2007
  12. "Dedicated Short Range Communications (dsrc)", [Online]. Available: http://grouper.ieee.org/groups/scc32/dsrc/
  13. "Event data recorder applications for highway and traffic safety", [Online]. Available: http://www-nrd.nhtsa.dot.gov/edr-site/
  14. "INter-Vehiclar Network Technologies (INVENT) home" [Online]. Available: http://web.njit.edu/borcea/invent/