secure vehicular communication
play

Secure Vehicular Communication System: Design & Implementation - PowerPoint PPT Presentation

Dec 18, 2023 •39 likes •519 views

Secure Vehicular Communication System: Design & Implementation of VPKI (Providing Credential Management in a Secure VANET) Supervisor: MSc Thesis: Prof. Panos Papadimitratos Mohammad Khodaei LCN KTH October, 2012 1 / 38 Outline

  1. Secure Vehicular Communication System: Design & Implementation of VPKI (Providing Credential Management in a Secure VANET) Supervisor: MSc Thesis: Prof. Panos Papadimitratos Mohammad Khodaei LCN – KTH October, 2012 1 / 38

  2. Outline • Introduction • Problem Statement • Contribution • Key Concepts • Security Requirements • Adversary Model • Protocol Design • Performance Evaluation • Conclusion • Future Direction 2 / 38

  3. Outline • Introduction • Problem Statement • Contribution • Key Concepts • Security Requirements • Adversary Model • Protocol Design • Performance Evaluation • Conclusion • Future Direction 3 / 38

  4. Introduction • The life cycle of vehicles is pretty long • Security has to be put in place • Many attacks which could jeopardize the system performance from security point of view • Mitigating unknown threats and upcoming attacks 4 / 38

  5. Problem • The lack of an infrastructure • Exposed to different threats and attacks • Staging attacks to jeopardize users’ privacy and disclose confidential information • Exploiting the vulnerabilities • Violating the VC system security policy • What to do to thwart the threats and make the system operations secure? 5 / 38

  6. Contribution • Research Purpose o Design and Implementation of VPKI for the secure VC system o An infrastructure called VPKI, to enable entities communicate securely o Providing Credential Management in a Secure VC system o PKI is considered as an essential requirement to provide security services • Goal o Build an artifact, using the currently available open-source PKI, OpenCA, equiped with extra protocols for VANET • Methodology o Designing and Implementation of extra protocols for VANET o Using Open-Source OpenCA 6 / 38

  7. Key Concepts 7 / 38

  8. Key Algorithms and Size Entities Algorithm PCA RSA, key size: 1024-bit ECDSA, key size: 256-bit LTCA RSA, key size: 1024-bit ECDSA, key size: 256-bit PRA RSA, key size: 1024-bit ECDSA, key size: 256-bit Police RSA, key size: 1024-bit ECDSA, key size: 256-bit Vehicle RSA, key size: 1024-bit ECDSA, key size: 256-bit 8 / 38

  9. Why not normal PKI? • Pseudonymity • Unlinkability • Unobservability • User's Privacy 9 / 38

  10. Security Requirements • Message Authentication and Integrity • Message Non-Repudiation • Privacy • Anonymity • Unlinkability and Unobservability • Pseudonym Resolution • Liability Identification, Forensics Investigation • Message Confidentiality • Availability, Fault-Tolerant and Robustness • Scalability and Performance 10 / 38

  11. Adversary Model • Localized and Selective Denial of Communication • Internal Active Adversaries a. Modification and Tampering b. Forgery c. Recollecting Past Messages d. Multiple Adversarial Nodes • Bounded Adversarial Presence • Input-Controlling Adversary • Other Adversary Models (Byzantine, Dolev-Yao (DY)) 11 / 38

  12. Related Work • V-Tokens for Conditional Pseudonymity in VANETs o Resolution information is embedded in pseudonyms o Vehicle signs using its current valid pseudonym o Pseudonym information is encrypted with PK_PR o Uses separation of duties o Cooperation of a subset of RAs is required to perform pseudonym resolution 12 / 38

  13. Outline • Introduction • Problem Statement • Contribution • Key Concepts • Security Requirements • Adversary Model • Protocols Design • Performance Evaluation • Conclusion • Future Direction 13 / 38

  14. Protocol Design • How to Request for Pseudonymous Certificates • How to Request the Latest Pseudonym CRL • How to Perform Pseudonym Resolution 14 / 38

  15. Obtaining Pseudonym Cert. Two Steps: a. Obtain a Token i. Vehicle queries LTCA ii. LTCA issues an encrypted Token with PCA’s Public key, if it is a legitimate vehicle iii. Vehicle stores the Token for the second step b. Obtain Pseudonymous Certificates i. Vehicle sends the Token to PCA ii. PCA verified the Token locally iii. PCA issues short-term certificate 15 / 38

  16. Obtaining a Token 16 / 38

  17. Obtaining Pseudonym Cert. 17 / 38

  18. Obtaining Pseudonym CRL 18 / 38

  19. Pseudonym Resolution 19 / 38

  20. Token & Pseudonym Format Token Format Pseudonym Cert. Format Token-Type Serial No. Token-Serial No. Pseudonym Cert. Identifiable Key Token-Identifiable-Key Signer-ID LTCA-Id, PCA-Id Valid-From Valid-To Maximum Number of Pseudonym Certificates EC Public key Token Start-Time Signature Token Expiry-Time Pseudonym Start-Time Pseudonym Expiry-Time Signature 20 / 38

  21. Pseudonym CRL Format Pseudonym CRL Format Pseudonym-CRL Serial No. CRL Version PCA-Id Revoked Pseudonym-Cert. No. Revoked Pseudonym-Cert. Serial No. Time-Stamp Signature 21 / 38

  22. Binding Token to Pseudo- Cert. • LTCA: o Token-Identifiable-Key = hash(Vehicle Long- Term Certificate Serial No. || Time-Stamp || Nonce) • PCA: o PseuCertIdentifiableKey = hash( Token- Identifiable-Key || Pseudo-Public Key || Time- Stamp || Nonce) 22 / 38

  23. Outline • Introduction • Problem Statement • Contribution • Key Concepts • Security Requirements • Adversary Model • Protocols Design • Performance Evaluation • Conclusion • Future Direction 23 / 38

  24. Network Topology 24 / 38

  25. Servers & Client Spec. • Servers: Processor Model Name Intel(R), Dual-Core, Xeon(TM), CPU 3.40GHz Bogomips 6782.71 RAM 8 GB • Client: Processor Model Name Intel(R), Dual-Core(TM), CPU 3.00 GHz Bogomips 5960.58 RAM 2 GB 25 / 38

  26. Obtaining Token from LTCA 26 / 38

  27. Time Interval to Obtain 10 Pseudonyms 27 / 38

  28. Time Intervals for Different Operations to Obtain Pseudonym Certificates 28 / 38

  29. Time Interval to Obtain 20,000 Pseudonyms from PCA 29 / 38

  30. Time Intervals for Different Operations to Obtain Pseudonym CRL 30 / 38

  31. Pseudonym CRL File Size No. of Revoked Pseudonyms in CRL Size in bytes 1 778 bytes (778 bytes) 10 1.36 KB (1,398 bytes) 100 7.33 KB (7,507 bytes) 1000 67.1 KB (68,723 bytes) 10,000 664 KB (680,718 bytes) 20,000 1.29 MB (1,360,714 bytes) 100,000 6.48 MB (6,800,715 bytes) 31 / 38

  32. Outline • Introduction • Problem Statement • Contribution • Key Concepts • Security Requirements • Adversary Model • Protocols Design • Performance Evaluation • Conclusion • Future Direction 32 / 38

  33. Conclusion • Three protocols are integrated into OpenCA to provide security functionality for VANETs • Improvement in compare with similar projects • Linkability • Privacy • Pseudonym Resolution • Performance evaluation shows reasonable time to obtain pseudonyms, CRL and pseudonym resolution • Experiments should be done on a vehicle for a 33 / 38 more precise result

  34. Future Direction • Providing a PKI Trust Model in VANETs o Introducing a new PCA, LTCA and PRA o Foreign Pseudonym Certificates o Integrating Short-Term CRLs from Different PCAs • Token Should be Used Only Once • Mitigate the Threat of Sybil Attack o resource testing techniques, social networking approaches, radio testing, trusted certification 34 / 38

  35. Future Direction Cont. • Token Verification by any PCA to Enhance Privacy • Performing Reverse Pseudonym Resolution • Resolving Multiple Pseudonyms in a Request • Using FastCGI instead of CGI • Performance and Efficiency for VANETs 35 / 38

  36. Acknowledgement 36 / 38

  37. References • Secure Vehicular Communication Systems: Design and Architecture • Sevecom - Secure Vehicle Communication • Efficient and Robust Pseudonymous Authentication in VANET • Securing Vehicular Communications - Assumptions, Requirements, and Principles • V-Tokens for Conditional Pseudonymity in VANETs • Intelligent Transport Systems (ITS), Security, Stage 3 mapping for IEEE 1609.2. V0.0.6 • "On the Road" - Reflections on the Security of Vehicular Communication Systems • Secure Vehicular Communication Systems: Implementation, Performance, and Research Challenges 37 / 38

  38. Questions Thanks for your attention! 38 / 38

  39. Obtaining Pseudonym Cert. 39

  40. OpenCA • Written in C • Two packages: o openca-base o openca-tools • Uses Open-SSL Libraries • Support Open-LDAP • Web-based Interface • With an Apache-style license 40

  41. Token Req-Res Format Token Request Token Response Req. Type Req. Type X509 VLTC Length Token Size X509 VLTC Token Pseudonym Cert. No. Request Max No. Pseudonym Cert. LTCA-Id LTCA-Id PCA-Id PCA-Id Nonce Nonce Time-Stamp Time-Stamp Signature Error-Info Signature 41

  42. Pseudonym Req-Res Format Pseudonym Request Pseudonym Response Req. Type Req. Type Token Size Req. Identification Token LTCA-Id LTCA-Id PCA-Id PCA-Id Pseudonym Cert No Location Pseudonym Cert. Pseudonym Cert. No Nonce Pseudonym Public-Key(s) Time-Stamp Nonce Error-Info Time-Stamp Signature 42

  43. Pseudonym CRL Res-Res Format Pseudonym CRL Request Pseudonym CRL Response Req. Type Req. Type Current CRL Version PCA-Id PCA-Id CRL Size Region-Id CRL Pseudonym Cert. Length Nonce Pseudonym Cert. Time-Stamp Nonce Error-Info Time-Stamp Signature Signature 43

  44. Obtaining Pseudonyms from PCA 44

  45. Obtaining Pseudonym CRL 45

  46. Percentage of Different Operations to Obtain 20000 Pseudonyms 46

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management

Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management

KTH ROYAL INSTITUTE OF TECHNOLOGY Secure and Privacy Preserving Vehicular Communication Systems: Identity and Credential Management Infrastructure Mohammad Khodaei Networked Systems Security Group (NSS) November 1, 2016 July 2, 2018

1.03k views • 38 slides
A Privacy-preserving Pseudonym Acquisition Scheme for Vehicular Communication Systems Andreas

A Privacy-preserving Pseudonym Acquisition Scheme for Vehicular Communication Systems Andreas

A Privacy-preserving Pseudonym Acquisition Scheme for Vehicular Communication Systems Andreas Messing amessing@kth.se 1 Vehicular Communication Systems Smart Cities Self-driving Transportation Systems Vehicle-to-Vehicle

198 views • 19 slides
Secure Communication Secure Communication Lecture 14 Wrap-Up We saw... Symmetric-Key

Secure Communication Secure Communication Lecture 14 Wrap-Up We saw... Symmetric-Key

Secure Communication Secure Communication Lecture 14 Wrap-Up We saw... Symmetric-Key Components SKE, MAC Public-Key Components PKE, Digital Signatures Building blocks: Block-ciphers (AES), Hash-functions (SHA-3), Trapdoor PRG/OWP for PKE

1.07k views • 72 slides
A Comparison of Communication Mechanisms in Vehicular Edge Computing Liangkai Liu, Baofu Wu and

A Comparison of Communication Mechanisms in Vehicular Edge Computing Liangkai Liu, Baofu Wu and

A Comparison of Communication Mechanisms in Vehicular Edge Computing Liangkai Liu, Baofu Wu and Weisong Shi Wayne State University http://thecarlab.org 6/18/20 Connected and Autonomous dRiving Laboratory 1 Outline Motivation

592 views • 12 slides
Towards Automatic Phone-to-Phone Communication for Vehicular Networking Applications Shaohan Hu ,

Towards Automatic Phone-to-Phone Communication for Vehicular Networking Applications Shaohan Hu ,

Towards Automatic Phone-to-Phone Communication for Vehicular Networking Applications Shaohan Hu , Hengchang Liu, Lu Su, Hongyan Wang,Tarek Abdelzaher, Pan Hui, Wei Zheng, Zhiheng Xie, John Stankovic Motivation Motivation richer traffic info

506 views • 33 slides
SECMACE: Scalable and Robust Identity and Credential Infrastructure in Vehicular Communication

SECMACE: Scalable and Robust Identity and Credential Infrastructure in Vehicular Communication

SECMACE: Scalable and Robust Identity and Credential Infrastructure in Vehicular Communication IEEE Transactions on Intelligent Transportation Systems (IEEE ITS), vol. 19, no. 5, May 2018 Mohammad Khodaei, Hongyu Jin, and Panos Papadimitratos

689 views • 54 slides
Beam Alignment and Tracking for Autonomous Vehicular Communication Presenter: Kaushik R.

Beam Alignment and Tracking for Autonomous Vehicular Communication Presenter: Kaushik R.

Beam Alignment and Tracking for Autonomous Vehicular Communication Presenter: Kaushik R. Chowdhury using IEEE 802.11ad-based Authors: Guillem Reus, Kumar Vijay, radar Carlos Bocanegra , Yonina Eldar and Kaushik Chowdhury. Next GEneration

255 views • 12 slides
Simple and Communication Complexity Efficient Almost Secure and Perfectly Secure Message

Simple and Communication Complexity Efficient Almost Secure and Perfectly Secure Message

Simple and Communication Complexity Efficient Almost Secure and Perfectly Secure Message Transmission Schemes Yvo Desmedt 1 , 2 Stelios Erotokritou 1 Reihaneh Safavi-Naini 3 1 Department of Computer Science University College London, UK 2

459 views • 33 slides
Vehicular Urban Sensing: Dissemination and Vehicular Urban Sensing: Dissemination and Retrieval

Vehicular Urban Sensing: Dissemination and Vehicular Urban Sensing: Dissemination and Retrieval

Vehicular Urban Sensing: Dissemination and Vehicular Urban Sensing: Dissemination and Retrieval UC Irvine, May 21, 2009 Mario Gerla Computer Science Dept, UCLA www.cs.ucla.edu/NRL Outline Vehicular Ad Hoc Networks (VANETs)

785 views • 59 slides
Evaluating On-demand Pseudonym Acquisition Policies in Vehicular Communication Systems Mohammad

Evaluating On-demand Pseudonym Acquisition Policies in Vehicular Communication Systems Mohammad

Evaluating On-demand Pseudonym Acquisition Policies in Vehicular Communication Systems Mohammad Khodaei and Panos Papadimitratos Networked Systems Security Group (NSS) www.ee.kth.se/nss July 5, 2016 M. Khodaei and P. Papadimitratos (KTH)

670 views • 21 slides
Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in the Quantum Era (SPS G5448) February 5th, 2020 Christian Colombo Mark Vella Cryptographic Protocols Design Proofs to validate design against

467 views • 20 slides
Secure Communication Hacking/Hustling Workshop @ Eyebeam About me Liz! She/Her Electrical

Secure Communication Hacking/Hustling Workshop @ Eyebeam About me Liz! She/Her Electrical

Secure Communication Hacking/Hustling Workshop @ Eyebeam About me Liz! She/Her Electrical Engineer/Embedded developer Teaching for a while Overview Signal is one example of a third-party app for secure texting. Well go over what it does

819 views • 32 slides
TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication

TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication

TLS/SSL TLS (Transport Layer Security) A suite of protocols to provide secure communication Confidentiality by applying block & stream ciphers - Integrity with MACs - Authenticity with certificates - Predecessor: SSL (secure

557 views • 13 slides
Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.)

Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.)

Secure Computation with Low Communication from Cross-checking Dov Gordon (George Mason U.) Samuel Ranellucci (Unbound Tech) Xiao Wang (MIT & Boston U.) Secure Computation 4 parties each hold private data. They wish to compute C(x 1

414 views • 24 slides
>>>CLICK HERE<<< Vehicular Ad Hoc Networks Powerpoint Presentation New York

>>>CLICK HERE<<< Vehicular Ad Hoc Networks Powerpoint Presentation New York

Vehicular Ad Hoc Networks Powerpoint Presentation Vehicular ad hoc networks powerpoint presentation Fresno need someone to make my dissertation hypothesis on nursing philosophy now customewritting service write creative writing on divorce cheap.

165 views • 5 slides
Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation

Communication Locality in C i i L li i Secure Multi Party Secure Multi-Party Computation Computation How to Run Sublinear Algorithms in a Distributed Algorithms in a Distributed Setting Elette Boyle Shafi Goldwasser Stefano Tessaro

1.01k views • 36 slides
Enforcing honesty of certification authorities: Tagged one-time signature schemes Bertram

Enforcing honesty of certification authorities: Tagged one-time signature schemes Bertram

Enforcing honesty of certification authorities: Tagged one-time signature schemes Bertram Poettering and Douglas Stebila Information Security Group Royal Holloway, University of London bertram.poettering@rhul.ac.uk Stanford, January 11, 2013

454 views • 41 slides
W3C Workshop on Next Steps for XML Signature and XML Encryption The importance of incorporating

W3C Workshop on Next Steps for XML Signature and XML Encryption The importance of incorporating

W3C Workshop on Next Steps for XML Signature and XML Encryption The importance of incorporating XAdES extensions into ongoing XML-Sig work Authors: Juan Carlos Cruellas Universitad Politcnica de Catalua cruellas@ac.upc.edu Giles

404 views • 29 slides
The PKIX Standards and PKI Implementations Simos Xenitellis University of London

The PKIX Standards and PKI Implementations Simos Xenitellis University of London

The PKIX Standards and PKI implementations The PKIX Standards and PKI Implementations Simos Xenitellis University of London S.Xenitellis@rhbnc.ac.uk 1 16th May, 2000, University of London The PKIX Standards and PKI implementations Agenda

513 views • 29 slides
We Weaver: A Hig High h Performance, Tr Transa sacti tional Gr Graph Dat Datab abas ase

We Weaver: A Hig High h Performance, Tr Transa sacti tional Gr Graph Dat Datab abas ase

We Weaver: A Hig High h Performance, Tr Transa sacti tional Gr Graph Dat Datab abas ase e Bas ased ed on on Refi Refinab able e Times estam amps By Dubey et al. Presented by: Ishank Jain Department of Computer Science

401 views • 24 slides
Accountable Certificate Management using Undeniable Attestations Ahto Buldas K uberneetika AS

Accountable Certificate Management using Undeniable Attestations Ahto Buldas K uberneetika AS

Accountable Certificate Management using Undeniable Attestations Ahto Buldas K uberneetika AS (Estonia) & U. of Tartu (Estonia) ahto.buldas@cyber.ee Peeter Laud Universit at des Saarlandes (Germany) laud@cs.uni-sb.de Helger Lipmaa

366 views • 17 slides
Resource Query Authority 11 th TF-EMC2 Meeting 9-10 July, 2008, Umea, Sweden 11 th TF-EMC2

Resource Query Authority 11 th TF-EMC2 Meeting 9-10 July, 2008, Umea, Sweden 11 th TF-EMC2

Dartmouth College Massimiliano Pala <pala@cs.dartmouth.edu> Proposal for Deploying a PKI Resource Query Authority 11 th TF-EMC2 Meeting 9-10 July, 2008, Umea, Sweden 11 th TF-EMC2 Meeting, 9-10 July, 2008, Umea Sweden Outline

531 views • 18 slides
CS 528 Mobile and Ubiquitous Computing Lecture 6: Maps, Sensors, Widget Catalog and Presentations

CS 528 Mobile and Ubiquitous Computing Lecture 6: Maps, Sensors, Widget Catalog and Presentations

CS 528 Mobile and Ubiquitous Computing Lecture 6: Maps, Sensors, Widget Catalog and Presentations Emmanuel Agu Using Maps Introducing MapView and Map Activity MapView: UI widget that displays maps MapActivity: java class (extends

987 views • 74 slides
Time-to-Live TLV for LSP-Ping draft-ietf-mpls-lsp-ping-ttl-tlv-01 Sami Boutros

Time-to-Live TLV for LSP-Ping draft-ietf-mpls-lsp-ping-ttl-tlv-01 Sami Boutros

Time-to-Live TLV for LSP-Ping draft-ietf-mpls-lsp-ping-ttl-tlv-01 Sami Boutros Siva Sivabalan George Swallow Vishwas Manral Shaleen Saxena Sam Aldrin Michael Wildt Background The draft

329 views • 5 slides

More recommend