A Vehicular DAA Scheme for Unlinkable ECDSA Pseudonyms in V2X Christopher Hicks

Christopher Hicks; Flavio Garcia

A Vehicular DAA Scheme for Unlinkable ECDSA Pseudonyms in V2X Christopher Hicks

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Vehicle-to-everything (V2X) communication is a broadcast messaging system intended to improve the efficiency and safety of connected and autonomous vehicles. In this paper we present a new V2X architecture and key management solution that reconciles the strong privacy guarantees of Direct Anonymous Attestation (DAA) with the efficiency, low-latency and accountability that is required for V2X. In contrast with the leading V2X standards, and uniquely in the literature, we prevent long-term vehicle pseudonym tracking despite dishonest and colluding certificate authorities and whilst retaining centralised authority over revocation. Our Vehicular DAA (VDAA) scheme includes a novel construction that optimally limits Sybil attacks by restricting each vehicle to one anonymous pseudonym-request per epoch. We present a new security model for VDAA and show that we can reduce the unforgeability and unlinkability of our Elliptic Curve Digital Signature Algorithm (ECDSA) broadcast messages to the security of
the underlying DAA scheme.

Original language	English
Title of host publication	5th IEEE European Symposium on Security and Privacy
Publisher	IEEE Computer Society Press
Number of pages	14
Publication status	Accepted/In press - 26 Feb 2020
Event	5th IEEE European Symposium on Security and Privacy (EuroS&P) - Genova, Italy Duration: 7 Sept 2020 → 11 Sept 2020

Conference

Conference	5th IEEE European Symposium on Security and Privacy (EuroS&P)
Country/Territory	Italy
City	Genova
Period	7/09/20 → 11/09/20

Keywords

V2X
Attestation
Authentication

Cite this

@inproceedings{cdcab8c1d6684578a5051c6a34434744,

title = "A Vehicular DAA Scheme for Unlinkable ECDSA Pseudonyms in V2X Christopher Hicks",

abstract = "Vehicle-to-everything (V2X) communication is a broadcast messaging system intended to improve the efficiency and safety of connected and autonomous vehicles. In this paper we present a new V2X architecture and key management solution that reconciles the strong privacy guarantees of Direct Anonymous Attestation (DAA) with the efficiency, low-latency and accountability that is required for V2X. In contrast with the leading V2X standards, and uniquely in the literature, we prevent long-term vehicle pseudonym tracking despite dishonest and colluding certificate authorities and whilst retaining centralised authority over revocation. Our Vehicular DAA (VDAA) scheme includes a novel construction that optimally limits Sybil attacks by restricting each vehicle to one anonymous pseudonym-request per epoch. We present a new security model for VDAA and show that we can reduce the unforgeability and unlinkability of our Elliptic Curve Digital Signature Algorithm (ECDSA) broadcast messages to the security ofthe underlying DAA scheme.",

keywords = "V2X, Attestation, Authentication",

author = "Christopher Hicks and Flavio Garcia",

year = "2020",

month = feb,

day = "26",

language = "English",

booktitle = "5th IEEE European Symposium on Security and Privacy",

publisher = "IEEE Computer Society Press",

note = "5th IEEE European Symposium on Security and Privacy (EuroS&P) ; Conference date: 07-09-2020 Through 11-09-2020",

}

TY - GEN

T1 - A Vehicular DAA Scheme for Unlinkable ECDSA Pseudonyms in V2X Christopher Hicks

AU - Hicks, Christopher

AU - Garcia, Flavio

PY - 2020/2/26

Y1 - 2020/2/26

N2 - Vehicle-to-everything (V2X) communication is a broadcast messaging system intended to improve the efficiency and safety of connected and autonomous vehicles. In this paper we present a new V2X architecture and key management solution that reconciles the strong privacy guarantees of Direct Anonymous Attestation (DAA) with the efficiency, low-latency and accountability that is required for V2X. In contrast with the leading V2X standards, and uniquely in the literature, we prevent long-term vehicle pseudonym tracking despite dishonest and colluding certificate authorities and whilst retaining centralised authority over revocation. Our Vehicular DAA (VDAA) scheme includes a novel construction that optimally limits Sybil attacks by restricting each vehicle to one anonymous pseudonym-request per epoch. We present a new security model for VDAA and show that we can reduce the unforgeability and unlinkability of our Elliptic Curve Digital Signature Algorithm (ECDSA) broadcast messages to the security ofthe underlying DAA scheme.

AB - Vehicle-to-everything (V2X) communication is a broadcast messaging system intended to improve the efficiency and safety of connected and autonomous vehicles. In this paper we present a new V2X architecture and key management solution that reconciles the strong privacy guarantees of Direct Anonymous Attestation (DAA) with the efficiency, low-latency and accountability that is required for V2X. In contrast with the leading V2X standards, and uniquely in the literature, we prevent long-term vehicle pseudonym tracking despite dishonest and colluding certificate authorities and whilst retaining centralised authority over revocation. Our Vehicular DAA (VDAA) scheme includes a novel construction that optimally limits Sybil attacks by restricting each vehicle to one anonymous pseudonym-request per epoch. We present a new security model for VDAA and show that we can reduce the unforgeability and unlinkability of our Elliptic Curve Digital Signature Algorithm (ECDSA) broadcast messages to the security ofthe underlying DAA scheme.

KW - V2X

KW - Attestation

KW - Authentication

M3 - Conference contribution

BT - 5th IEEE European Symposium on Security and Privacy

PB - IEEE Computer Society Press

T2 - 5th IEEE European Symposium on Security and Privacy (EuroS&P)

Y2 - 7 September 2020 through 11 September 2020

ER -

A Vehicular DAA Scheme for Unlinkable ECDSA Pseudonyms in V2X Christopher Hicks

Abstract

Conference

Keywords

Fingerprint

Cite this