Efficient and Scalable Certificate Revocation List Distribution in Hierarchical VANETs

Vehicular ad-hoc networks (VANETs) have become an emerging technology that can fulfill the demand of evolving connected vehicles and growing need for Intelligent Transportation System (ITS). Certificates are used to secure vehicular communication but the certificates of vehicles need to be revoked if any vehicles are found as misbehaving nodes. In VANETs, certificate revocation list (CRL) must be quickly distributed to all vehicular nodes to prevent from undesirable communication with the malicious nodes. However, due to growing number of the certificates, the size of CRL continuously increases, and as a result, it becomes difficult to manage and distribute the CRL in the vehicular networks. In this paper, we present an efficient and scalable scheme to distribute certificate revocation list in the hierarchical architecture of VANETs. Our analysis shows that proposed scheme can distribute certificate revocation list promptly throughout the networks while maintaining low CRL size.

[1]  Peter E. Yee Updates to the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile , 2013, RFC.

[2]  D. Manivannan,et al.  An efficient protocol for authenticated and secure message delivery in vehicular ad hoc networks , 2016, Veh. Commun..

[3]  Panagiotis Papadimitratos,et al.  Scalable & Resilient Vehicle-Centric Certificate Revocation List Distribution in Vehicular Communication Systems , 2020, IEEE Transactions on Mobile Computing.

[4]  Panagiotis Papadimitratos,et al.  Eviction of Misbehaving and Faulty Nodes in Vehicular Networks , 2007, IEEE Journal on Selected Areas in Communications.

[5]  Carlisle M. Adams,et al.  X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP , 1999, RFC.

[6]  Liehuang Zhu,et al.  LESPP: lightweight and efficient strong privacy preserving authentication scheme for secure VANET communication , 2014, Computing.

[7]  Kiho Lim,et al.  Trajectory based pre-key exchange scheme for seamless vehicular networks connectivity , 2018, 2018 15th IEEE Annual Consumer Communications & Networking Conference (CCNC).

[8]  Levente Buttyán,et al.  On the Effectiveness of Changing Pseudonyms to Provide Location Privacy in VANETs , 2007, ESAS.

[9]  Giovanni Rigazzi,et al.  Optimized Certificate Revocation List Distribution for Secure V2X Communications , 2017, 2017 IEEE 86th Vehicular Technology Conference (VTC-Fall).

[10]  Gao Ying,et al.  Research on CRL distribution in P2P systems , 2009, 2009 2nd IEEE International Conference on Computer Science and Information Technology.

[11]  Yih-Chun Hu,et al.  Efficient Certificate Revocation List Organization and Distribution , 2011, IEEE Journal on Selected Areas in Communications.

[12]  Xiwei Wang,et al.  A scalable and secure key distribution scheme for group signature based authentication in VANET , 2017, 2017 IEEE 8th Annual Ubiquitous Computing, Electronics and Mobile Communication Conference (UEMCON).

[13]  Russ Housley,et al.  Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile , 2002, RFC.

[14]  Siu-Ming Yiu,et al.  SPECS: Secure and privacy enhancing communications schemes for VANETs , 2011, Ad Hoc Networks.

[15]  Xiaohui Liang,et al.  Pseudonym Changing at Social Spots: An Effective Strategy for Location Privacy in VANETs , 2012, IEEE Transactions on Vehicular Technology.

[16]  Kemal Akkaya,et al.  Scalable Certificate Revocation Schemes for Smart Grid AMI Networks Using Bloom Filters , 2017, IEEE Transactions on Dependable and Secure Computing.

[17]  Haoyu Song,et al.  Fast hash table lookup using extended bloom filter: an aid to network processing , 2005, SIGCOMM '05.