论文信息 - Cryptanalysis on a Portable Privacy-Preserving Authentication and Access Control Protocol in VANETs

Cryptanalysis on a Portable Privacy-Preserving Authentication and Access Control Protocol in VANETs

Recently, Yeh et al. proposed a portable privacy-preserving authentication and access control protocol, named PAACP, for non-safety applications in vehicular ad hoc networks. PAACP not only accomplishes authentication, key establishment and privacy preservation, but also considers the scalability and differentiated service access control issues in the protocol design. However, this causes some security flaws. Our results show that PAACP is insecure against privilege elevation attack. In this attack, any two or more vehicles can conspire to elevate access privileges for desired Internet services.

[1] Yen-Cheng Chen,et al. An Efficient Authentication and Access Control Scheme Using Smart Cards , 2005, 11th International Conference on Parallel and Distributed Systems (ICPADS'05).

[2] Pin-Han Ho,et al. Security in vehicular ad hoc networks , 2008, IEEE Commun. Mag..

[3] Hung-Yu Chien,et al. ABAKA: An Anonymous Batch Authenticated and Key Agreement Scheme for Value-Added Services in Vehicular Ad Hoc Networks , 2011, IEEE Transactions on Vehicular Technology.

[4] Lee Armstrong,et al. DEDICATED SHORT RANGE COMMUNICATIONS (DSRC) HOME , 2002 .

[5] Pin-Han Ho,et al. GSIS: A Secure and Privacy-Preserving Protocol for Vehicular Communications , 2007, IEEE Transactions on Vehicular Technology.

[6] Maxim Raya,et al. Securing vehicular ad hoc networks , 2007, J. Comput. Secur..

[7] Chun-Ta Li,et al. A secure and efficient communication scheme with authenticated key establishment and privacy preserving for vehicular ad hoc networks , 2008, Comput. Commun..

[8] Yen-Cheng Chen,et al. PAACP: A portable privacy-preserving authentication and access control protocol in vehicular ad hoc networks , 2011, Comput. Commun..