Presentation is loading. Please wait.

Presentation is loading. Please wait.

Group-based Source Authentication in VANETs You Lu, Biao Zhou, Fei Jia, Mario Gerla UCLA {youlu, zhb, feijia,

Published byShon White Modified over 9 years ago

Similar presentations

Presentation on theme: "Group-based Source Authentication in VANETs You Lu, Biao Zhou, Fei Jia, Mario Gerla UCLA {youlu, zhb, feijia,"— Presentation transcript:

1 Group-based Source Authentication in VANETs You Lu, Biao Zhou, Fei Jia, Mario Gerla UCLA {youlu, zhb, feijia, gerla}@cs.ucla.edu

2 VANET slide VANET Scenario

3 The problem: authentication VANET broadcast messages: – Beacons for safe driving, surveillance, situation etc Problem: malicious sources can generate bogus messages – Attack models Critical issue we address here: – Sender authentication (within group) – Not addressed here: Non repudiation Privacy protection, Secret delivery to selected group (e.g. police agents, taxi cabs, coalition members), etc

4 Existing Authent. solutions PKI – a bit too expensive TESLA – cheaper, but..slow (Toyota et al)

5 TESLA: One Way Hash Chain In TESLA a source generate a one way chain of length L by randomly picking the last element S L of the chain S and by repeatedly applying the Hash function F( ) to get the next values one after the other. After creating the one way chain, the source stamps each packet with the chain values in reverse order. The receiver can verify S i+1 only after it receives S i from the source. At this time, the receiver also verifies the source authenticity

6 TESLA overview (cont) TESLA (Time efficient stream loss tolerant authentication) – Assumption: 2- time slot delay in authentication Packet P1 received in slot 5; K5 received in slot 7 – Authentication of P1: Verify K5 from K4 pr K3 (explain how) MAC(K5, P1) = Verify MAC – Pros: Robust to packet loss; Data all in plain text. – Con: delayed authentication.

7 Exploit Group Motion to reduce latency Group Scenario – Nodes move in groups – Each group is a closed broadcast group: Military peace keeping patrols; police agents in a mission; presidential motorcade. – Group nodes acquire SECRET initial group attribute, and initial mobility counter before joining Our Goal: reduce the key disclosure delay in group broadcast

8 Group-based Source Authentication (GSA) Basic Idea:

9 Protocol Design – How to define a group? Group Identifier, such as group name, group ID… Dynamic Attributes, such location intersection, group speed etc Must be better explained Initial Group property is shared by the same group. – How to ensure disclosure key cannot be captured and replayed by attacker? Encrypt the disclosure key with secret group ID. External nodes cannot get K7, secret group ID never transmitted in plain text. Proactively updated dynamic attributed for extra security Encrypt (K7, secret group ID) Group-based Source Authentication (GSA)

10 Group Authentication Phase – The sender broadcasts nonce with own GID and requests receivers in the group to authenticate themselves – Each Receiver R uses individual TESLA reverse hash chain. Receiver Packet: Time interval 3 – After key disclosure delay period, each receiver sends K3 – Sender checks if R is in the same group as itself. Same Group member – Now all group members are authenticated and “in synch” – Periodically authenticate group membership after timeout Step 1: Group Authentication

11 Data Transfer Phase – Inter-group Use conventional TESLA-like scheme (large latency) – Intra-group Instant KEY disclosure Packet sent at time i: Group members: – decrypt K_i using group_property key – verify Packet_i immediately using decrypted K_i. Step 2: Group-based Source Authentication (GSA)

12 Evaluation

13 Experiments Average End-to-End Latency: Testbed: 7 Laptops with Intel M740 processor, 1.73 Ghz Number of active GSA Sessions: from 5 to 500

14 Experiments (cont) CPU and Memory Usage:

15 Experiments (cont) MAC Average Computing Time:

16 Experiments (cont) Performance Comparison of GSA and TESLA for single session: GSA guarantees efficient, safe delivery of vehicular alarms within a group MAC Compute TimeEnd-to-End DelayVerification Time TESLA11ms186ms2.3s GSA10ms195ms0.44ms

17 Conclusions GSA is applicable in the following scenarios: – Nodes move in group – Group nodes know initial group secret and initial mobility attributes – Incremental addition of attributes supported Experiment results: – In TESLA, large latency due to key disclosure delay – GSA reduces key disclosure delay to significant groups (e.g., vehicles in the same convoy) Future work: – Dynamic Group ID certificates to short lived urban vehicle platoons – Safety improvement resulting from of reduced latency – Secret content to selected groups (e.g., police) – Privacy preservation

18 Thanks Q & A

Download ppt "Group-based Source Authentication in VANETs You Lu, Biao Zhou, Fei Jia, Mario Gerla UCLA {youlu, zhb, feijia,"

Similar presentations

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.
Efficient Secure Aggregation in VANETs Maxim Raya, Adel Aziz, and Jean-Pierre Hubaux Laboratory for computer Communications and Applications (LCA) EPFL.

Efficient Secure Aggregation in VANETs Maxim Raya, Adel Aziz, and Jean-Pierre Hubaux Laboratory for computer Communications and Applications (LCA) EPFL.
Giuseppe Bianchi Lecture 6.1: Extras: Merkle Trees.

Giuseppe Bianchi Lecture 6.1: Extras: Merkle Trees.
Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.

Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 6. Security in Mobile Ad-Hoc Networks.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 6. Security in Mobile Ad-Hoc Networks.
Off-the-Record Communication, or, Why Not To Use PGP

Off-the-Record Communication, or, Why Not To Use PGP
Urban Multi-Hop Broadcast Protocol for Inter-Vehicle Communication Systems Δημόκας Νικόλαος Data Engineering Laboratory, Aristotle University of Thessaloniki.

Urban Multi-Hop Broadcast Protocol for Inter-Vehicle Communication Systems Δημόκας Νικόλαος Data Engineering Laboratory, Aristotle University of Thessaloniki.
Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)
LOGO Multi-user Broadcast Authentication in Wireless Sensor Networks ICU 20082065 Myunghan Yoo.

LOGO Multi-user Broadcast Authentication in Wireless Sensor Networks ICU Myunghan Yoo.
2015-6-1 1 Secure Vehicular Communications Speaker: Xiaodong Lin University of Waterloo

Secure Vehicular Communications Speaker: Xiaodong Lin University of Waterloo
Network Access Control for Mobile Ad Hoc Network Pan Wang North Carolina State University.

Network Access Control for Mobile Ad Hoc Network Pan Wang North Carolina State University.
Secure and Efficient Key Management in Mobile Ad Hoc Networks Bing Wu, Jie Wu, Eduardo B. Fernandez, Mohammad Ilyas, Spyros Magliveras Department of Computer.

Secure and Efficient Key Management in Mobile Ad Hoc Networks Bing Wu, Jie Wu, Eduardo B. Fernandez, Mohammad Ilyas, Spyros Magliveras Department of Computer.
LAAC: A Location-Aware Access Control Protocol YounSun Cho, Lichun Bao and Michael T. Goodrich IWUAC 2006.

LAAC: A Location-Aware Access Control Protocol YounSun Cho, Lichun Bao and Michael T. Goodrich IWUAC 2006.
Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
Security Issues In Sensor Networks By Priya Palanivelu.

Security Issues In Sensor Networks By Priya Palanivelu.
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.

Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Timed Efficient Stream Loss-Tolerant Authentication. (RFC 4082) Habib Moukalled 1/29/08.

Timed Efficient Stream Loss-Tolerant Authentication. (RFC 4082) Habib Moukalled 1/29/08.

Similar presentations

Ads by Google