With the development of intelligent vehicles, in-vehicle security and privacy receive considerable attention from researchers and drivers. The data stored in a vehicle control unit (VCU) may contain privacy-sensitive content, which may be exposed to unauthorized devices or attackers due to the structural problems of the in-vehicle network. To overcome this problem, data can be encrypted with the target module’s key before being transmitted to the in-vehicle network. However, this may lead to another efficiency problem.
In this study, we propose a model that adopts the proxy re-encryption (PRE) scheme to the in-vehicle network. This is called privacy-enhancing in-vehicle network key management (PINK). In the proposed model, the data stored in the VCU is encrypted with a master key. In addition, when the stored data is requested by a node, it is transformed into a ciphertext that can only be decrypted with the node’s key using the PRE scheme. Moreover, for the case in which a special group of nodes request the data several times, simultaneously, a group-based key management scheme i provided. Further it is demonstrated using simulations that the proposed PINK scheme can be efficiently applied to the in-vehicle network.
KimmH. and HamH.S., Integrated fault tolerant system for automotive bus networks, in Computer Engineering and Applications (ICCEA), 2010, Second International Conference on, vol. 1, 2010, pp. 486–490.
2.
ZengW., KhalidM.A.S. and ChowdhuryS., In-vehicle networks outlook: Achievements and challenges, IEEE Communications Surveys Tutorials, 18 (2016), 1552–1571. thirdquarter.
3.
ParkY.H., JeD.H., ParkM.H. and SeoS.W., Efficient rekeying framework for secure multicast with diverse-subscriptionperiod mobile users, IEEE Transactions on Mobile Computing, 13 (2014), 783–796.
4.
ParkY.-H., Data encryption and key management for secure in-vehicle networks based on proxy re-encryption, in International Conference on Green and Human Interface Technology, (ICGHIT 2018), Chiang Mai, Thailand, 2018, pp. 192–195.
5.
KoscherK., CzeskisA., RoesnerF., PatelS., KohnoT., CheckowayS., McCoyD., KantorB., AndersonD., ShachamH. and SavageS., Experimental security analysis of a modern automobile, in 2010 IEEE Symposium on Security and Privacy,, (2010), pp. 447–462.
6.
KlebergerP., OlovssonT. and JonssonE., Security aspects of the in-vehicle network in the connected car, in 2011 IEEE Intelligent Vehicles Symposium (IV), (2011), pp. 528–533.
7.
LiuJ., ZhangS., SunW. and ShiY., In-vehicle network attacks and countermeasures: Challenges and future directions, IEEE Network, 31(5) (2017), 50–58.
8.
WooS., JoH.J. and LeeD.H., A practical wireless attack on the connected car and security protocol for in-vehicle can, IEEE Transactions on Intelligent Transportation Systems, 16 (2015), 993–1006.
9.
HoppeT., KiltzS. and DittmannJ., Security threats to auto- motive can networks — practical examples and selected short-term countermeasures, in Proceedings of the 27th International Conference on Computer Safety, Reliability, and Security, SAFECOMP ’08, Berlin, Heidelberg, Springer-Verlag, 2008, pp. 235–248.
10.
EnckW., GilbertP., ChunB.-G., CoxL.P., JungJ., Mc-DanielP. and ShethA.N., Taintdroid: An information- flow tracking system for realtime privacy monitoring on smartphones, in Proceedings of the 9th USENIX Conference on Operating Systems Design and Implementation, OSDI’10, Berkeley, CA, USA, 2010, pp. 393–407, USENIX Association.
11.
RoufI., MillerR., MustafaH., TaylorT., OhS., XuW., GruteserM., TrappeW. and SeskarI., Security and pri- vacy vulnerabilities of in-car wireless networks: A tire pressure monitoring system case study, in Proceedings of the 19th USENIX Conference on Security, USENIX Secu- rity’10, Berkeley, CA, USA, 2010, pp. 21–21, USENIX Association.
12.
CheckowayS., McCoyD., KantorB., AndersonD., ShachamH., SavageS., KoscherK., CzeskisA., RoesnerF. and KohnoT., Comprehensive experimental analyses of auto motive attack surfaces, in Proceedings of the 20th USENIX Conference on Security, SEC’11, Berkeley, CA,USA, 2011, pp. 6–6, USENIX Association.
13.
SchweppeH. and RoudierY., Security and privacy for invehicle networks, in 2012 IEEE 1st International Workshop on Vehicular Communications, Sensing, and Computing (VCSC), (2012), pp. 12–17.
14.
GrollA. and RulandC., Secure and authentic communication on existing in-vehicle networks, in 2009 IEEE Intelligent Vehicles Symposium, (2009), pp. 1093–1097.
15.
BlazeM., BleumerG. and StraussM., Divertible protocols and atomic proxy cryptography, in AdvancesinCryptology—EUROCRYPT’98 (NybergK., ed.), Berlin, Heidelberg, 1998, pp. 127–144, Springer Berlin Heidelberg.
16.
MamboM. and OlamotoE., Olamoto, Proxy cryptosystem: Delegation of the power to decrypt cipher-texts, vol. 80, 011997.
17.
IvanA. and DodisY., Proxy cryptography revisited, in Proceedings of the Network and Distributed System Security Symposium (NDSS), 2003.
18.
ZhouL., MarshM.A., SchneiderF.B. and RedzA., Distributed blinding for distributed elgamal re-encryption, in 25th IEEE International Conference on Distributed Computing Systems (ICDCS’05)2005. pp. 824–824.
19.
CanettiR. and HohenbergerS., Chosen-ciphertext secure proxy re-encryption, in Proceedings of the 14th ACM Conference on Computer and Communications Security, CCS ’07, New York, NY, USA, ACM, 2007, pp. 185–194.
20.
BlazeM., BleumerG. and StraussM., Divertible protocols and atomic proxy cryptography, In EUROCRYPT, Springer-Verlag, 1998, pp. 127–144.
21.
AtenieseG., FuK., GreenM. and HohenbergerS., Improved proxy re-encryption schemes with applications to secure distributed storage, ACM Trans Inf Syst Secur, 9 (2006), 1–30.
22.
HohenbergerS., RothblumG.N., ShelatA. and VaikuntanathanV., Securely obfuscating re-encryption, in Heidelberg, Proceedings of the 4th Conference on Theory of Cryptography, TCC’07Berlin, Heidelberg, Springer-Verlag, 2007. pp. 233–252BerlinSpringer-Verlag.
23.
LibertB. and VergnaudD., Tracing malicious proxies in proxy re-encryption, in Pairing-BasedCryptography–Pairing2008 (GalbraithS.D. and PatersonK.G., eds.), Berlin, Heidelberg, Springer Berlin Heidelberg, 2008, pp. 332–353.
24.
AtenieseG., BensonK. and HohenbergerS., Key-private proxy re-encryption, in Proceedings of the The Cryptog-raphers’ Track at the RSA Conference 2009 on Topics in Cryptology, CTRSA ’09, Berlin, Heidelberg, Springer-Verlag, 2009, pp. 279–294.
25.
GreenM. and AtenieseG., Identity-based proxy re-encryption, in Proceedings of the 5th International Conference on Applied Cryptography and Network Security, ACNS ’07, Berlin, Heidelberg, Springer-Verlag, 2007, pp. 288–306.
26.
ChowS.S.M., WengJ., YangY. and DengR.H., Efficient unidirectional proxy re-encryption, in Proceedings of the Third International Conference on Cryptology in Africa, AFRICACRYPT’10, Berlin, Heidelberg, Springer-Verlag, 2010, pp. 316–332.
