Preface

Road safety has been drawing increasing public attention, and there has been extensive effort in both industry and academia to mitigate the impact of traffic accidents. Recent advances in wireless technology bring promising new ways to facilitate road safety and traffic management, in which each vehicle, equipped with wireless communication devices [referred to as onboard units (OBUs)], is allowed to communicate with vehicles, other as well as with roadside units (RSUs), which are located at critical sections of the road, such as traffic lights and stop signs.

With OBUs and RSUs, a self-organized network called a vehicular ad hoc network (VANET) can be formed. Recently, this has emerged as a promising approach toward increasing road safety and efficiency, as well as improving driving experience. These goals will be accomplished through a wide variety of vehicle applications enabled by communication between vehicles, such as emergency braking warning. While society experiences tremendous benefits from adopting the new technologies, we also continue to face challenges; the biggest challenge is always how to address security and privacy issues that may be caused by the adoption of a new technology. The attractive features of VANETs will inevitably incur higher risks for abuse, if we do not take security and privacy issues into consideration before the wide deployment of such networks.

Being a special implementation of wireless ad hoc networks or mobile ad hoc networks (MANETs), a VANET has many unique features and applications. First, the connectivity among nodes (vehicles and RSUs) can often be highly transient and a one-time event; two vehicles may remain within their transmission ranges, or within a few wireless hops, for only a very limited period of time. As a result, vehicular network topology is highly dynamic. Further, a VANET is a huge network, which can potentially consist of millions of nodes (on-road vehicles and RSUs). Such size makes it very challenging to guarantee security and privacy in VANETs, particularly regarding message authenticity and integrity, as well as protecting user-related privacy information, such as the driver's name and the car's license plate, model, and traveling route. Unfortunately, existing studies on (and solutions for) communication security and privacy preservation cannot work effectively in VANETs, since they do not take the scalability and communication overhead into consideration. Message authentication is a common tool for ensuring information reliability, but it faces a challenge in VANETs. Particularly when a vehicle receives a large number of messages, traditional authentication mechanisms may generate unaffordable computational overhead on the vehicles, and bring unacceptable delay to time-critical applications (e.g., accident warning). Another challenge is the privacy concerns of vehicular communication, where the identity, position, and movement track of a specific vehicle should not be obtained by an unauthorized third party. We will refer to the combined concepts of message authenticity and privacy as anonymous message authentication.

In this book, we focus on message authentication and privacy issues in VANETs. We first provide an overview of security and privacy issues in VANETs, as well as the challenges facing VANETs in addressing these issues.

Chapter 2 identifies the unique security and privacy requirements of communications between different types of communication devices, including OBUs and RSUs in VANETs. We determined the most suitable cryptographic primitives and designed a secure and privacy-preserving protocol, which utilizes a combination of group signature and identity (ID)-based signature techniques to addresses these unique security and privacy requirements for vehicular communications.

Chapter 3 further exploits the unique challenges in privacy-preserving VANETs, i.e., how to efficiently deal with the growing revocation list while achieving conditional traceability. Based on the on-the-fly short-term anonymous key generation between OBUs and RSUs, we proposed an efficient conditional privacy preservation protocol, which is characterized by providing the conditional privacy preservation, improving efficiency in terms of the minimized anonymous key storage at each OBU and fast verification on safety messages.

Chapter 4 discusses the pseudonym changing strategy for location privacy in VANETs, as even though an OBU holds a large number of pseudonyms in VANETs, if the pseudonym does not change at the right time and right place, location privacy could still be violated. To enable vehicles to achieve high-level location privacy, we proposed an efficient pseudonym changing at social spots (PCS) strategy, where the social spots are the places where many vehicles temporarily gather.

Afterward, we take a cooperative approach toward addressing the technology's challenges of complex anonymous message authentication. Cooperation on anonymous message authentication in VANETs can be defined as vehicles and RSUs working together to ensure the integrity of messages received by each individually, as well as verifying that messages are indeed from legitimate users. Cooperation can take many forms and occur in many ways in VANETs, for example, either between vehicles and RSUs, or only among vehicles. Cooperation can also occur in many different ways, based on the roles of vehicles and RSUs in groups. For example, the resource-rich RSUs are usually seen as trusted entities in VANETs, since RSUs are usually deployed by governments or service providers, and their locations are fixed. As a result, a straightforward approach for message authentication in VANETs is to leverage the vast resources of RSUs and take advantage of their fixed locations. RSUs can be used to assist vehicles to authenticate messages received by the vehicles, largely by allowing resource-rich and trustworthy RSUs take the lead processing role in message authentication. In the case of cooperation only among vehicles, which will be very common in the early stages of VANET adoption (due to a lack of RSUs), each vehicle can probabilistically validate a certain percentage of its received messages in accordance with its own computing capacity, and report any invalid message detected. When work all units together, redundant effort in message authentication and verification can be minimized, if not entirely eliminated. Further, cooperation can occur by taking into consideration the context of messages transmitted over the vehicular networks. For example, of all vehicle communication network applications, dissemination of emergency messages to the vehicles in a specific area is one of the most crucial. The fast propagation of emergency and local warning messages to the approaching vehicles will be helpful for preventing secondary accidents, especially in conditions where visibility is impeded, such as fog. In most cases, a VANET performs such an emergency message propagation in a multihop transmission manner, particularly in the suburban areas where fewer RSUs are installed. Given any emergency, it is expected that multiple sensing vehicles in the area could detect the same common event, and therefore, taking advantage of this property to cross-validate the emergency event could possibly serve as a promising approach toward enhancing the overall security level of VANETs. Such a method of cross-checking the emergency event by collecting the feedback of witnesses is defined as a voting mechanism, which was originally used to detect the misbehaving nodes in a distributed ad hoc network without any centralized security authority. This kind of cooperation is often applied to deal with special types of messages, such as emergency messages, and the mechanism can be migrated to VANETs to enhance the overall security of emergency events authentication.

We classify cooperative authentication mechanisms in VANETs into four categories: RSU-aided authentication (Chapter 5), TESLA-based authentication (Chapter 6), distributed cooperative authentication (Chapter 7), and context-aware cooperative authentication (Chapter 8). For each category, we introduce a corresponding protocol for message authentication, and will also analyze security, efficiency, and effectiveness of these proposed cooperative authentication protocols. Both theoretical analysis and simulation results show that cooperative authentication is a promising and effective way to achieve secure message authentication for vehicular communications.

Because of the movement of the vehicles, the vehicles can roam among RSUs deployed along the roadsides. The final chapter looks into the challenges in realizing seamless mobility in VANETs. By considering some intrinsic features of vehicular communication networking, such as predictable vehicle movement, we introduce a seamless authentication scheme based on mobility prediction to achieve fast authentication and reduce the authentication delay.

The book primarily presents our research results of anonymous message authentication in VANETs, but also provides a comprehensive survey of existing challenges and solutions in security and privacy in VANETs.

We wish to thank many people whose insightful comments and suggestions have helped us significantly improve our research work. In particular, we would like to acknowledge the following researchers who have collaborated with us on this exciting research topic described in the book: Prof. Xuemin (Sherman) Shen, Prof. Pin-Han Ho, Prof. Haojin Zhu, Dr. Chenxi Zhang, Xiaoting Sun, Dr. Xiaoyu Wang, Dr. Xiaohui Liang, Dr. Tom H. Luan, and Dr. Xu Li. Our discussions and collaboration with them provide a critical foundation for the current book. Also,...