Securing V2X Communications for the Future - Can PKI Systems offer the answer?
| Autor: | Thanassis Giannetsos, Ioannis Krontiris |
|---|---|
| Jazyk: | angličtina |
| Rok vydání: | 2019 |
| Předmět: |
021110 strategic
defence & security studies Authentication Public Key Infrastructure Cryptographic primitive Revocation business.industry Computer science Interoperability 0211 other engineering and technologies Public key infrastructure 02 engineering and technology Trusted Computing Computer security computer.software_genre Public-key cryptography 13. Climate action 020204 information systems 0202 electrical engineering electronic engineering information engineering Direct Anonymous Attestation Location Privacy V2X Communications business computer |
| Zdroj: | Giannetsos, T & Krontiris, I 2019, Securing V2X Communications for the Future-Can PKI Systems offer the answer? in Proceedings of the 14th International Conference on Availability, Reliability and Security, ARES 2019 ., 3340523, Association for Computing Machinery, ACM International Conference Proceeding Series, 14th International Conference on Availability, Reliability and Security, Canterbury, United Kingdom, 26/08/2019 . https://doi.org/10.1145/3339252.3340523 Proceedings of the 14th International Conference on Availability, Reliability and Security-ARES 19 Proceedings of the 14th International Conference on Availability, Reliability and Security -ARES '19 ARES |
| DOI: | 10.1145/3339252.3340523 |
| Popis: | Over recent years, emphasis in secure V2X communications research has converged on the use of Vehicular Public Key Infrastructures (VPKIs) for credential management and privacy-friendly authentication services. However, despite the security and privacy guarantees offered by such solutions, there are still a number of challenges to be conquered. By reflecting on state-of-the-art PKI-based architectures, in this paper, we identify their limitations focusing on scalability, interoperability, pseudonym reusage policies and revocation mechanisms. We argue that in their current form such mechanisms cannot capture the strict security, privacy, and trust requirements of all involved stakeholders. Motivated by these weaknesses, we then proceed on proposing the use of trusted computing technologies as an enabler for more decentralized approaches where trust is shifted from the back-end infrastructure to the edge. We debate on the advantages offered and underline the specifis of such a novel approach based on the use of advanced cryptographic primitives, using Direct Anonymous Attestation (DAA) as a concrete example. Our goal is to enhance run-time security, privacy and trustworthiness of edge devices with a scalable and decentralized solution eliminating the need for federated infrastructure trust. Based on our findings, we posit open issues and challenges, and discuss possible ways to address them. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|