• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.19 no.4
• /
• pp.105-114
• /
• 2009

Messages exchanged among vehicles must be authenticated in order to provide collision avoidance and cooperative driving services in VANET. However, digitally signing the messages can violate the privacy of users. Therefore, we require authentication systems that can provide conditional anonymity. Recently, Zhang et al. proposed conditionally anonymous authentication system for VANET using tamper-resistant hardware. In their system, vehicles can generate identity-based public keys by themselves and use them to sign messages. Moreover, they use batch verification to effectively verify signed messages. In this paper, we provide amelioration to Zhang et al.'s system in the following respects. First, we use a more efficient probabilistic signature scheme. Second, unlike Zhang et al., we use a security proven batch verification scheme. We also provide effective solutions for key revocation and anonymity revocation problems.

• Journal of Convergence for Information Technology
• /
• v.9 no.9
• /
• pp.13-19
• /
• 2019

This paper analyzed the SCMS and pilot policy, which is pursued by the U.S. government in connected vehicles. SCMS ensures authentication, integrity, privacy and interoperability. The SCMS Support Committee of U.S. government has established the National Unit SCMS and is responsible for system-wide control. Of course, it introduces security policy, procedures and training programs making. In this paper, the need for SCMS to be applied to C-ITS was discussed. The structure of the SCMS was analyzed and the U.S. government's filot policy for connected vehicles was discussed. The discussion of the need for SCMS highlighted the importance of the role and responsibilities of SCMS between vehicles and vehicles. The security certificate management system looked at the structure and analyzed the type of certificate used in the vehicle or road side unit (RSU). The functions and characteristics of the certificates were reviewed. In addition, the functions of basic safety messages were analyzed with consideration of the detection and warning functions of abnormal behavior in SCMS. Finally, the status of the pilot project for connected vehicles currently being pursued by the U.S. government was analyzed. In addition to the environment used for the test, the relevant messages were also discussed. We also looked at some of the issues that arise in the course of the pilot project.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2011.04a
• /
• pp.889-890
• /
• 2011

VANET(Vehicular Ad-hoc Network)의 V2V 통신의 경우 차량 간의 안전한 통신을 위해 차량 인증 및 조건부 프라이버시 보호를 제공하기 위해서 그룹 서명 기법을 사용한 보안 기술들이 다양하게 연구되고 있다. 하지만 VANET은 MANET과 달리 빠른 이동성을 가지는 노드의 특성상 그룹 구성원의 가입과 탈퇴가 빈번하다는 문제점을 가지고 있다. 본 논문에서는 그룹 구성원의 빈번한 가입과 탈퇴를 방지하기 위해 VANET 환경에 적합하고, 그룹 관리자에 의해 생성되는 차량 개인서명키에 대한 키 위탁문제를 해결하기 위한 그룹서명방식을 제안한다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2011.11a
• /
• pp.951-954
• /
• 2011

IT 기술의 발전으로 M2M 시장이 급부상하고 있는 가운데 M2M 응용분야 중 텔레매틱스의 개념 및 차량 네트워크 보안의 취약성을 알아보았다. 차량 및 IT 기술의 융합과 이동통신망 기술의 발전은 사용자에게 제공되는 서비스의 질은 향상 시켰지만, 이로 인한 보안 위험성은 더 많아지고 다양해졌다. 이에 본 논문에서는 텔레매틱스의 새로운 비즈니스 모델과 이로 인해 발생 될 수 있는 차량 이동통신망 보안의 취약성을 분석하였다. 이 중 발생할 수 있는 위장공격을 예방하기 위해 M2M 기기와 스마트폰의 상호 인증 기법을 제시하였다.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.32 no.11A
• /
• pp.1128-1137
• /
• 2007

Recently, according to being advanced internet, mobile communication technique, Telematics environment which users in vehicle can use internet service in LAN(Local Area Network) via mobile device has being realized. In this paper, we propose the remote user authentication protocol to solve these issues. Additionally, we use biometrics(fingerprint) for our user authentication protocol cause it can provide to avoid critical weakness that can be lost, stolen, or forgotten and to make authentication easily. In our user authentication protocol, to protect the biometric we use session key which is generated from master key distributed in our key distribution protocol. In particular, we propose secure protocol between APs considering weakness of security in mobile environment. Based on implementation of our proposed protocol, we conform that our proposed protocols are secure from various attack methods and provide real-time authentication.

• Journal of Korea Society of Industrial Information Systems
• /
• v.17 no.7
• /
• pp.51-57
• /
• 2012

This paper proposes a group key design based on ECDH(Elliptic Curve Diffie Hellman) which guarantees secure V2V and V2I communication. The group key based on ECDH generates the VGK(Vehicular Group key) which is a group key between vehicles, the GGK(Global Group Key) which is a group key between vehicle groups, and the VRGK(Vehicular and RSU Group key) which is a group key between vehicle and RSUs with ECDH algorithm without an AAA server being used. As the VRGK encrypted with RGK(RSU Group Key) is transferred from the current RSU to the next RSU through a secure channel, a perfect forward secret security is provided. In addition, a Sybil attack is detected by checking whether the vehicular that transferred a message is a member of the group with a group key. And the transmission time of messages and the overhead of a server can be reduced because an unnecessary network traffic doesn't happen by means of the secure communication between groups.

• The Journal of The Korea Institute of Intelligent Transport Systems
• /
• v.9 no.2
• /
• pp.104-109
• /
• 2010

In this paper, we propose a user authentication technology to protect wiretapping and attacking from others in the telematics environment, which users in vehicle can use internet service in local area network via mobile device. In the proposed user authentication technology, the packet speech data is encrypted by speech-based biometric key, which is generated from the user's speech signal. Thereafter, the encrypted data packet is submitted to the information communication server(ICS). At the ICS, the speech feature of the user is reconstructed from the encrypted data packet and is compared with the preregistered speech-based biometric key for user authentication. Based on implementation of our proposed communication method, we confirm that our proposed method is secure from various attack methods.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2012.04a
• /
• pp.722-725
• /
• 2012

차량통신은 차량 내부 단말기 (OBU)를 통해 차량 간 (V2V) 통신을 제공하고, 노변 장치 (RSU)를 통해 차량과 인프라 간 (V2I) 통신을 제공하는 기술이다. 이를 통해 사용자는 교통사고 예방을 위한 서비스, 인터넷 연결 등을 통한 다양한 서비스를 제공받을 수 있다. 하지만 차량 주행 시 통신의 안전성이 보장되지 않는다면 위장공격 및 메시지 변조 공격 등으로 인해 사고를 발생 시킬 수 있다. 따라서 인증 및 무결성 제공 등 차량통신 메시지의 안전성이 보장 되어야 한다. 본 논문에서는 차량통신에서의 보안 서비스를 분석하였고, IEEE 1609.2에 정의된 보안 알고리즘의 요구조건을 만족하는지 분석하여 적합성을 판단하였다.

• TTA Journal
• /
• s.166
• /
• pp.92-98
• /
• 2016

• Electrical & Electronic Materials
• /
• v.26 no.6
• /
• pp.3-8
• /
• 2013