Research On Privacy-Preserving Authentication Scheme For Internet Of Vehicles Based On Blockchain

With the continuous progress of autonomous driving technology and the successful implementation of the 5G(5th Generation Wireless System)standard,the IoV(Internet of Vehicles)has become a research hotspot widely concerned by governments,research institutions,and vehicle manufacturing companies.IoV can provide people with a wide range of real-time traffic information services,such as intelligent routing,weather monitoring,and emergency calls,so ensuring the accuracy and reliability of the information transmitted in IoV is crucial.Researchers have therefore introduced authentication protocols into IoV to ensure communication entities’ identity legality and the security and reliability of the messages.However,the unique network characteristics of IoV pose challenges for authentication schemes in terms of security,scalability,efficiency,and privacy-preserving.To address these issues,this thesis analyzes the application requirements,system model,and network characteristics of IoV and designs the distributed privacy-preserving authentication schemes for IoV based on cryptography theory,blockchain technology,fuzzy biometric extraction algorithm,and key derivation algorithm.The primary research works of this thesis are summarized as follows:1.In response to the issues of the single point of failure in the Public Key Infrastructure(PKI)based key management architecture for IoV,this thesis proposes a blockchain-based distributed key management architecture.The architecture consists of two parts: The first part is the blockchain-based IoV public key management scheme,which serves as the basis for the bidirectional distributed identity authentication and session key transmission scheme proposed in this thesis.The second part is the blockchain-based vehicle anonymous public key management scheme.In this part,the BIP32 key derivation algorithm is reconstructed to generate an anonymous identity corresponding to the vehicle’s anonymous public key and anonymous secret key,which are managed using smart contracts with batch management functionality.This serves as the basis for the distributed authentication in the V2V(Vehicle-to-Vehicle)communication process.Then,in the experiment,two smart contracts are designed and implemented respectively,and the cost of each function in the smart contracts is tested.Security analysis shows that the blockchain-based key management architecture can enhance the network’s resistance to the single point of failure and has higher security and scalability.2.In response to the security and privacy issues in identity authentication and communication in V2R(Vehicle-to-RSU)and R2C(RSU-to-CS)scenarios,a bidirectional distributed privacy-preserving authentication and session key transmission scheme is proposed based on the “blockchain-based IoV public key management scheme”.In the login phase,the fuzzy biometric extraction algorithm is used to authenticate the vehicle owner.Then,using ECDSA(elliptic curve digital signature algorithm)and ECIES(elliptic curve integrated encryption scheme)technologies,bidirectional identity authentication between the communication parties and secure transmission of session keys are achieved.The session key established by the communication parties and the ECDSA can ensure data integrity,confidentiality,and authenticity in V2R and R2C.Security analysis shows the proposed scheme can provide higher security and cover more communication scenarios.Performance analysis shows that the proposed scheme reduces the computation and communication costs of authentication and session key transmission compared with the comparison schemes.3.In order to achieve distributed privacy-preserving authentication in V2V,a lightweight distributed privacy-preserving authentication scheme for V2V is designed based on the proposed “blockchain-based vehicle anonymous public key management scheme” as the underlying architecture.This scheme utilizes a fuzzy biometric extraction technique as the core module for vehicle owner authentication.It supports vehicles to retrieve data from the blockchain to authenticate the received message,thereby reducing the negative impact of its low throughput and high latency and addressing the key escrow problem.Additionally,the scheme introduces batch authentication to improve authentication efficiency.Security analysis demonstrates that the scheme achieves unlinkability,conditional privacy protection,traceability,and revocability,and it can withstand various known attacks,meeting the security requirements for V2V in IoV.Performance analysis shows that compared to similar schemes,the proposed scheme reduces computation and communication costs in signature generation,authentication,and vehicle identity tracing while providing distributed privacy-preserving authentication.