An Identity-Based and Revocable Data-Sharing Scheme in VANETs

Abstract

Ensuring data confidentiality in a vehicular ad hoc network (VANET) is an increasingly important issue. Message confidentiality, user privacy and access control are the most important problems that affect services provided by VANETs. However, access control that addresses data downloads while preserving users' privacy remains an open problem. Based on a set of attributes, the ciphertext-policy attribute-based encryption (CP-ABE) algorithm proposes a party data encryption/decryption mechanism for shared data; consequently, the algorithm has become a popular solution for data-sharing access control. However, the current CP-ABE schemes are still infeasible for VANETs because these schemes use a single authority and inefficient encryption/decryption and ignore revocation mechanisms. Here, over CP-ABE with revocation, we introduce an identity-based scheme that achieves secure data sharing in VANETs. To reduce the computation load for in-vehicle on-board units (OBUs), we outsource computationally intensive encryption and decryption operations to cloud compute nodes. Attributes are decentralized and managed by application service providers that provide services to vehicles based on subscriptions. Comprehensive experimental results and security analysis show that our scheme achieves fine-grained access control while preserving user privacy. Through implementation, performance analysis demonstrates that our scheme is suitable for VANETs.