Privacy-Preserving Authentication and Service Rights Management for the Internet of Vehicles

Abstract

Due to the growth of the broadband and wireless communications network, it has been increasingly popular in recent years to promote the Internet of Vehicles (IoV) as a research topic. The IoV is different from Vehicular Ad hoc NETworks (VANETs). The IoV requires more security considerations than a VANET would. For example, the services provided must be effectively managed. Some vehicles must allow different drivers to use them, and are given different service rights (In a taxi fleet, the same car is driven by different people in shifts) and the identities of vehicles and drivers must be protected by anonymity. Given the above security considerations, we present a method of privacy-preserving authentication and services access control in the IoV. In this system, only the Certificate Authority (CA) can perform the revocation process when a vehicle or driver is judged as invalid. To achieve this purpose of services access control, we propose a new Service Rights Management (SRM) scheme that is given their different services depending on the different objects and then assign different digital rights for managing services and access rights separately. In threats and at-tacks analysis, our scheme is compared to other mechanisms of preventing all kinds of wireless network attacks.