Vspp: Verifiable, shareable, and privacy-preserving access control scheme for IoV

IF 3.5 3区计算机科学 Q2 COMPUTER SCIENCE, INFORMATION SYSTEMS Pervasive and Mobile Computing Pub Date : 2025-02-01 DOI:10.1016/j.pmcj.2025.102014

Youwang Sun , Chunhua Jin , Xinying Liu , Lingwen Kong , Changhui Yu , Guanhua Chen , Liqing Chen

{"title":"Vspp: Verifiable, shareable, and privacy-preserving access control scheme for IoV","authors":"Youwang Sun , Chunhua Jin , Xinying Liu , Lingwen Kong , Changhui Yu , Guanhua Chen , Liqing Chen","doi":"10.1016/j.pmcj.2025.102014","DOIUrl":null,"url":null,"abstract":"<div><div>Internet of Vehicles (IoV) is a specialized application of Internet of Things (IoT), which interconnects vehicles and cloud platforms by using various communication devices and computing technologies to realize the transmission and sharing of vehicle information and enhance the driving experience. However, vehicle users face challenges in identity, data, and inside security when using IoV. In order to solve these problems, we propose a verifiable, shareable, and privacy-preserving access control scheme for IoV. In our scheme, we use zero-knowledge proof (ZKP) to ensure the security of user identity. More specifically, it can enable user anonymity and authenticity without revealing any additional information associated with the user. Meanwhile, we employ proxy re-encryption (PRE) to provide confidential sharing and secure the operation of data. In addition, we use the cryptographic reverse firewall (CRF) to ensure users’ internal security. It can prevent algorithm substitution attacks while ensuring chosen plaintext attack security. Finally, compared to other schemes, our scheme not only enables anonymity, traceability, unlinkability, and confidentiality but is also resistant to insider attacks. Performance evaluation shows that our scheme surpasses the other schemes in terms of time and storage costs.</div></div>","PeriodicalId":49005,"journal":{"name":"Pervasive and Mobile Computing","volume":"107 ","pages":"Article 102014"},"PeriodicalIF":3.5000,"publicationDate":"2025-02-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Pervasive and Mobile Computing","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1574119225000033","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Internet of Vehicles (IoV) is a specialized application of Internet of Things (IoT), which interconnects vehicles and cloud platforms by using various communication devices and computing technologies to realize the transmission and sharing of vehicle information and enhance the driving experience. However, vehicle users face challenges in identity, data, and inside security when using IoV. In order to solve these problems, we propose a verifiable, shareable, and privacy-preserving access control scheme for IoV. In our scheme, we use zero-knowledge proof (ZKP) to ensure the security of user identity. More specifically, it can enable user anonymity and authenticity without revealing any additional information associated with the user. Meanwhile, we employ proxy re-encryption (PRE) to provide confidential sharing and secure the operation of data. In addition, we use the cryptographic reverse firewall (CRF) to ensure users’ internal security. It can prevent algorithm substitution attacks while ensuring chosen plaintext attack security. Finally, compared to other schemes, our scheme not only enables anonymity, traceability, unlinkability, and confidentiality but is also resistant to insider attacks. Performance evaluation shows that our scheme surpasses the other schemes in terms of time and storage costs.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Vspp：可验证、可共享、保护隐私的IoV访问控制方案

车联网（IoV）是物联网（IoT）的专门应用，通过各种通信设备和计算技术将车辆与云平台互联，实现车辆信息的传输和共享，提升驾驶体验。然而，车辆用户在使用车联网时面临着身份、数据和内部安全方面的挑战。为了解决这些问题，我们提出了一种可验证、可共享、保护隐私的车联网访问控制方案。在我们的方案中，我们使用零知识证明（ZKP）来确保用户身份的安全性。更具体地说，它可以实现用户匿名性和真实性，而不会泄露与用户相关的任何附加信息。同时，采用代理再加密（PRE）技术实现数据的保密共享，保证数据的安全运行。此外，我们使用加密反向防火墙（CRF）来确保用户的内部安全。在保证所选明文攻击安全性的同时，可以防止算法替代攻击。最后，与其他方案相比，我们的方案不仅具有匿名性、可追溯性、不可链接性和保密性，而且还具有抗内部攻击的能力。性能评估表明，我们的方案在时间和存储成本方面优于其他方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Pervasive and Mobile Computing COMPUTER SCIENCE, INFORMATION SYSTEMS-TELECOMMUNICATIONS

CiteScore

7.70

自引率

2.30%

发文量

审稿时长

68 days

期刊介绍： As envisioned by Mark Weiser as early as 1991, pervasive computing systems and services have truly become integral parts of our daily lives. Tremendous developments in a multitude of technologies ranging from personalized and embedded smart devices (e.g., smartphones, sensors, wearables, IoTs, etc.) to ubiquitous connectivity, via a variety of wireless mobile communications and cognitive networking infrastructures, to advanced computing techniques (including edge, fog and cloud) and user-friendly middleware services and platforms have significantly contributed to the unprecedented advances in pervasive and mobile computing. Cutting-edge applications and paradigms have evolved, such as cyber-physical systems and smart environments (e.g., smart city, smart energy, smart transportation, smart healthcare, etc.) that also involve human in the loop through social interactions and participatory and/or mobile crowd sensing, for example. The goal of pervasive computing systems is to improve human experience and quality of life, without explicit awareness of the underlying communications and computing technologies. The Pervasive and Mobile Computing Journal (PMC) is a high-impact, peer-reviewed technical journal that publishes high-quality scientific articles spanning theory and practice, and covering all aspects of pervasive and mobile computing and systems.