CHAM-CLAS: A Certificateless Aggregate Signature Scheme with Chameleon Hashing-Based Identity Authentication for VANETs
Vehicular ad hoc networks (VANETs), which are the backbone of intelligent transportation systems (ITSs), facilitate critical data exchanges between vehicles. This necessitates secure transmission, which requires guarantees of message availability, integrity, source authenticity, and user privacy. Mo...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2024-09-01
|
| Series: | Cryptography |
| Subjects: | |
| Online Access: | https://www.mdpi.com/2410-387X/8/3/43 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1850261590428876800 |
|---|---|
| author | Ahmad Kabil Heba Aslan Marianne A. Azer Mohamed Rasslan |
| author_facet | Ahmad Kabil Heba Aslan Marianne A. Azer Mohamed Rasslan |
| author_sort | Ahmad Kabil |
| collection | DOAJ |
| description | Vehicular ad hoc networks (VANETs), which are the backbone of intelligent transportation systems (ITSs), facilitate critical data exchanges between vehicles. This necessitates secure transmission, which requires guarantees of message availability, integrity, source authenticity, and user privacy. Moreover, the traceability of network participants is essential as it deters malicious actors and allows lawful authorities to identify message senders for accountability. This introduces a challenge: balancing privacy with traceability. Conditional privacy-preserving authentication (CPPA) schemes are designed to mitigate this conflict. CPPA schemes utilize cryptographic protocols, including certificate-based schemes, group signatures, identity-based schemes, and certificateless schemes. Due to the critical time constraints in VANETs, efficient batch verification techniques are crucial. Combining certificateless schemes with batch verification leads to certificateless aggregate signature (CLAS) schemes. In this paper, cryptanalysis of Xiong’s CLAS scheme revealed its vulnerabilities to partial key replacement and identity replacement attacks, alongside mathematical errors in the batch verification process. Our proposed CLAS scheme remedies these issues by incorporating an identity authentication module that leverages chameleon hashing within elliptic curve cryptography (CHAM-CLAS). The signature and verification modules are also redesigned to address the identified vulnerabilities in Xiong’s scheme. Additionally, we implemented the small exponents test within the batch verification module to achieve Type III security. While this enhances security, it introduces a slight performance trade-off. Our scheme has been subjected to formal security and performance analyses to ensure robustness. |
| format | Article |
| id | doaj-art-6a610b333a5b4dd8afdedffe4d4e8f25 |
| institution | OA Journals |
| issn | 2410-387X |
| language | English |
| publishDate | 2024-09-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | Cryptography |
| spelling | doaj-art-6a610b333a5b4dd8afdedffe4d4e8f252025-08-20T01:55:22ZengMDPI AGCryptography2410-387X2024-09-01834310.3390/cryptography8030043CHAM-CLAS: A Certificateless Aggregate Signature Scheme with Chameleon Hashing-Based Identity Authentication for VANETsAhmad Kabil0Heba Aslan1Marianne A. Azer2Mohamed Rasslan3Center of Informatics Science, Faculty of Information Technology and Computer Science, Nile University, Giza 12588, EgyptCenter of Informatics Science, Faculty of Information Technology and Computer Science, Nile University, Giza 12588, EgyptCenter of Informatics Science, Faculty of Information Technology and Computer Science, Nile University, Giza 12588, EgyptInformatics Department, Electronics Research Institute, Cairo 12622, EgyptVehicular ad hoc networks (VANETs), which are the backbone of intelligent transportation systems (ITSs), facilitate critical data exchanges between vehicles. This necessitates secure transmission, which requires guarantees of message availability, integrity, source authenticity, and user privacy. Moreover, the traceability of network participants is essential as it deters malicious actors and allows lawful authorities to identify message senders for accountability. This introduces a challenge: balancing privacy with traceability. Conditional privacy-preserving authentication (CPPA) schemes are designed to mitigate this conflict. CPPA schemes utilize cryptographic protocols, including certificate-based schemes, group signatures, identity-based schemes, and certificateless schemes. Due to the critical time constraints in VANETs, efficient batch verification techniques are crucial. Combining certificateless schemes with batch verification leads to certificateless aggregate signature (CLAS) schemes. In this paper, cryptanalysis of Xiong’s CLAS scheme revealed its vulnerabilities to partial key replacement and identity replacement attacks, alongside mathematical errors in the batch verification process. Our proposed CLAS scheme remedies these issues by incorporating an identity authentication module that leverages chameleon hashing within elliptic curve cryptography (CHAM-CLAS). The signature and verification modules are also redesigned to address the identified vulnerabilities in Xiong’s scheme. Additionally, we implemented the small exponents test within the batch verification module to achieve Type III security. While this enhances security, it introduces a slight performance trade-off. Our scheme has been subjected to formal security and performance analyses to ensure robustness.https://www.mdpi.com/2410-387X/8/3/43privacy-preserving authenticationidentity-basedcertificateless aggregate signaturevehicular ad hoc networks |
| spellingShingle | Ahmad Kabil Heba Aslan Marianne A. Azer Mohamed Rasslan CHAM-CLAS: A Certificateless Aggregate Signature Scheme with Chameleon Hashing-Based Identity Authentication for VANETs Cryptography privacy-preserving authentication identity-based certificateless aggregate signature vehicular ad hoc networks |
| title | CHAM-CLAS: A Certificateless Aggregate Signature Scheme with Chameleon Hashing-Based Identity Authentication for VANETs |
| title_full | CHAM-CLAS: A Certificateless Aggregate Signature Scheme with Chameleon Hashing-Based Identity Authentication for VANETs |
| title_fullStr | CHAM-CLAS: A Certificateless Aggregate Signature Scheme with Chameleon Hashing-Based Identity Authentication for VANETs |
| title_full_unstemmed | CHAM-CLAS: A Certificateless Aggregate Signature Scheme with Chameleon Hashing-Based Identity Authentication for VANETs |
| title_short | CHAM-CLAS: A Certificateless Aggregate Signature Scheme with Chameleon Hashing-Based Identity Authentication for VANETs |
| title_sort | cham clas a certificateless aggregate signature scheme with chameleon hashing based identity authentication for vanets |
| topic | privacy-preserving authentication identity-based certificateless aggregate signature vehicular ad hoc networks |
| url | https://www.mdpi.com/2410-387X/8/3/43 |
| work_keys_str_mv | AT ahmadkabil chamclasacertificatelessaggregatesignatureschemewithchameleonhashingbasedidentityauthenticationforvanets AT hebaaslan chamclasacertificatelessaggregatesignatureschemewithchameleonhashingbasedidentityauthenticationforvanets AT marianneaazer chamclasacertificatelessaggregatesignatureschemewithchameleonhashingbasedidentityauthenticationforvanets AT mohamedrasslan chamclasacertificatelessaggregatesignatureschemewithchameleonhashingbasedidentityauthenticationforvanets |