Papers
Comments on “A Cross-Layer Approach to Privacy-Preserving Authentication in WAVE-Enabled VANETs” by Biswas and Miˇsi´c
- Research Fields산업수학전략연구부
- AuthorKyung-Ah Shim
- JournalIEEE Transactions on Vehicular Technology 66(11) (2017
- Link http://dx.doi.org/10.1109/TVT.2017.2755739
- Classification of papersSCI
A WAVE-based cross-layer anonymous authentication scheme based on a variant of ECDSA (Biswas and Misic “A Cross-layer approach to privacy-preserving authentication in WAVE-enabled VANETs,” IEEE Trans. Veh. Technol., vol. 62, no. 5, pp. 2182-2192, Jun. 2013.) was published for authenticity of vehicular safety application messages. Our result shows that, contrary to what is claimed, the scheme is entirely broken due to the insecurity of their underlying signature scheme: Their modification of ECDSA is insecure against secret key recovery attacks where anyone can recover OBUs' or mobile nodes' private keys from transmitted signed messages just eavesping.
A WAVE-based cross-layer anonymous authentication scheme based on a variant of ECDSA (Biswas and Misic “A Cross-layer approach to privacy-preserving authentication in WAVE-enabled VANETs,” IEEE Trans. Veh. Technol., vol. 62, no. 5, pp. 2182-2192, Jun. 2013.) was published for authenticity of vehicular safety application messages. Our result shows that, contrary to what is claimed, the scheme is entirely broken due to the insecurity of their underlying signature scheme: Their modification of ECDSA is insecure against secret key recovery attacks where anyone can recover OBUs' or mobile nodes' private keys from transmitted signed messages just eavesping.