CL-CPPA: Certificate-Less Conditional Privacy-Preserving Authentication Protocol for the Internet of Vehicles

The conditional privacy-preserving authentication (CPPA) protocol has applications in the construction of secure Internet of Vehicles (IoV) due to its capability to achieve both privacy preservation and authentication simultaneously. We demonstrate the challenge in designing the secure CPPA protocols, e.g., the insecurity of master key, invalidity of pseudo-identity (PID), linkability, etc. Then, we present a certificate-less CPPA (CL-CPPA) protocol to be used in vehicular environments that supports both privacy and security requirements in the IoV system, where the vehicles and trusted authority (TA) does not need to store any certificates for verification and tracking, respectively. We also demonstrate that our proposed CL-CPPA protocol is secure against modification attacks, impersonation attacks, and other existing attacks. A comparative summary shows that our proposed CL-CPPA protocol has lower computation and communication costs in comparison to the state-of-the-art protocols.