4.8 Article

HERMES: Scalable, Secure, and Privacy-Enhancing Vehicular Sharing-Access System

期刊

IEEE INTERNET OF THINGS JOURNAL
卷 9, 期 1, 页码 129-151

出版社

IEEE-INST ELECTRICAL ELECTRONICS ENGINEERS INC
DOI: 10.1109/JIOT.2021.3094930

关键词

Accountability; decentralization; security and privacy; sharing access; smart vehicles; vehicular systems

资金

  1. Swedish Foundation for Strategic Research (SSF) SURPRISE Project
  2. KAW Academy Fellowship Trustworthy IoT Project
  3. DKO Fellowship - University of Manchester
  4. EPSRC [EnnCore EP/T026995/1, SCorCH EP/V000497/1]
  5. CyberSecurity Research Flanders [VR20192203]
  6. Research Council KU Leuven C1 on Security and Privacy for Cyber-Physical Systems and the Internet of Things [C16/15/058]

向作者/读者索取更多资源

HERMES is a scalable, secure, and privacy-enhancing system for vehicle sharing and access. It utilizes cryptographic primitives and secure multiparty computation to protect the security and privacy of vehicle and transaction information. The evaluations show that HERMES outperforms SePCAR in terms of token generation efficiency and scalability, making it practical for real-world deployments with a large number of users and vehicles.
We propose HERMES, a scalable, secure, and privacy-enhancing system for users to share and access vehicles. HERMES securely outsources operations of vehicle access token (AT) generation to a set of untrusted servers. It builds on an earlier proposal, namely, SePCAR, and extends the system design for improved efficiency and scalability. To cater to system and user needs for secure and private computations, HERMES utilizes and combines several cryptographic primitives with secure multiparty computation (MPC) efficiently. It conceals secret keys of vehicles and transaction details from the servers, including vehicle booking details, AT information, and user and vehicle identities. It also provides user accountability in case of disputes. Besides, we provide semantic security analysis and prove that HERMES meets its security and privacy requirements. Last but not least, we demonstrate that HERMES is efficient and, in contrast to SePCAR, scales to a large number of users and vehicles, making it practical for real-world deployments. We build our evaluations with two different MPC protocols: 1) HtMAC-MiMC and 2) CBC-MAC-AES. Our results demonstrate that HERMES is in the range of milliseconds for generating an AT, whether it operates for a single-vehicle owner or a large rental-company branch with over 1000 vehicles; handling 546 and 84 AT generations per second, respectively. As a result, HERMES is an order of magnitude faster compared to SePCAR. Specifically, it delivers 696 (with HtMAC-MiMC) and 42 (with CBC-MAC-AES) more ATs compared to in SePCAR for a single-vehicle owner AT generation. Furthermore, we show that HERMES is practical on the vehicle side, too, as AT operations performed on a prototype vehicle on-board unit take only approximate to 62 ms.

作者

我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。

评论

主要评分

4.8
评分不足

次要评分

新颖性
-
重要性
-
科学严谨性
-
评价这篇论文

推荐

暂无数据
暂无数据