Cryptology ePrint Archive: Report 2016/1158

Activate Later Certificates for V2X -- Combining ITS efficiency with privacy

Eric R. Verheul

Abstract: We specify Issue First Activate Later (IFAL). This is an ETSI type of V2X Public Key Infrastructure based on short-lived pseudonymous certificates without Certificate Revocation Lists. IFAL certificates are valid in the future but can only be used together with periodically provided activation codes. IFAL supports controlled de-pseudonymization enabling provisioning to stop for misbehaving vehicles. IFAL allows for flexible policies, trade-offs between three essential V2X properties: trust, privacy and usability. IFAL activation codes are small and can be sent in an SMS, through roadside equipment or even broadcasted. Like the Butterfly scheme, IFAL uses key derivation with one base private/public key pair. However in IFAL the security module can be simple as it can be kept oblivious of key derivation.

Category / Keywords: deniability of implicit certificates, elliptic curve cryptography, ITS, privacy, pseudonyms, V2X

Date: received 17 Dec 2016, last revised 22 Dec 2016

Contact author: eric verheul at keycontrols nl

Available format(s): PDF | BibTeX Citation

Version: 20161222:090905 (All versions of this report)

Short URL:

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]