Paper 2021/018

Comments on ``On the Design of Conditional Privacy Preserving Batch Verification-Based Authentication Scheme for Internet of Vehicles Deployment''

Yuhao Yang and Xiujie Huang

Abstract

To maintain the secure information sharing among vehicles in the Internet of Vehicles, various message authentication schemes were proposed. Recently, Sutrala et al. proposed a conditional privacy preserving authentication scheme (``On the Design of Conditional Privacy Preserving Batch Verification-Based Authentication Scheme for Internet of Vehicles Deployment,'' IEEE Trans. Veh. Technol., vol. 69, no. 5, pp. 5535-5548, May 2020.) to against various potential attacks. However, our observations show that, contrary to what is claimed, the scheme is insecure. Any (malicious) vehicle can forge signature for any message, which can be validated successfully and cannot be traceable. Our observations also show that, the security proof based on the standard random oracle model is wrong.

Metadata
Available format(s)
PDF
Publication info
Preprint. MINOR revision.
Keywords
Authenticationforgeryinternet of vehiclesprivacy preservingrandom oracle model
Contact author(s)
yyh_yangyuhao @ 163 com
t_xiujie @ jnu edu cn
History
2021-01-06: received
Short URL
https://ia.cr/2021/018
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2021/018,
      author = {Yuhao Yang and Xiujie Huang},
      title = {Comments on ``On the Design of Conditional Privacy Preserving Batch Verification-Based Authentication Scheme for Internet of Vehicles Deployment''},
      howpublished = {Cryptology ePrint Archive, Paper 2021/018},
      year = {2021},
      note = {\url{https://eprint.iacr.org/2021/018}},
      url = {https://eprint.iacr.org/2021/018}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.