Cryptology ePrint Archive: Report 2021/018

Comments on ``On the Design of Conditional Privacy Preserving Batch Verification-Based Authentication Scheme for Internet of Vehicles Deployment''

Yuhao Yang and Xiujie Huang

Abstract: To maintain the secure information sharing among vehicles in the Internet of Vehicles, various message authentication schemes were proposed. Recently, Sutrala et al. proposed a conditional privacy preserving authentication scheme (``On the Design of Conditional Privacy Preserving Batch Verification-Based Authentication Scheme for Internet of Vehicles Deployment,'' IEEE Trans. Veh. Technol., vol. 69, no. 5, pp. 5535-5548, May 2020.) to against various potential attacks. However, our observations show that, contrary to what is claimed, the scheme is insecure. Any (malicious) vehicle can forge signature for any message, which can be validated successfully and cannot be traceable. Our observations also show that, the security proof based on the standard random oracle model is wrong.

Category / Keywords: Authentication, forgery, internet of vehicles, privacy preserving, random oracle model

Date: received 5 Jan 2021

Contact author: yyh_yangyuhao at 163 com,t_xiujie@jnu edu cn

Available format(s): PDF | BibTeX Citation

Version: 20210106:214341 (All versions of this report)

Short URL: ia.cr/2021/018


[ Cryptology ePrint archive ]