Crypto-Chain: a relay resilience framework for smart vehicles
Tools
Tools
Sani, Abubakar Sadiq, Yuan, Dong, Bertino, Elisa and Dong, Zhao Yang (2021) Crypto-Chain: a relay resilience framework for smart vehicles. In: ACSAC: Annual Computer Security Applications Conference. ACM, New York, USA, pp. 439-454. ISBN 978-1450385794 (doi:https://doi.org/10.1145/3485832.3485920)
|
PDF (Author's accepted manuscript)
33857_SANI_Crypto_Chain.pdf - Accepted Version Download (717kB) | Preview |
Abstract
Recent findings show that smart vehicles can be exposed to relay attacks resulting from weaknesses in cryptographic operations, such as authentication and key derivation, or poor implementation of these operations. Relay attacks refer to attacks in which authentication is evaded without needing to attack a smart vehicle itself. They are a recurrent problem in practice. In this paper, we formulate the necessary relay resilience settings for strengthening authentication and key derivation and achieving the secure design and efficient implementation of cryptographic protocols based on universal composability, which allows the modular design and analysis of cryptographic protocols. We introduce Crypto-Chain, a relay resilience framework that extends Kusters's universal composition theorem on a fixed number of protocol systems to prevent bypass of cryptographic operations and avoid implementation errors. Our framework provides an ideal crypto-chain functionality that supports several cryptographic primitives. Furthermore, we provide an ideal functionality for mutual authentication and key derivation in Crypto-Chain by which cryptographic protocols can use cryptographic operations, knowledge about the computation time of the operations, and cryptographic timestamps to ensure relay resilience. As a proof of concept, we first propose and implement a mutual authentication and key derivation protocol (MKD) that confirms the efficiency and relay resilience capabilities of Crypto-Chain and then apply Crypto-Chain to fix two protocols used in smart vehicles, namely Megamos Crypto and Hitag-AES/Pro.
| Item Type: | Conference Proceedings |
|---|---|
| Title of Proceedings: | ACSAC: Annual Computer Security Applications Conference |
| Uncontrolled Keywords: | relay resilience, universal composability, smart vehicles, key exchange, mutual authentication and key derivation |
| Subjects: | Q Science > QA Mathematics > QA75 Electronic computers. Computer science Q Science > QA Mathematics > QA76 Computer software T Technology > TL Motor vehicles. Aeronautics. Astronautics |
| Faculty / School / Research Centre / Research Group: | Faculty of Liberal Arts & Sciences Faculty of Engineering & Science > Internet of Things and Security Research Centre (ISEC) |
| Last Modified: | 21 Dec 2021 10:05 |
| URI: | http://gala.gre.ac.uk/id/eprint/33857 |
Actions (login required)
 |
View Item |
Downloads
Downloads per month over past year