A Distributed Secure Architecture for Vehicular Ad Hoc Networks

Introduction

A Vehicular ad hoc network (VANET) is an important and a special instantiation of Mobile ad hoc Networks (MANET) aiming essentially to increase road safety, yet it enables vehicles to share pertinent information on the road. To this end, vehicles must be able to route information and inform each other about potential ongoing events on the road. The inherent open architecture of VANETs, however, raises several network vulnerability and security issues. Unlike wired networks which can be protected by several layers of defense such as firewalls, attacks on vehicular networks emanate from different and various sources due to the constraints and requirements imposed on such networks. In particular, nodes or vehicles in VANETs are subject to a high mobility, the trajectories can be predictable and the environment is known as it can either be urban, rural or prescribed highways. Furthermore, obstacles and radio interference are predominant and affect the pattern of mobility and the quality of radio transmissions.

Communication security in VANETs has to take into account several stringent requirements (GWoch et al., 2006; Hubaux et al., 2006; Parno & Perrig, 2005). Firstly, vehicles must authenticate each others, so each driver must have a unique identity. The privacy and anonymity of drivers should, however, be preserved. For example, trying to prevent spoofing in a way that reveals the permanent identity of each vehicle violates privacy requirements and could not be tolerated. Secondly, security solutions in VANETs must insure non repudiation; namely a sender of a message cannot deny having sent such a message. The drivers responsible for an event occurring on the network, an accident for instance, should certainly be identified. Non repudiation is a stringent requirement that enables retracing events in case of an investigation for example. Thirdly, the security in VANETs requires data consistency. Data sent in similar messages should be consistent. The legitimacy of messages requires consistency with other similar messages.

Given that the characteristics of VANETs are different from those of MANETs, security solutions proposed for MANETs cannot be simply and directly transposed to VANETs. They need to be adapted to the nature of this type of networks. In this paper, we propose a secure architecture for VANETs based on previous works proposed for MANETs. Our solution consists on establishing a secure architecture based on an efficient trust model and a distributed clustering algorithm for designing a specific key management system properly adapted to VANETs. The distributed clustering algorithm uses, in particular, two metrics to select a cluster head: security and relative mobility. Furthermore, in order to enhance the security of a cluster, we propose a novel entity called the VANET Dynamic Demilitarized Zone (VDDZ) which is formed by a set of trusted nodes located at 1-hop from the CA in each cluster. The role of this set of nodes is to filter and pre-treat certification requests from unknown nodes thus shielding the CA.

The remainder of the paper is organized as follows. We discuss the related work on current security solutions proposed for VANETs. We then describe our network model, the trust model and the proposed distributed clustering algorithm and present simulation results of the proposed clustering algorithm.