Certified Reproducible BCAM System will be presented at ACM WiSec 2017
Three of OnBoard Security's leading transportation security experts; Dr. Virendra Kumar, Dr. Jonathan Petit and Dr. William Whyte, recently wrote a paper titled "Binary Hash Tree based Certificate Access Management for Connected Vehicles." The paper details a certificate access management system to support the USDOT's proposed rule on Vehicle-to-Vehicle (V2V) communications, Federal Motor Vehicle Safety Standard (FMVSS) No. 150. The proposal, which is dubbed Binary Hash Tree based Certificate Access Management (BCAM), eliminates the need for vehicles to have bidirectional connectivity with the Security Credential Management System (SCMS) for certificate update. BCAM significantly improves the ability of the SCMS to manage large-scale software and/or hardware compromise events. Vehicles are provisioned at the start of their lifetime with all the certificates they will need. However, certificates and corresponding private key reconstruction values are provided to the vehicle encrypted, and the keys to decrypt them are only made available to the vehicles shortly before the start of the validity periods of those certificates. Vehicles that are compromised can be effectively removed from the V2V system by preventing them from decrypting the certificates. The paper demonstrates that the system is feasible with a broadcast channel for decryption keys and other revocation information, even if that channel has a relatively low capacity.
The paper was selected for presentation at ACM WiSec 2017 in Boston July 17-20. Dr. Kumar will be presenting the paper on July 19th at 10:30AM. ACM WiSec is the leading ACM and SIGSAC conference dedicated to all aspects of security and privacy in wireless and mobile networks and their applications. Furthermore, the paper's results were reproduced by an independent reproducibility committee and has received the ACM WiSec Reproducibility Research certification label.
The paper will be published online after June 19th. Sign up here if you wish to receive a notification once the paper is published.